From ae20d9da37b2973cfc70b626b284b88cbb88aa42 Mon Sep 17 00:00:00 2001
From: Christopher Hubing <chubing@internet2.edu>
Date: Thu, 4 Oct 2018 11:03:58 -0400
Subject: [PATCH] Update create_saml_aws.sh

---
 create_saml_aws.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/create_saml_aws.sh b/create_saml_aws.sh
index e0c8b7b..8564a7e 100755
--- a/create_saml_aws.sh
+++ b/create_saml_aws.sh
@@ -10,7 +10,7 @@ if [ $? -ne -1 ]
     exit 1
 fi
 
-# create iam roles that saml users can assume:
+# create iam roles that saml users can assume, currently administrator or readonly roles:
 aws iam create-role --role-name administrator --assume-role-policy-document file://shibpolicy.json
 aws iam attach-role-policy --role-name administrator --policy-arn arn:aws:iam::aws:policy/AdministratorAccess
 aws iam create-role --role-name readonly --assume-role-policy-document file://shibpolicy.json