AWS Security ChangesHomeSearch

AWS ivs documentation change

Service: ivs · 2026-04-25 · Documentation low

File: ivs/latest/LowLatencyAPIReference/API_BatchStartViewerSessionRevocation.md

Summary

Added documentation for HTTP response headers (accessControlAllowOrigin, accessControlExposeHeaders, cacheControl, contentSecurityPolicy, strictTransportSecurity, xAmznErrorType, xContentTypeOptions, xFrameOptions) in error response sections and updated a 'See Also' reference.

Security assessment

The change adds documentation for security-related HTTP headers (e.g., contentSecurityPolicy, strictTransportSecurity, xContentTypeOptions, xFrameOptions) that help protect against web vulnerabilities like XSS, clickjacking, and enforce secure transport. However, there is no evidence this addresses a specific security vulnerability or incident; it appears to be routine documentation enhancement.

Diff

diff --git a/ivs/latest/LowLatencyAPIReference/API_BatchStartViewerSessionRevocation.md b/ivs/latest/LowLatencyAPIReference/API_BatchStartViewerSessionRevocation.md
index b3abfe805..59e183265 100644
--- a//ivs/latest/LowLatencyAPIReference/API_BatchStartViewerSessionRevocation.md
+++ b//ivs/latest/LowLatencyAPIReference/API_BatchStartViewerSessionRevocation.md
@@ -128,0 +129,12 @@ For information about the errors that are common to all actions, see [Common Err
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -133,0 +146,12 @@ User does not have sufficient access to perform this action.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -138,0 +163,12 @@ HTTP Status Code: 403
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -143,0 +180,12 @@ Your account is pending verification.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -148,0 +197,12 @@ HTTP Status Code: 403
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -153,0 +214,12 @@ Request was denied due to request throttling.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -158,0 +231,12 @@ HTTP Status Code: 429
+**accessControlAllowOrigin**
+    
+
+**accessControlExposeHeaders**
+    
+
+**cacheControl**
+    
+
+**contentSecurityPolicy**
+    
+
@@ -163,0 +248,12 @@ The input fails to satisfy the constraints specified by an AWS service.
+**strictTransportSecurity**
+    
+
+**xAmznErrorType**
+    
+
+**xContentTypeOptions**
+    
+
+**xFrameOptions**
+    
+
@@ -201 +297 @@ BatchGetStreamKey
-CreateChannel
+CreateAdConfiguration