Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(cognito-identitypool): update README to encourage least privilege #31811

Merged
merged 12 commits into from
Oct 22, 2024
Merged

chore(cognito-identitypool): update README to encourage least privilege #31811

merged 12 commits into from
Oct 22, 2024

Conversation

Leo10Gama
Copy link
Member

Issue # (if applicable)

N/A

Reason for this change

To ensure customers are using the module securely, we want to encourage them to follow the best practice of the principal of least privilege. That is, customers are only providing as much access as necessary to complete the task, and no privileges greater than that.

Description of changes

  • Updated the README to include sentences around the privilege and access granting sections encouraging only giving the least amount of privileges necessary.
  • Updated the README example to remove wildcard privilege.

Description of how you validated changes

yarn rosetta:extract passes.

Checklist

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license

@aws-cdk-automation aws-cdk-automation requested a review from a team October 18, 2024 20:18
@github-actions github-actions bot added the p2 label Oct 18, 2024
@mergify mergify bot added the contribution/core This is a PR that came from AWS. label Oct 18, 2024
@Leo10Gama Leo10Gama marked this pull request as ready for review October 22, 2024 18:54
@mergify Mergify
Copy link
Contributor

mergify bot commented Oct 22, 2024

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

@aws-cdk-automation
Copy link
Collaborator

AWS CodeBuild CI Report

  • CodeBuild project: AutoBuildv2Project1C6BFA3F-wQm2hXv2jqQv
  • Commit ID: 207d882
  • Result: SUCCEEDED
  • Build Logs (available for 30 days)

Powered by github-codebuild-logs, available on the AWS Serverless Application Repository

@mergify mergify bot merged commit 2122461 into aws:main Oct 22, 2024
12 checks passed
@mergify Mergify
Copy link
Contributor

mergify bot commented Oct 22, 2024

Thank you for contributing! Your pull request will be updated from main and then merged automatically (do not update manually, and be sure to allow changes to be pushed to your fork).

@github-actions GitHub Actions
Copy link

Comments on closed issues and PRs are hard for our team to see.
If you need help, please open a new issue that references this one.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Oct 22, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@paulhcsun paulhcsun paulhcsun approved these changes

Assignees
No one assigned
Labels
contribution/core This is a PR that came from AWS. p2
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Leo10Gama @aws-cdk-automation @paulhcsun