Console Login
Docs / Approvals

Change approval workflow

Every sensitive change is reviewed, approved, and recorded with immutable evidence.

Approvals Overview Policy Model Identity Governance

How to use

1. Submit change

Propose policy or identity changes.

2. Review diff

Inspect deterministic change diff.

3. Collect approvals

Satisfy required approvers.

4. Apply + export

Apply change and export receipts.

Workflow steps

1. Submit change

Create a change request with explicit scope and justification.

2. Review diff

Review the deterministic diff and potential impact.

3. Approve or deny

Approval quorum is enforced; actions are recorded.

4. Apply change

Approved changes become active and are logged.

Core endpoints

POST /identity/changes/request POST /identity/changes/preview POST /identity/changes/approve GET /identity/changes/timeline

Evidence artifacts

Change diff
Approval timeline
Receipt + hash
Exportable change pack
Registry snapshot + verification
PDF approval report

Key API endpoints

POST /policy/change-request — submit change
POST /approvals/approve — approve change
GET /approvals/timeline — approval timeline

Evidence outputs

Approval timeline export
Change receipts + hashes
Rollback evidence