Missing "CanonicalUser" in principal_map_entry in IAM policy grammar
Closed this issue · 1 comments
pkazmier commented
On this page:
https://github.com/awsdocs/iam-user-guide/blob/master/doc_source/reference_policies_grammar.md
the following grammar:
<principal_map_entry> = ("AWS" | "Federated" | "Service") :
[<principal_id_string>, <principal_id_string>, ...]
is missing "CanonicalUser"
as a valid entry per this page:
stephswo commented
Good point. It's worth mentioning that the canonical user ID can be used only in S3 bucket policies. But thanks, I'll add it!