doc/rgw/sts: correcting documentation errors.

Signed-off-by: Pritha Srivastava <prsrivas@redhat.com>

diff --git a/doc/radosgw/session-tags.rst b/doc/radosgw/session-tags.rst
index abfb89e87cfc057d4d214e462146991a1326383a..47ed53372667e17371f8496e560e850b473ebd72 100644 (file)
--- a/doc/radosgw/session-tags.rst
+++ b/doc/radosgw/session-tags.rst
@@ -43,7 +43,8 @@ An example of the session tags that are passed in by the IDP in the web token is
         "active": true
     }
 
-Steps to configure Keycloak to pass tags in the web token are described here:doc:`keycloak`.
+Steps to configure Keycloak to pass tags in the web token are described here
+:doc:`keycloak`.
 
 The trust policy must have 'sts:TagSession' permission if the web token passed in by the federated user contains session tags, otherwise
 the AssumeRoleWithWebIdentity action will fail. An example of the trust policy with sts:TagSession is as follows:
@@ -145,7 +146,7 @@ An example of a role's trust policy that uses aws:TagKeys is as follows:
                "Effect":"Allow",
                "Action":["sts:AssumeRoleWithWebIdentity","sts:TagSession"],
                "Principal":{"Federated":["arn:aws:iam:::oidc-provider/localhost:8080/auth/realms/quickstart"]},
-               "Condition":{"ForAllValues:StringEquals":{"aws:TagKeys":["Marketing,Engineering"]}}
+               "Condition":{"ForAllValues:StringEquals":{"aws:TagKeys":["Department"]}}
            }]
        }