Release Track
ReleaseTrack
Defines the declarative promotion lifecycle for a logical group of applications.
Establishes the governing "Path to Production" by encoding sequential deployment stages (e.g., dev, staging, prod), defining target environments, and orchestrating required stakeholder approvals to ensure a controlled and automated release progression.
| Property | Type | Description |
|---|---|---|
| apiVersion | string | |
| kind | string | |
| metadata | map | |
| spec | Spec |
Spec
Contains the user-defined configuration for the release track's stages. Encapsulates the sequential pipelines for pre-release validation, standard release promotion, and accelerated hotfix deployments.
| Property | Type | Description |
|---|---|---|
| description | string | This description is optional but will drastically improve the understand of the AI assistant about the structural elements of the organization |
| preReleaseStages | list of Stage | A list of deployment stages that are executed on pull requests before a release is created. These are typically used for deploying to non-production environments for testing and validation. Dictates the validation progression path for ephemeral or preview environments triggered during the integration phase. |
| releaseStages | list of Stage | A list of deployment stages that are executed as part of the main release process when a new version is tagged. This typically involves deploying to staging and production environments. Dictates the primary promotion path for official artifacts through the defined testing and production environments. |
| hotfixStages | list of Stage | A list of deployment stages for an accelerated release process, used for deploying urgent hotfixes to production. Dictates an expedited promotion path designed specifically to minimize lead time for critical patches while maintaining track governance. |
Stage
Defines a phase within a deployment strategy.
Maps out which application environments must be deployed to concurrently before proceeding, establishing the approval gates.
| Property | Type | Description |
|---|---|---|
| environments | list of string | A list of 'Environment' manifest names that are part of this deployment stage. An application must be successfully deployed to all environments in a stage before it can be promoted to the next. |
| stakeholders | DetailedAccessPermissions | Deprecated. A list of users and groups who are considered stakeholders for this stage. This can be used by CI/CD systems to require approvals before promoting an application to the environments in this stage. Deprecated: Use approval_policy instead. |
| approvalPolicy | ApprovalPolicy | The approval policy required to proceed with this stage. |
DetailedAccessPermissions
Aggregation of specific user and group access definitions.
Refers to lists of OrganizationUser and OrganizationUserGroup manifests that will be parsed to retrieve actual Google Workspace identity emails for IAM binding construction.
| Property | Type | Description |
|---|---|---|
| members | list of string | A list of 'OrganizationUser' manifest names to be included in this permission set. |
| groups | list of string | A list of 'OrganizationUserGroup' manifest names to be included in this permission set. |
ApprovalPolicy
| Property | Type | Description |
|---|---|---|
| stakeholder | Stakeholder | A single stakeholder (User or Group) |
| anyOf | ApprovalSet | Requires any of the defined policies to be satisfied (OR logic) |
| allOf | ApprovalSet | Requires all of the defined policies to be satisfied (AND logic) |
| quorum | ApprovalSet | Requires a minimum number of the defined policies to be satisfied (Quorum logic) |
Stakeholder
| Property | Type | Description |
|---|---|---|
| userEmail | string | |
| groupEmail | string |
ApprovalSet
| Property | Type | Description |
|---|---|---|
| policies | list of ApprovalPolicy | |
| minApprovals | int32 | For Quorum logic: Minimum number of policies that must be satisfied. |