AWS AmazonS3 documentation change
Summary
Added new s3:UpdateBucketMetadataAnnotationTableConfiguration permission requirement for managing annotation table configurations.
Security assessment
Documents a new IAM permission for annotation table management without evidence of fixing a security flaw. Improves security documentation by specifying granular permissions.
Diff
diff --git a/AmazonS3/latest/userguide/metadata-tables-permissions.md b/AmazonS3/latest/userguide/metadata-tables-permissions.md index 41ee85c8a..39d79ac5c 100644 --- a//AmazonS3/latest/userguide/metadata-tables-permissions.md +++ b//AmazonS3/latest/userguide/metadata-tables-permissions.md @@ -21,0 +22,2 @@ To create and manage your metadata table configuration, you must have these perm + + * `s3:UpdateBucketMetadataAnnotationTableConfiguration` – This permission allows you to update your annotation table configuration to enable or disable the annotation table. To update an annotation table configuration, additional permissions, including S3 Tables permissions, are required. For a list of the required permissions, see [Bucket operations and permissions](./using-with-s3-policy-actions.html#using-with-s3-policy-actions-related-to-buckets).