AWS ivs documentation change
Summary
Added documentation for HTTP response headers (accessControlAllowOrigin, accessControlExposeHeaders, cacheControl, contentSecurityPolicy, strictTransportSecurity, xAmznErrorType, xContentTypeOptions, xFrameOptions) in error response sections for various HTTP status codes.
Security assessment
The change adds documentation for security-related HTTP headers (contentSecurityPolicy, strictTransportSecurity, xContentTypeOptions, xFrameOptions) that help mitigate web vulnerabilities like XSS, clickjacking, and enforce secure transport. However, there's no evidence this addresses a specific security vulnerability; it appears to be routine documentation improvement.
Diff
diff --git a/ivs/latest/LowLatencyAPIReference/API_DeletePlaybackRestrictionPolicy.md b/ivs/latest/LowLatencyAPIReference/API_DeletePlaybackRestrictionPolicy.md index fae3aad90..685f83e9d 100644 --- a//ivs/latest/LowLatencyAPIReference/API_DeletePlaybackRestrictionPolicy.md +++ b//ivs/latest/LowLatencyAPIReference/API_DeletePlaybackRestrictionPolicy.md @@ -60,0 +61,12 @@ For information about the errors that are common to all actions, see [Common Err +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -65,0 +78,12 @@ User does not have sufficient access to perform this action. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -70,0 +95,12 @@ HTTP Status Code: 403 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -75,0 +112,12 @@ Updating or deleting a resource can cause an inconsistent state. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -80,0 +129,12 @@ HTTP Status Code: 409 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -85,0 +146,12 @@ Your account is pending verification. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -90,0 +163,12 @@ HTTP Status Code: 403 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -95,0 +180,12 @@ Request references a resource which does not exist. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + + @@ -100,0 +197,12 @@ HTTP Status Code: 404 +**accessControlAllowOrigin** + + +**accessControlExposeHeaders** + + +**cacheControl** + + +**contentSecurityPolicy** + + @@ -105,0 +214,12 @@ The input fails to satisfy the constraints specified by an AWS service. +**strictTransportSecurity** + + +**xAmznErrorType** + + +**xContentTypeOptions** + + +**xFrameOptions** + +