Example: AppStream 2.0 service role cross-service confused deputy prevention

AppStream 2.0 assumes a service role using a variety of resource ARNs, which leads to a complicated conditional statement. We recommend using a wildcard resource type to prevent any unexpected AppStream 2.0 resources failures.

Example `aws:SourceAccount` Conditional:

Example `aws:SourceArn` Conditional:

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Confused Deputy Prevention

Example: AppStream 2.0 fleet machine role cross-service confused deputy prevention

Example: AppStream 2.0 service role cross-service confused deputy prevention

Example aws:SourceAccount Conditional:

Example aws:SourceArn Conditional:

Example `aws:SourceAccount` Conditional:

Example `aws:SourceArn` Conditional: