AWS IAM documentation change
Summary
Added AWS Sign-In resources to the list of examples supporting resource-based policies
Security assessment
This change expands the list of services supporting resource-based policies but contains no evidence of addressing a security vulnerability or weakness. Resource-based policies are a standard security feature, but the update doesn't introduce new security documentation.
Diff
diff --git a/IAM/latest/UserGuide/access_policies_identity-vs-resource.md b/IAM/latest/UserGuide/access_policies_identity-vs-resource.md index 5fad79616..b3290a649 100644 --- a//IAM/latest/UserGuide/access_policies_identity-vs-resource.md +++ b//IAM/latest/UserGuide/access_policies_identity-vs-resource.md @@ -13 +13 @@ A policy is an object in AWS that, when associated with an identity or resource, -**Resource-based policies** are attached to a resource. For example, you can attach resource-based policies to Amazon S3 buckets, Amazon SQS queues, VPC endpoints, AWS Key Management Service encryption keys, and Amazon DynamoDB tables and streams. For a list of services that support resource-based policies, see [AWS services that work with IAM](./reference_aws-services-that-work-with-iam.html). +**Resource-based policies** are attached to a resource. For example, you can attach resource-based policies to Amazon S3 buckets, Amazon SQS queues, VPC endpoints, AWS Key Management Service encryption keys, Amazon DynamoDB tables and streams, and AWS Sign-In resources. For a list of services that support resource-based policies, see [AWS services that work with IAM](./reference_aws-services-that-work-with-iam.html).