AWS quick documentation change
Summary
Added 'Word permissions' to heading and new 'Microsoft Word extension permissions' section detailing API permissions and capabilities
Security assessment
The change explicitly documents security permissions and capabilities of the Word extension, including data access levels and internet communication. This enhances security transparency but doesn't indicate a specific vulnerability being fixed.
Diff
diff --git a/quick/latest/userguide/word-extension-preview.md b/quick/latest/userguide/word-extension-preview.md index a2c231cb3..31610bef0 100644 --- a//quick/latest/userguide/word-extension-preview.md +++ b//quick/latest/userguide/word-extension-preview.md @@ -7 +7 @@ -Word prerequisitesDeploy Word extension +Word prerequisitesDeploy Word extensionWord permissions @@ -48,0 +49,2 @@ The following procedures are for IT administrators who want to automatically dep + * Microsoft Word extension permissions + @@ -87,0 +90,17 @@ Follow these steps to deploy the extension to your users: +## Microsoft Word extension permissions + +The Amazon Quick Word extension uses the `ReadWriteDocument` Office JavaScript API permission level. This is an Office add-in manifest permission, not a Microsoft Graph API scope. No Graph API permissions are needed during deployment. + +The default app capabilities for the Word add-in are: + + * Can read and make changes to your document + + * Access your profile information such as your name, email address, company name, and preferred language + + * Can send data over the Internet + + + + +Administrators should review the permissions listed during the consent step of deployment through the M365 admin center integrated apps portal. +