=== modified file 'TODO'
--- TODO	2010-09-25 20:09:10 +0000
+++ TODO	2010-09-25 21:24:49 +0000
@@ -3,10 +3,7 @@
 * Use _attribute_((nonnull)) wherever possible.
 
 * Release critical
-** mandos
 ** Update copyright year to add 2010
-** mandos.xml
-*** Document the approval concept
 
 * mandos-client
 ** TODO [#B] use scandir(3) instead of readdir(3)

=== modified file 'mandos.xml'
--- mandos.xml	2010-09-25 20:09:10 +0000
+++ mandos.xml	2010-09-25 21:24:49 +0000
@@ -338,6 +338,26 @@
     </para>
   </refsect1>
   
+  <refsect1 id="approval">
+    <title>APPROVAL</title>
+    <para>
+      The server can be configured to require manual approval for a
+      client before it is sent its secret.  The delay to wait for such
+      approval and the default action (approve or deny) can be
+      configured both globally and per client; see <citerefentry>
+      <refentrytitle>mandos-clients.conf</refentrytitle>
+      <manvolnum>5</manvolnum></citerefentry>.  By default all clients
+      will be approved immediately without delay.
+    </para>
+    <para>
+      This can be used to deny a client its secret if not manually
+      approved within a specified time.  It can also be used to make
+      the server delay before giving a client its secret, allowing
+      optional manual denying of this specific client.
+    </para>
+    
+  </refsect1>
+  
   <refsect1 id="logging">
     <title>LOGGING</title>
     <para>