feat(policies): Access Request Break-Glass Bypass by x032205 · Pull Request #3643 · Infisical/infisical

x032205 · 2025-05-21T19:47:51Z

Description 📣

Just like Change Requests, Access Requests can now be bypassed in break-glass situations.

Docs changes + new permission added.

Type ✨

maidul98 · 2025-05-21T19:48:31Z

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)

greptile-apps

PR Summary

This PR introduces break-glass bypass functionality for access approval requests, allowing authorized users to bypass normal approval processes in emergency situations.

Added new AllowAccessBypass permission to admin roles with proper enforcement level checks and bypass reason tracking
Implemented email notifications to approvers when requests are bypassed, using SecretApprovalRequestBypassedTemplate
Added UI components in ReviewAccessModal for bypass approval with minimum 10-character reason requirement
Security concern: Ensure bypass functionality is properly restricted through both soft enforcement policy settings and appropriate permissions
Documentation needs review: Missing requestType field in SecretApprovalRequestBypassedTemplate preview props could cause TypeScript errors

_{16 file(s) reviewed, 7 comment(s)}
_{Edit PR Review Bot Settings | Greptile}

backend/src/ee/routes/v1/access-approval-request-router.ts

backend/src/ee/services/access-approval-request/access-approval-request-types.ts

backend/src/services/smtp/emails/SecretApprovalRequestBypassedTemplate.tsx

docs/documentation/platform/access-controls/access-requests.mdx

docs/internals/permissions/project-permissions.mdx

docs/documentation/platform/pr-workflows.mdx

frontend/src/hooks/api/accessApproval/queries.tsx

backend/src/ee/services/access-approval-request/access-approval-request-service.ts

...ecret-manager/SecretApprovalsPage/components/AccessApprovalRequest/AccessApprovalRequest.tsx

docs/documentation/platform/pr-workflows.mdx

- Review envName from endpoint params and derive it - Use variables in logic blocks - New function on frontend + memoization

x032205 added 3 commits May 21, 2025 15:01

access request bypass

e5229a5

Merge branch 'main' into ENG-2801

dc6a94c

merge + final tweaks

e3725dd

mintlify bot deployed to staging - docs May 21, 2025 19:49 View deployment

greptile-apps bot reviewed May 21, 2025

View reviewed changes

Greptile review fixes

c1fa344

mintlify bot deployed to staging - docs May 21, 2025 22:18 View deployment

x032205 added 2 commits May 21, 2025 18:44

license revert

7041b88

ui and backend improvements

4d173ad

x032205 requested a review from akhilmhdh May 21, 2025 23:47

akhilmhdh requested changes May 23, 2025

View reviewed changes

x032205 added 2 commits May 23, 2025 11:18

Merge branch 'main' into ENG-2801

e81991c

Review fixes:

804f8be

- Review envName from endpoint params and derive it - Use variables in logic blocks - New function on frontend + memoization

mintlify bot deployed to staging - docs May 23, 2025 16:06 View deployment

akhilmhdh approved these changes May 26, 2025

View reviewed changes

x032205 merged commit db1ca2b into main May 26, 2025
7 of 8 checks passed

x032205 deleted the ENG-2801 branch May 26, 2025 14:29

maidul98 changed the title ~~feat(policies): Approval Request Break-Glass Bypass~~ feat(policies): Access Request Break-Glass Bypass May 27, 2025

This was referenced Mar 14, 2026

improvement(pam): replace PAM resources table with card grid layout #5700

Closed

feat: add PostHog telemetry events for SSO, App Connection, Secret Rotation V2, and Gateway #5731

Merged

fix: investigate memory usage and bundle size #5767

Merged

greptile-apps bot mentioned this pull request Mar 24, 2026

improvement: update list secrets to explicitly accept etag hash and 304 response Infisical/go-sdk#68

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(policies): Access Request Break-Glass Bypass#3643

feat(policies): Access Request Break-Glass Bypass#3643
x032205 merged 8 commits intomainfrom
ENG-2801

x032205 commented May 21, 2025 •

edited by maidul98

Loading

Uh oh!

maidul98 commented May 21, 2025 •

edited

Loading

Uh oh!

greptile-apps bot left a comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

x032205 commented May 21, 2025 • edited by maidul98 Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description 📣

Type ✨

Uh oh!

maidul98 commented May 21, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

🎉 Snyk checks have passed. No issues have been found so far.

Uh oh!

greptile-apps bot left a comment

Choose a reason for hiding this comment

PR Summary

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

x032205 commented May 21, 2025 •

edited by maidul98

Loading

maidul98 commented May 21, 2025 •

edited

Loading