You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If the parameter BucketNotificationResources is not set, the stack creates a policy giving read/write notification permissions on all buckets within the account. Can this logic be inverted by making the BucketNotificationResources parameter is required, and removing the * default? Is there a use case for * that prevents this inversion?
The text was updated successfully, but these errors were encountered:
If the parameter
BucketNotificationResourcesis not set, the stack creates a policy giving read/write notification permissions on all buckets within the account. Can this logic be inverted by making theBucketNotificationResourcesparameter is required, and removing the*default? Is there a use case for*that prevents this inversion?The text was updated successfully, but these errors were encountered: