UIAP Authoring/Manifest

UIAP Authoring/Manifest Spec v0.1

Field	Value
Status	Draft
Version	0.1
Date	2026-03-27
Dependencies	[UIAP-CORE], [UIAP-CAP], [UIAP-WEB], [UIAP-ACTION], [UIAP-POLICY], [UIAP-WORKFLOW]
Editors	Patrick

Normative Terms

The key words MUST, MUST NOT, SHOULD, MAY in this document are to be interpreted as described in RFC 2119 and BCP 14, when and only when they appear in ALL CAPS.

1. Purpose and Scope

UIAP Authoring/Manifest Spec v0.1 defines how UIAP artifacts for an application are structured, versioned, composed, validated, and published.

The specification governs in particular:

Package structure and package metadata
Manifest types for app, bindings, actions, policies, workflows, localization, and discovery import
Imports and reuse
Overlays and environment overrides
Review and provenance model
Versioning and compatibility
Build and release model

This specification builds on:

UIAP Core v0.1
UIAP Capability Model v0.1
UIAP Web Profile v0.1
UIAP Action Runtime Spec v0.1
UIAP Policy Extension v0.1
UIAP Workflow Extension v0.1
optionally UIAP Discovery Mapper Spec v0.1

It does not define the wire transport at runtime, but rather the authoritative source from which runtime bundles and releases are built.

2. Core Principles

Authoring manifests are the source of truth for published UIAP packages.
Discovery artifacts are input, but not automatically truth.
Overlays and imports MUST be deterministically resolvable.
Review status MUST be machine-readable.
Build outputs MUST be normalized and reproducible.
Runtime should not read loose authoring files but rather compiled bundles.
Semantics and IDs must be stable. Humans love to “clean things up later”. Protocols less so.

3. Document Model

Authoring documents use a common envelope format.

interface UIAPAuthoringDocument<TSpec = unknown, TStatus = unknown> {
  apiVersion: "uiap.authoring/v0.1";
  kind: AuthoringKind;
  metadata: ManifestMetadata;
  spec: TSpec;
  status?: TStatus;
}

type AuthoringKind =
  | "Package"
  | "App"
  | "Capabilities"
  | "Bindings"
  | "Actions"
  | "PolicySet"
  | "WorkflowCatalog"
  | "LocalePack"
  | "Overlay"
  | "ReviewSet"
  | "DiscoveryImport";

3.1 Metadata

interface ManifestMetadata {
  id: string;                         // unique within package
  title?: string;
  description?: string;

  version?: string;                   // optional for sub-manifests, required for Package
  packageId?: string;

  labels?: Record<string, string>;
  tags?: string[];

  owners?: OwnerRef[];
  source?: "manual" | "generated" | "mixed" | "imported";

  reviewState?:
    | "draft"
    | "generated"
    | "in_review"
    | "approved"
    | "rejected"
    | "deprecated";
}

interface OwnerRef {
  id: string;
  role?: "owner" | "maintainer" | "reviewer" | "approver";
  contact?: string;
}

Rules

metadata.id MUST be unique within a package.
Package manifests MUST set metadata.version.
Sub-manifests MAY omit metadata.version if they inherit the package version.
reviewState describes the domain-level approval status, not merely whether JSON is syntactically pretty.

4. Package Model

A UIAP package is the smallest versioned and publishable unit.

4.1 Package Manifest

interface PackageManifest {
  packageId: string;
  version: string;                    // semver-like
  profile: string;                    // e.g. "[email protected]"

  compatibility: CompatibilitySpec;

  imports?: PackageImport[];
  manifests: LocalManifestRef[];

  build?: BuildSpec;
  publish?: PublishSpec;
}

interface CompatibilitySpec {
  uiapCore: string;                   // e.g. ">=0.1 <0.2"
  profiles: string[];                 // e.g. ["[email protected]"]

  extensions?: Array<{
    id: string;
    range: string;
    required?: boolean;
  }>;

  sdk?: {
    web?: string;
  };

  appVersions?: string[];             // semver-like ranges or fixed strings
}

interface PackageImport {
  packageId: string;
  versionRange: string;
  alias: string;

  include?: {
    kinds?: AuthoringKind[];
    manifestIds?: string[];
  };
}

interface LocalManifestRef {
  id: string;
  kind: Exclude<AuthoringKind, "Package">;
  path: string;
  required?: boolean;
}

Rules

A package MUST have exactly one Package manifest.
A package MUST provide exactly one App manifest, either directly or via import plus overlay.
A package MAY contain multiple Bindings, Actions, PolicySet, WorkflowCatalog, and LocalePack manifests.
Imported manifest IDs MUST be namespaced via alias:id.
Local manifest IDs MUST NOT collide with imported fully qualified IDs.

