Home › Forums › AWS › AWS Certified Developer Associate › I Do not understand the answer to the following question › Reply To: I Do not understand the answer to the following question
-
Hi – i stumbled over this same question for the same reason.
>The second piece is that the QA role should only have access to the ‘qa’ folder.
This is not what it states. It states that objects in the
qa
folder should be restricted to the QA role exclusively.The question is clearly ambiguous (if not flat out wrong), as it specifies that “objects stored under the
qa
folder should be restricted to the QA IAM role only”, i.e. anything inside this folder is *only* accessible for the QA role and noone else. Even though it also says that the developer role should be granted read access to all objects, when the next sentence starts with “However[…]” it reads like what follows is an exception to that.I would suggest simply rephrasing the third sentence to “The QA IAM role however, should be restricted to objects stored under the
qa
folder only.”