Sym Approval Flows
Sym's Approval Flows let you to grant temporary access to sensitive resources in no time.
Overview
Sym's Approval Flows allow users to request temporary and auto-expiring access to sensitive resources. The requests are routed through fully-customizable escalation pathways via Sym's Python SDK, with the majority of the request-approve cycle taking place in Sym's Slack app.
As requests move through the Sym system, all events are logged for audit purposes. These audits are made available via Kinesis, which can then be connected downstream to any number of customer-owned destinations. For more information on logging, see: Reporting Overview.


Flow anatomy
Approval Flows all extend a base template, and are constructed of three key elements:
Resource | What it defines |
---|---|
| |
| |
|
For a full list of first-party Strategies, see Sym Access Targets; for custom Strategy reference, see Custom Integrations.
In addition, a Flow is likely to contain reference to an environment
, which itself will contain a collection of integrations
common to one or more Flows (e.g. Slack and PagerDuty).
The
sym:approval
Template is defined atsym.sdk.templates.approval.html
.
Updated 10 days ago