AWS connect documentation change
Summary
Pronoun adjustments ('the user' to 'their'/'they') in descriptions of access control tag functionality.
Security assessment
Changes are purely grammatical (pronoun updates) with no modifications to security logic, vulnerability disclosures, or feature descriptions. The text continues to explain existing tag-based authorization without introducing new security content.
Diff
diff --git a/connect/latest/adminguide/tag-based-access-control.md b/connect/latest/adminguide/tag-based-access-control.md index ea9279ca4..7bd6d2799 100644 --- a//connect/latest/adminguide/tag-based-access-control.md +++ b//connect/latest/adminguide/tag-based-access-control.md @@ -23 +23 @@ A _resource_ tag is a custom metadata label that you can add to a resource to ma -An access control tag is similar to a resource tag in that it uses the same _Key:value_ structure. However, the distinction with an access control tag is that it introduces authorization controls that limit a user's access, to only specified resources containing resource tags with identical _Key:value_ pairs. Access control tags are defined within security profiles, by first selecting the resource (routing profile, queue, users, etc.) for which to control access to, and then defining the _Key:value_ pair to match on. Once a security profile with access control tags has been applied to a user, it will limit the user's access based on the defined combination of the selected resource(s) and access control tag(s) (_Key:value_). Without access control tags applied, a user will be able to see all resources if given permission to do so. +An access control tag is similar to a resource tag in that it uses the same _Key:value_ structure. However, the distinction with an access control tag is that it introduces authorization controls that limit a user's access, to only specified resources containing resource tags with identical _Key:value_ pairs. Access control tags are defined within security profiles, by first selecting the resource (routing profile, queue, users, etc.) for which to control access to, and then defining the _Key:value_ pair to match on. Once a security profile with access control tags has been applied to a user, it will limit their access based on the defined combination of the selected resource(s) and access control tag(s) (_Key:value_). Without access control tags applied, a user will be able to see all resources if given permission to do so. @@ -29 +29 @@ To use tags to control access to resources within the admin website of your Conn -Access control tags are configured on a security profile. You can configure up to 4 access control tags on a single security profile. Adding additional access control tags will make that security profile more restrictive. For example, if you were to add two access control tags like `Department:X` and `Country:Y`, the user would only be able to see resources containing both tags. +Access control tags are configured on a security profile. You can configure up to 4 access control tags on a single security profile. Adding additional access control tags will make that security profile more restrictive. For example, if you were to add two access control tags like `Department:X` and `Country:Y`, they would only be able to see resources containing both tags.