Skip to content

Approval gates

Approval gates route high-impact project events to eligible reviewer groups. They add a decision boundary; they do not replace policy checks or authorize a different Terraform plan.

Typical time
15–30 minutes
You need
Policy-management access, a project, and an active reviewer group
Outcome
A project gate with reviewable scope, reviewers, and audit history

Open Governance → Approval Gates, select a project, and review the summary. If there are no eligible reviewer groups, select Reviewer groups and configure membership in Team & Access first.

The Minimum Approvals value cannot exceed the active eligible reviewers available through the selected Required Reviewer Groups.

Approval gates 1 of 7 · Screenshot placeholder

Check project and reviewer-group readiness

Show a synthetic selected project, summary metrics, and Reviewer groups action.

Future capture briefHide project names, group names, member identities, organization data, and access identifiers.

Select New gate and enter:

  • a clear name, trigger, and description;
  • project or workspace scope, environment, and gate mode;
  • Minimum Approvals and Required Reviewer Groups;
  • timeout and escalation behavior;
  • status plus Emergency Override and Auto-block critical findings.

Review the impact, then create the gate. Emergency override should be enabled only for a separately governed incident process.

Approval gates 2 of 7 · Screenshot placeholder

Define gate scope and trigger

Show the New gate drawer with synthetic name, trigger, scope, environment, and mode.

Future capture briefHide customer project data, internal workflow values, group identities, actors, and tenant identifiers.

Approval gates 3 of 7 · Screenshot placeholder

Set reviewer and safety controls

Show Minimum Approvals, Required Reviewer Groups, timeout, escalation, Emergency Override, and Auto-block critical findings.

Future capture briefUse synthetic groups and hide member identities, credentials, internal routing, organization data, and customer policies.

Select a table row or its View details action. Verify scope, trigger, environment, minimum approvals, timeout, reviewer groups, workflow, and status. Use Refresh after another authorized user changes the project.

Approval gates 4 of 7 · Screenshot placeholder

Review one approval gate

Show a synthetic gate details drawer and Edit Gate action.

Future capture briefHide project identifiers, reviewer identities, audit actors, internal routing, and organization details.

From details select Edit Gate, or use the row action. Recheck every field, especially trigger, scope, environment, reviewer groups, and minimum approvals, then save. A changed gate applies to future matching workflows; it must not be treated as retroactive approval for an existing plan.

Approval gates 5 of 7 · Screenshot placeholder

Edit a gate safely

Show Edit Gate with a synthetic changed field and the save action.

Future capture briefHide customer data, group membership, actors, workflow internals, evidence IDs, and access details.

Open the row menu:

  • select Disable gate to stop an active gate while retaining its record;
  • select Delete gate to remove the gate configuration.

Read the confirmation and select the matching confirm action. Before either change, verify that no production apply or other protected workflow depends on the gate. Neither action erases audit history.

Approval gates 6 of 7 · Screenshot placeholder

Confirm disabling or deleting a gate

Show the row menu and a synthetic confirmation dialog.

Future capture briefHide project data, actors, reviewer groups, audit metadata, internal workflow values, and customer identifiers.

Select Audit on the page or Audit History in the header. Review recent project events for approval-gate creation, updates, disabling, and deletion. Use the main Audit Logs destination for broader filtering and verified evidence readback.

Approval gates 7 of 7 · Screenshot placeholder

Review approval-gate audit events

Show synthetic recent gate events in Approval Gate Audit History.

Future capture briefHide actor identity, project and organization identifiers, request IDs, raw metadata, and customer data.

The selected project shows the intended active or disabled gate, reviewer capacity meets the approval threshold, and Audit History records the material change.

  • New Gate unavailable: confirm policy-management permission and select a project.
  • No reviewer groups: configure an eligible active group in Team & Access.
  • Minimum approvals rejected: lower the threshold or add active eligible reviewers.
  • Gate not triggered: confirm trigger, scope, environment, and workflow match the new event.

Source and deployment wiring alone are not proof that a live approval path blocked or released a runtime operation. Verify that behavior in an authorized environment.