AWS cli documentation change
Summary
Enhanced command description to specify OAuth flow details and CSRF security token usage. Updated CLI version reference.
Security assessment
Explicitly documents CSRF token security mechanism for OAuth flows, but doesn't indicate response to a specific vulnerability.
Diff
diff --git a/cli/latest/reference/securityagent/initiate-provider-registration.md b/cli/latest/reference/securityagent/initiate-provider-registration.md index ede613ebb..d05f19ef8 100644 --- a//cli/latest/reference/securityagent/initiate-provider-registration.md +++ b//cli/latest/reference/securityagent/initiate-provider-registration.md @@ -15 +15 @@ - * [AWS CLI 2.34.41 Command Reference](../../index.html) » + * [AWS CLI 2.34.44 Command Reference](../../index.html) » @@ -59 +59 @@ First time using the AWS CLI? See the [User Guide](https://docs.aws.amazon.com/c -Initiates the registration of Security Agent App for an external Provider +Initiates the OAuth registration flow with a third-party provider. Returns a redirect URL and CSRF state token for completing the authorization. @@ -95 +95 @@ See also: [AWS API Documentation](https://docs.aws.amazon.com/goto/WebAPI/securi -> Provider to register with +> The provider to initiate registration with. Currently, only GITHUB is supported. @@ -218 +218 @@ redirectTo -> (string) -> OAuth redirect URL +> The URL to redirect the user to for completing the OAuth authorization. @@ -222 +222 @@ csrfState -> (string) -> CSRF state token for OAuth security +> The CSRF state token to use when completing the OAuth flow. @@ -234 +234 @@ csrfState -> (string) - * [AWS CLI 2.34.41 Command Reference](../../index.html) » + * [AWS CLI 2.34.44 Command Reference](../../index.html) »