AWS iot-mi documentation change
Summary
Capitalized 'Managed Integrations' and maintained token security recommendations
Security assessment
Capitalization consistency update ('managed integrations' to 'Managed Integrations'). Existing security advice about token handling and OAuth 2.0 flow remains unchanged with no new vulnerabilities addressed.
Diff
diff --git a/iot-mi/latest/devguide/concepts-account-linking.md b/iot-mi/latest/devguide/concepts-account-linking.md index 45fcbe6dd..52a42a438 100644 --- a//iot-mi/latest/devguide/concepts-account-linking.md +++ b//iot-mi/latest/devguide/concepts-account-linking.md @@ -17 +17 @@ While your C2C connector does not need to implement specific business logic to s -Managed integrations for AWS IoT Device Management only supports OAuth 2.0 with an authorization code flow. See [RFC 6749](https://datatracker.ietf.org/doc/html/rfc6749#section-1.3.1) for more information. +Managed Integrations for AWS IoT Device Management only supports OAuth 2.0 with an authorization code flow. See [RFC 6749](https://datatracker.ietf.org/doc/html/rfc6749#section-1.3.1) for more information. @@ -23 +23 @@ We recommend that you don't log these sensitive tokens in any logs. If however t -Managed integrations for AWS IoT Device Management does not get an access token directly; it does so through the Authorization Code Grant Type. First, managed integrations for AWS IoT Device Management must obtain an authorization code. It then exchanges the code for an access token and refresh token. The refresh token is used to request a new access token when the old access token expires. If both the access token and refresh token are expired, you must perform the account-linking flow again. You can do this with the `StartAccountAssociationRefresh` API operation. +Managed Integrations for AWS IoT Device Management does not get an access token directly; it does so through the Authorization Code Grant Type. First, managed integrations for AWS IoT Device Management must obtain an authorization code. It then exchanges the code for an access token and refresh token. The refresh token is used to request a new access token when the old access token expires. If both the access token and refresh token are expired, you must perform the account-linking flow again. You can do this with the `StartAccountAssociationRefresh` API operation.