AWS ivs documentation change
Summary
Added pattern validation for tag keys and values, and added documentation for security-related HTTP response headers (CORS, CSP, HSTS, X-Frame-Options, etc.) in error responses
Security assessment
The changes add documentation about security headers (contentSecurityPolicy, strictTransportSecurity, xFrameOptions, etc.) that are returned in HTTP responses, which helps developers understand security controls. The pattern validation for tags helps prevent injection attacks by restricting allowed characters. However, there's no evidence this fixes an existing security vulnerability - it appears to be documentation improvements.
Diff
diff --git a/ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md b/ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md index 9ea1c7239..1c2ca9f91 100644 --- a//ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md +++ b//ivs/latest/LowLatencyAPIReference/API_CreateRecordingConfiguration.md @@ -106,0 +107,2 @@ Key Length Constraints: Minimum length of 1. Maximum length of 128. +Key Pattern: `([\p{L}\p{Z}\p{N}_.:/=+\-@]+)` + @@ -108,0 +111,2 @@ Value Length Constraints: Minimum length of 0. Maximum length of 256. +Value Pattern: `([\p{L}\p{Z}\p{N}_.:/=+\-@]*)` + @@ -172,0 +177,12 @@ For information about the errors that are common to all actions, see [Common Err +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -177,0 +194,12 @@ User does not have sufficient access to perform this action. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -182,0 +211,12 @@ HTTP Status Code: 403 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -187,0 +228,12 @@ Updating or deleting a resource can cause an inconsistent state. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -192,0 +245,12 @@ HTTP Status Code: 409 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -197,0 +262,12 @@ Unexpected error during processing of request. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -202,0 +279,12 @@ HTTP Status Code: 500 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -207,0 +296,12 @@ Your account is pending verification. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -212,0 +313,12 @@ HTTP Status Code: 403 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -217,0 +330,12 @@ Request would cause a service quota to be exceeded. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -222,0 +347,12 @@ HTTP Status Code: 402 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -227,0 +364,12 @@ The input fails to satisfy the constraints specified by an AWS service. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + +