From e55582b904961321d77595fe26e82c6c73339cd1 Mon Sep 17 00:00:00 2001
From: Pawel Kopiczko <pawel.kopiczko@goteleport.com>
Date: Fri, 29 Nov 2024 13:44:04 +0000
Subject: [PATCH] Update role reference with reason.mode

---
 docs/pages/includes/role-spec.mdx                        | 8 ++++++++
 rfd/0186-optionally-require-reason-for-access-request.md | 4 ++--
 2 files changed, 10 insertions(+), 2 deletions(-)

diff --git a/docs/pages/includes/role-spec.mdx b/docs/pages/includes/role-spec.mdx
index 2ac34fad5fd79..ef780959cd30b 100644
--- a/docs/pages/includes/role-spec.mdx
+++ b/docs/pages/includes/role-spec.mdx
@@ -366,6 +366,14 @@ spec:
       kubernetes_resources:
         - kind: "namespace"
 
+      # 'reason' defines settings for the reason for the access provided by the user.
+      reason:
+        # 'mode' can be either "required" or "optional". Empty string is treated as
+        # "optional". If a role has the request reason mode set to "required", then reason
+        # is required for all Access Requests requesting roles or resources allowed by
+        # this role. It applies only to users who have this role assigned.
+        mode: "optional"
+
       # thresholds specifies minimum amount of approvers and deniers,
       # defaults to 1 for both (enterprise-only)
       thresholds:
diff --git a/rfd/0186-optionally-require-reason-for-access-request.md b/rfd/0186-optionally-require-reason-for-access-request.md
index eeca95046737b..eff1f19cfd79a 100644
--- a/rfd/0186-optionally-require-reason-for-access-request.md
+++ b/rfd/0186-optionally-require-reason-for-access-request.md
@@ -1,9 +1,9 @@
 ---
 authors: Pawel Kopiczko (pawel.kopiczko@goteleport.com)
-state: draft
+state: implemented
 ---
 
-# RFD 186 - Optionally require reason for access request
+# RFD 186 - Optionally require reason for Access Request
 
 
 ## Required Approvers