No detection of bad policy in sts.GetFederationToken
#10746
Labels
aws:iam
AWS Identity and Access Management
status: backlog
Triaged but not yet being worked on
type: bug
Bug report
Is there an existing issue for this?
Current Behavior
localstack accepts policy with a defined Principal. This is not true for real AWS.
Example:
{ "Version":"2012-10-17", "Statement":[ { "Sid":"AllowUploads", "Effect":"Allow", "Principal":{"AWS":"*"}, "Action":"s3:PutObject", "Resource":"arn:aws:s3:::%s/*" } ] }
Expected Behavior
There should be an error
Policy document should not specify a principal.
How are you starting LocalStack?
With the
localstack
scriptSteps To Reproduce
How are you starting localstack (e.g.,
bin/localstack
command, arguments, ordocker-compose.yml
)Client commands (e.g., AWS SDK code snippet, or sequence of "awslocal" commands)
Environment
Anything else?
No response
The text was updated successfully, but these errors were encountered: