{"id":2940,"date":"2019-08-30T09:47:48","date_gmt":"2019-08-30T09:47:48","guid":{"rendered":"https:\/\/www.testpreptraining.com\/tutorial\/?page_id=2940"},"modified":"2020-05-01T10:56:45","modified_gmt":"2020-05-01T10:56:45","slug":"iam-roles-and-policies-2","status":"publish","type":"page","link":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/","title":{"rendered":"Understanding IAM Roles and Policies"},"content":{"rendered":"\n<p><strong>Users<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Users refer to individual accounts.<\/li><li>New users are not given to any AWS services, by default.<\/li><li>MFA (Multifactor Authentication) should be configured for root account.<\/li><li>IAM provide facility to create and customise password rotation policies in AWS.<\/li><li>There are two ways to access AWS:\n<ul>\n<li>Username + Password<\/li>\n<\/ul>\n<ul>\n<li>Access Key ID + Secret Access Key<\/li>\n<\/ul>\n<\/li><li>Username and Password\n<ul>\n<li>Cannot be used to interact with API<\/li>\n<\/ul>\n<ul>\n<li>custom sign-in link created by IAM console for sign in<\/li>\n<\/ul>\n<\/li><\/ul>\n\n\n\n<p>Access Key ID and Secret Access Key<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Assigned on user creation only<\/li><li>Keys also enable interaction by\n<ul>\n<li>the AWS command line<\/li>\n<\/ul>\n<ul>\n<li>SDKs<\/li>\n<\/ul>\n<ul>\n<li>APIs.<\/li>\n<\/ul>\n<\/li><li>Keys are not Username or Password.<\/li><li>User can only view them once.<\/li><li>They need to be regenerated if lost<\/li><li>Should be stored in a secured location<\/li><\/ul>\n\n\n\n<p><strong>Groups<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Refer to a&nbsp; collection of IAM users<\/li><li>It helps to simplify assignment of permissions<\/li><li>It is extensively used to denote individual departments in a company like Sales, HR, etc,<\/li><li>Maximum of 10 groups can be assigned to a user<\/li><li>Groups cannot have sub-groups as no nesting is permitted<\/li><li>A group can only have users an no sub-groups<\/li><li>There is no default group in AWS, for holding all users<\/li><li>Any renaming of a group name or its path,&nbsp; is reflected on policies attached to group, unique ids, users within the group.<\/li><li>AWS IAM is not responsible to update policies if group is listed as a resource but it handled manually<\/li><li>Group deletion involves detaching users and policies from the group and, deletion of inline policies.<\/li><li>Varied access level for AWS service is needed as\n<ul>\n<li>A user can belong to multiple groups<\/li>\n<\/ul>\n<ul>\n<li>Groups cannot belong to other groups<\/li>\n<\/ul>\n<\/li><\/ul>\n\n\n\n<p><strong>Roles<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Roles are used by any of the following\n<ul>\n<li>AWS IAM user present in same AWS account as role<\/li>\n<\/ul>\n<ul>\n<li>AWS IAM user present in different AWS account than role<\/li>\n<\/ul>\n<ul>\n<li>AWS offered web service like EC2<\/li>\n<\/ul>\n<ul>\n<li>external user which has been validated using IdP (external identity provider) compliant to SAML 2.0\/OpenID Connect<\/li>\n<\/ul>\n<\/li><li>AWS resources canalso be assigned to roles created by you\n<ul>\n<li>Like\u2013EC2 instance having role to access S3, which is without any usernames, passwords, etc.<\/li>\n<\/ul>\n<\/li><li>Limit of 500 IAM roles<\/li><li>API Actions for assuming roles:\n<ul>\n<li>AssumeRole\n<ul>\n<li>Can\u2019t call AssumeRole from AWS root account credentials. use credentials for AWS IAM user or IAM role to call AssumeRole.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<ul>\n<li>AssumeRoleWithSAML \u2013users are validated by SAML authentication response, like an on-premises VPC<\/li>\n<\/ul>\n<ul>\n<li>AssumeRoleWithWebIdentity&nbsp; &#8211; users are validated by in mobile\/web app using a web based identity provider like Facebook\/Google<\/li>\n<\/ul>\n<\/li><\/ul>\n\n\n\n<p>Role types:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>AWS Service<\/li><li>Another AWS Account (allowing entity in other AWS accounts to act in current account)<\/li><li>Web Identity (Amazon, Cognito, Facebook, Google)<\/li><li>SAML \/ OpenID Connect<\/li><\/ul>\n\n\n\n<p><strong>IAM Policies<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Resource property is a must in every IAM Policy<\/li><li>Policies have 3 main parts &#8211; Action, Resource, and Effect<\/li><li>Effect \u2013 refers to result i.e., access is allowed or denied by policy<\/li><li>Action \u2013 Allowed action list, as per policy<\/li><li>Resource \u2013resource list on which actions can take place as per policy<\/li><li>Condition (Optional) \u2013 Situation under which policy gives permission<\/li><li>Roles as per their intrinsic capabilities, provide more security against programmatic access<\/li><li>Multi-Factor Authentication or MFA should be enabled for all users for more secured access<\/li><li>Policy Types\n<ul>\n<li>Identity-based policies \u2013 It can be attached to an IAM identity only like IAM user\/ group\/ role. To control what actions the assigned identity can perform, further classified as\n<ul>\n<li>Managed policies \u2013 It is an standalone identity-based policy which can be attached to multiple users\/groups\/roles in the AWS account. Further two types, as\n<ul>\n<li>AWS managed policies \u2013 creation and management by AWS<\/li>\n<\/ul>\n<ul>\n<li>Customer managed policies \u2013creation and management by user&nbsp; by applying a visual editor or editing JSON policy document.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<ul>\n<li>Inline policies \u2013 User created and embedded into a single user\/group\/role. Not recommended as management is precarious<\/li>\n<\/ul>\n<ul>\n<li>Resource-based policies \u2013 Can only be attached to a resource like S3 bucket<\/li>\n<\/ul>\n<\/li><\/ul>\n\n\n\n<p><strong>Policy Example<\/strong><\/p>\n\n\n\n<p>{<\/p>\n\n\n\n<p>&nbsp; &#8220;Version&#8221;: &#8220;2012-10-17&#8221;,<\/p>\n\n\n\n<p>&nbsp; &#8220;Statement&#8221;: {<\/p>\n\n\n\n<p>&nbsp;&nbsp;&nbsp; &#8220;Effect&#8221;: &#8220;Allow&#8221;,<\/p>\n\n\n\n<p>&nbsp;&nbsp;&nbsp; &#8220;Action&#8221;: &#8220;s3:ListBucket&#8221;,<\/p>\n\n\n\n<p>&nbsp;&nbsp;&nbsp; &#8220;Resource&#8221;: &#8220;arn:aws:s3:::example_bucket&#8221;<\/p>\n\n\n\n<p>&nbsp; }<\/p>\n\n\n\n<p>}<\/p>\n\n\n\n<p>In above listing, ListBucket Request is allowed to perform on example_bucket S3 bucket<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"612\" height=\"400\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-229-612x400.png\" alt=\"\" class=\"wp-image-3915\" srcset=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-229-612x400.png 612w, https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-229.png 624w\" sizes=\"auto, (max-width: 612px) 100vw, 612px\" \/><\/figure>\n\n\n\n<p>Flow models in federated identity management, are of types<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>identity provider initiated model or IdP-initiated<\/li><li>service provider initiated model&nbsp; or SP-initiated<\/li><\/ul>\n\n\n\n<p>IdP-initiated<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>user access intranet using company\u2019s authentication<\/li><li>user goes to web page and clicks link to Connections Cloud product like Connections Cloud S2.<\/li><li>SSO is started and SAML assertion is sent to connections Cloud endpoint via HTTP POST. If valid, access is granted.<\/li><li>The user interacts with Connections Cloud.<\/li><\/ol>\n\n\n\n<p>SP-initiated hybrid<\/p>\n\n\n\n<ol class=\"wp-block-list\"><li>The user visits Connections Cloud login page and clicks Use My Organization&#8217;s Login.<\/li><li>user provides email address linked with his or her account.<\/li><li>Connections Cloud redirects to organization\u2019s authentication mechanism.<\/li><li>Rest flow as last step in IdP-initiated model.<\/li><\/ol>\n\n\n\n<p><strong>AWS SAML<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>SAML 2.0 or Security Assertion Markup Language 2.0 is supported by AWS<\/li><li>SAML is an open standard that many identity providers (IdPs) use.<\/li><li>Benefit of providing federated single sign-on (SSO)<\/li><li>SAML&nbsp; validated users can log into the AWS Management Console or call AWS API even if not an IAM user<\/li><\/ul>\n\n\n\n<p>Use cases supported by IAM federation<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Federated access allows user\/application to call AWS API.\n<ul>\n<li>It uses SAML assertion to get temporary credentials.<\/li>\n<\/ul>\n<\/li><li>Web-based single sign-on (SSO) to AWS Management Console.<\/li><\/ul>\n\n\n\n<p><strong>Using SAML-Based Federation for API Access to AWS<\/strong><\/p>\n\n\n\n<p>Example to give employees to copy data from their computers to a backup folder.<\/p>\n\n\n\n<figure class=\"wp-block-image\"><img loading=\"lazy\" decoding=\"async\" width=\"624\" height=\"351\" src=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-230.png\" alt=\"\" class=\"wp-image-3916\"\/><\/figure>\n\n\n\n<ol class=\"wp-block-list\"><li>User request authentication by IdP using a client app<\/li><li>IdP authenticates the user<\/li><li>IdP generates a SAML assertion and sends&nbsp; to client app<\/li><li>client app gives ARN of SAML provider, role to assume by calling AWS STS AssumeRoleWithSAML API<\/li><li>If valid, API responds with temporary credentials<\/li><li>Client app uses temporary credentials to call S3 API operations<\/li><\/ol>\n\n\n\n<p><strong>SAML &#8211; Console &#8211; AssumeRoleWithSAML<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\r\n<li>Corporate user can access Active Directory Federation Services \u00a0or ADFS<\/li>\r\n<li>AD FS authenticates user against Microsoft AD or Active Directory<\/li>\r\n<li>SAML Token contains membership generated<\/li>\r\n<li>Similar to IdP, Sigin in with SAML Token to AWS Sign-in Endpoint<\/li>\r\n<li>AssumeRoleWithSAML send to STS<\/li>\r\n<li>STS returns Credentials<\/li>\r\n<li>AWS Sign-in endpoint returns Console URL<\/li>\r\n<li>Corporate user Redirected to AWS Console<\/li>\r\n<li>Benefits include\r\n<ul>\r\n<li>Federation proxy not needed<\/li>\r\n<\/ul>\r\n<ul>\r\n<li>No IAM permission for federation proxy, needed<\/li>\r\n<\/ul>\r\n<\/li>\r\n<\/ul>\r\n<p><strong>Boost your chances to qualify <a href=\"https:\/\/www.testpreptraining.ai\/aws-certified-developer-associate-practice-exam\">AWS Certified Developer &#8211; Associate Exam<\/a> with expert guidance and hundred of Practice Exam Now!<\/strong>\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Users Users refer to individual accounts. New users are not given to any AWS services, by default. MFA (Multifactor Authentication) should be configured for root account. IAM provide facility to create and customise password rotation policies in AWS. There are two ways to access AWS: Username + Password Access Key ID + Secret Access Key&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":2476,"menu_order":37,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"footnotes":""},"categories":[2],"tags":[7,510],"class_list":["post-2940","page","type-page","status-publish","hentry","category-amazon-aws","tag-aws","tag-iam-roles-and-policies"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Understanding IAM Roles and Policies - Testprep Training Tutorials<\/title>\n<meta name=\"description\" content=\"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Understanding IAM Roles and Policies - Testprep Training Tutorials\" \/>\n<meta property=\"og:description\" content=\"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/\" \/>\n<meta property=\"og:site_name\" content=\"Testprep Training Tutorials\" \/>\n<meta property=\"article:modified_time\" content=\"2020-05-01T10:56:45+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-229-612x400.png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/\",\"name\":\"Understanding IAM Roles and Policies - Testprep Training Tutorials\",\"isPartOf\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\"},\"datePublished\":\"2019-08-30T09:47:48+00:00\",\"dateModified\":\"2020-05-01T10:56:45+00:00\",\"description\":\"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0\",\"breadcrumb\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"AWS Certified Developer Associate (DVA-C01)\",\"item\":\"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Understanding IAM Roles and Policies\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#website\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"name\":\"Testprep Training Tutorials\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#organization\",\"name\":\"Testprep Training\",\"url\":\"https:\/\/www.testpreptraining.ai\/tutorial\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"contentUrl\":\"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png\",\"width\":583,\"height\":153,\"caption\":\"Testprep Training\"},\"image\":{\"@id\":\"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Understanding IAM Roles and Policies - Testprep Training Tutorials","description":"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/","og_locale":"en_US","og_type":"article","og_title":"Understanding IAM Roles and Policies - Testprep Training Tutorials","og_description":"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0","og_url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/","og_site_name":"Testprep Training Tutorials","article_modified_time":"2020-05-01T10:56:45+00:00","og_image":[{"url":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-content\/uploads\/2019\/09\/image-229-612x400.png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/","url":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/","name":"Understanding IAM Roles and Policies - Testprep Training Tutorials","isPartOf":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website"},"datePublished":"2019-08-30T09:47:48+00:00","dateModified":"2020-05-01T10:56:45+00:00","description":"Boost your chances to qualify AWS Certified Developer - Associate Exam with expert guidance and hundred of Practice Exam. Learn IAM Roles and Policies Now!\u00a0","breadcrumb":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/iam-roles-and-policies-2\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.testpreptraining.ai\/tutorial\/"},{"@type":"ListItem","position":2,"name":"AWS Certified Developer Associate (DVA-C01)","item":"https:\/\/www.testpreptraining.ai\/tutorial\/aws-certified-developer-associate\/"},{"@type":"ListItem","position":3,"name":"Understanding IAM Roles and Policies"}]},{"@type":"WebSite","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#website","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","name":"Testprep Training Tutorials","description":"","publisher":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.testpreptraining.ai\/tutorial\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#organization","name":"Testprep Training","url":"https:\/\/www.testpreptraining.ai\/tutorial\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/","url":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","contentUrl":"https:\/\/www.testpreptraining.com\/tutorial\/wp-content\/uploads\/2020\/07\/tpt-logo-6.png","width":583,"height":153,"caption":"Testprep Training"},"image":{"@id":"https:\/\/www.testpreptraining.ai\/tutorial\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2940","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/comments?post=2940"}],"version-history":[{"count":5,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2940\/revisions"}],"predecessor-version":[{"id":5112,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2940\/revisions\/5112"}],"up":[{"embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/pages\/2476"}],"wp:attachment":[{"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/media?parent=2940"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/categories?post=2940"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.testpreptraining.ai\/tutorial\/wp-json\/wp\/v2\/tags?post=2940"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}