# Approvals and routing

Approval routing ensures high-risk actions are reviewed and auditable. The
routing model is tenant and environment aware.

Routing principles
- Route by tenant, environment, and resource type.
- Enforce least privilege with scoped approvals.
- Require reason and ticket metadata for audit.

MFA and fresh auth
- Sensitive approvals require fresh authentication.
- MFA can be enforced per routing template.

Audit trail
- Record approver identity, scope, timestamp, and rationale.
- Store immutable approval records with hashes.

Offline posture
- Export approvals for air-gapped review.
- Import approval bundles with signature verification.
- Keep deterministic ordering for approval lists.

Related references
- docs/governance/approvals-and-routing.md
- docs/security/authority-scopes.md