5. Manifest Types

5.1 App Manifest

The App manifest describes the target application as an authoring-side entity.

interface AppManifest {
  appId: string;
  displayName: string;

  profile: string;                    // typically "[email protected]"
  defaultLocale?: string;
  supportedLocales?: string[];

  environments?: AppEnvironment[];
  principalProfiles?: AppPrincipalProfile[];

  routing?: AppRoutingConfig;
  sdk?: AppSDKConfig;

  metadata?: Record<string, unknown>;
}

interface AppEnvironment {
  id: string;                         // e.g. "dev", "staging", "prod"
  baseUrls?: string[];
  labels?: Record<string, string>;
}

interface AppPrincipalProfile {
  id: string;                         // e.g. "workspace-admin"
  roles?: string[];
  grants?: string[];
  description?: string;
}

interface AppRoutingConfig {
  mode?: "history" | "hash" | "custom";
  routeProviderRef?: string;
}

interface AppSDKConfig {
  annotationPrefix?: string;          // RECOMMENDED: "data-uiap-"
  routeProviderRef?: string;
  overlayEnabled?: boolean;
}

5.2 Capabilities Manifest

Wraps or supplements the formal Capability Model.

interface CapabilitiesManifest {
  document: CapabilityDocument;
}

Rules

This manifest MAY be fully maintained manually or derived from actions/bindings.
Build systems SHOULD produce an error or at least a review warning when conflicts exist between Capabilities and Actions/Bindings.

5.3 Bindings Manifest

Describes routes, scopes, and elements in authoritative form.

interface BindingsManifest {
  routes?: RouteBinding[];
  scopes?: ScopeBinding[];
  elements?: ElementBinding[];
}

interface RouteBinding {
  id: string;
  match: RouteMatcher[];

  title?: AuthoredText;
  parentRouteId?: string;

  successSignals?: SuccessSignal[];
  metadata?: Record<string, unknown>;
}

type RouteMatcher =
  | { kind: "routeId"; value: string }
  | { kind: "path"; value: string }
  | { kind: "urlPattern"; value: string }
  | { kind: "title"; value: string }
  | { kind: "signal"; value: string };

interface ScopeBinding {
  id: string;
  kind: ScopeKind;

  routeIds?: string[];
  parentScopeId?: ScopeId;

  title?: AuthoredText;
  stableIds?: StableId[];
  metadata?: Record<string, unknown>;
}

interface ElementBinding {
  id: StableId;
  scopeId?: ScopeId;
  routeIds?: string[];

  role?: UIRole;
  name?: AuthoredText;
  meaning?: string;

  match: ElementMatcher[];

  risk?: RiskLevel;
  dataClasses?: DataClass[];

  defaultAction?: ActionId;
  success?: SuccessSignal[];

  metadata?: Record<string, unknown>;
}

type ElementMatcher =
  | { by: "annotation"; attr: string; value: string }
  | { by: "semantic"; role?: UIRole; name?: string; scopeId?: ScopeId }
  | { by: "label"; text: string }
  | { by: "text"; text: string }
  | { by: "adapter"; id: string }
  | { by: "runtimeHint"; css?: string; xpath?: string };

Rules

annotation and semantic SHOULD be preferred over runtimeHint.
runtimeHint.css and runtimeHint.xpath MAY be used, but SHOULD NOT be the only robust identity for critical targets.
ElementBinding.id MUST remain stable even when DOM structures change.

5.4 Actions Manifest

Describes primitive and domain-specific actions plus implementation references.

interface ActionsManifest {
  actions: AuthoredAction[];
}

interface AuthoredAction extends ActionDescriptor {
  implementation?: ActionImplementationRef;
  selectors?: ManifestSelector[];
}

interface ActionImplementationRef {
  kind: "sdkHandler" | "serverAction" | "externalDriver" | "none";
  ref?: string;                       // e.g. "app.actions.createVideo"
}

Rules

ActionDescriptor.id MUST be unique within the package.
Domain actions SHOULD reference an implementation.
sdkHandler is the preferred form for direct app actions.
none is only permissible for purely declarative or not-yet-implemented candidates with corresponding review status.

5.5 PolicySet Manifest

Describes one or more applicable policy documents.

interface PolicySetManifest {
  policies: ScopedPolicyDocument[];
}

interface ScopedPolicyDocument {
  id: string;
  selector?: ManifestSelector;
  document: PolicyDocument;
}

Rules

Multiple policies MAY coexist.
Selectors determine when they are active.
Conflicts MUST be resolved deterministically. Default rule: the stricter policy wins.

5.6 WorkflowCatalog Manifest

Contains versioned workflow definitions.

interface WorkflowCatalogManifest {
  workflows: AuthoredWorkflow[];
}

interface AuthoredWorkflow {
  selector?: ManifestSelector;
  review?: WorkflowReviewHints;
  definition: WorkflowDefinition;
}

interface WorkflowReviewHints {
  level?: "draft" | "candidate" | "approved";
  highRisk?: boolean;
  generatedFromDiscovery?: boolean;
}

Rules

Workflow IDs MUST be unique within the package.
Generated workflows SHOULD NOT automatically flow into production channels unless they have been reviewed or released via waiver.
Workflows MAY be supplemented or restricted via overlays, but not silently reinterpreted semantically.

5.7 LocalePack Manifest

Defines reusable texts.

interface LocalePackManifest {
  namespaces: Record<string, LocaleNamespace>;
}

interface LocaleNamespace {
  messages: Record<string, LocaleMessage>;
}

interface LocaleMessage {
  default: string;
  byLocale?: Record<string, string>;
}

Authored Text

Authoring sources MAY use references instead of LocalizedText:

type AuthoredText =
  | LocalizedText
  | {
      ref: string;                    // e.g. "workflow.video.first.title"
      fallback?: string;
    };

Rules

Build systems MUST resolve AuthoredText into normal LocalizedText or string output.
Missing locale keys SHOULD fall back to fallback or defaultLocale.
Missing required texts MUST appear at minimum as a review warning.

5.8 Overlay Manifest

Allows environment-, tenant-, channel-, or role-specific modifications.

interface OverlayManifest {
  selector: ManifestSelector;
  patches: ManifestPatch[];
}

interface ManifestSelector {
  environments?: string[];
  channels?: ReleaseChannel[];
  locales?: string[];
  tenantIds?: string[];
  principalProfiles?: string[];
  appVersionRanges?: string[];
}

type ManifestPatchOp =
  | "replace"
  | "merge"
  | "append"
  | "remove"
  | "upsert";

interface ManifestPatch {
  manifestId: string;                 // local or alias:id
  path: string;                       // JSON Pointer
  op: ManifestPatchOp;

  matchKey?: string;                  // only for upsert
  value?: unknown;
}

Patch Semantics

replace: replaces value at path
merge: deep-merge for objects
append: appends to arrays
remove: removes target
upsert: inserts into or updates arrays of objects by matchKey

Rules

Overlays MUST be applied after imports and before the final build.
When multiple overlays match, the order SHOULD be deterministic, by default following the manifest order within the package.
Conflicts on the same path MUST either be resolved deterministically or flagged as a build error. Silent overwriting is the kind of “feature” that costs months later.

5.9 ReviewSet Manifest

Carries review decisions, waivers, and approvals.

interface ReviewSetManifest {
  decisions: ReviewDecision[];
  waivers?: ReviewWaiver[];
}

interface ReviewDecision {
  target: ReviewTarget;
  state: "approved" | "rejected" | "needs_review";
  by: string;
  at: string;
  comment?: string;
}

interface ReviewWaiver {
  target: ReviewTarget;
  reason: string;
  by: string;
  at: string;
  expiresAt?: string;
}

interface ReviewTarget {
  manifestId: string;
  path?: string;
  itemId?: string;
}

Rules

ReviewSet does not alter domain content, only the approval status.
Expired waivers MUST NOT count for production releases.
Build pipelines SHOULD evaluate review gates from both ReviewSet and PublishSpec.

5.10 DiscoveryImport Manifest

Brings discovery results into authoring in a controlled manner.

interface DiscoveryImportManifest {
  source: {
    runId?: string;
    ref?: string;                     // file path, URI, or package ref
  };

  accept: DiscoveryAcceptanceRule[];
  reject?: DiscoveryRejectionRule[];
}

interface DiscoveryAcceptanceRule {
  kind:
    | "route"
    | "scope"
    | "element"
    | "action"
    | "workflowCandidate"
    | "reviewItem";

  ids?: string[];
  targetManifestId: string;
  mode?: "copy" | "promote" | "link";
}

interface DiscoveryRejectionRule {
  kind:
    | "route"
    | "scope"
    | "element"
    | "action"
    | "workflowCandidate"
    | "reviewItem";

  ids?: string[];
  reason?: string;
}

Rules

Discovery imports MUST be explicit.
Discovery artifacts MUST NOT automatically become productive without acceptance rules.
promote means: discovery content is transferred into an authoritative manifest.
link means: discovery remains evidence, not source.

6. Imports and Resolution

6.1 Import ID Space

Imported manifests are namespaced in the build with an alias:

<alias>:<manifestId>

Example:

base:actions.core
shared:workflow.onboarding.common

6.2 Import Rules

alias MUST be unique within the package.
Imported manifests MAY only be referenced via fully qualified IDs.
Local manifests MUST NOT implicitly override imported content.
Modifications to imported manifests occur only via Overlay or deliberate forking.

7. Merge and Build Semantics

A build MUST handle these steps in exactly this order:

Load package
Resolve imports
Load local manifests
Apply discovery imports
Apply overlays
Resolve locale references
Apply review status
Validate references
Generate normalized bundle
Check publish gates

7.1 Kind-Specific Merge Rules

App

Exactly one effective App document after merge

Capabilities

Objects deep-merge
Lists deduplicated by stable identity

Bindings

routes, scopes, elements merged by id or stableId
Conflicts in match definitions SHOULD require review

Actions

Merged by action.id
Incompatible implementation refs MUST produce an error or review warning

PolicySet

Policies consolidated
Selection and prioritization remain a policy concern

WorkflowCatalog

Merged by definition.id
Same ID + different structure = conflict, unless an overlay explicitly addresses it

LocalePack

Merged by namespace + message key + locale

ReviewSet

Decisions applied to targets
Later decisions MAY override earlier ones but SHOULD be audited

8. Build Context

interface BuildContext {
  environment?: string;
  channel?: ReleaseChannel;
  locale?: string;
  tenantId?: string;
  principalProfile?: string;
  appVersion?: string;
}

A build MUST always be resolved against an explicit or implicit context.

9. Publish and Release Model

type ReleaseChannel =
  | "dev"
  | "staging"
  | "canary"
  | "prod"
  | "deprecated";

interface PublishSpec {
  defaultChannel?: ReleaseChannel;
  channels: ReleaseChannelSpec[];
}

interface ReleaseChannelSpec {
  name: ReleaseChannel;

  selectors?: ManifestSelector[];
  requiredReviewState?: "approved" | "in_review" | "draft";
  allowWaivers?: boolean;

  forbidGeneratedOnly?: boolean;
  requireDigest?: boolean;
}

Rules

prod SHOULD require requiredReviewState = "approved".
prod SHOULD use forbidGeneratedOnly = true.
canary and staging MAY have more lenient review gates.
The publish specification MUST be checked before bundle output.

10. Provenance and Status

status is optional, but practically unavoidable for real teams.

interface ManifestStatus {
  provenance?: ProvenanceRecord[];
  warnings?: string[];
  digest?: string;
}

interface ProvenanceRecord {
  source: "manual" | "discovery" | "import" | "generated" | "runtime-trace";
  ref?: string;
  note?: string;
  at?: string;
}

Rules

Authoritative content SHOULD include provenance.
Discovery-based fields SHOULD traceably reference a run, evidence, or import.
Build systems SHOULD be able to derive review obligations from provenance.

11. Versioning

11.1 Package Version

Package.spec.version MUST be semver-like.

11.2 Breaking Change

A major bump SHOULD occur when:

IDs are changed incompatibly
Workflow or action semantics become incompatible
Policy behavior changes in stricter or more lenient ways with relevant runtime impact
App or profile compatibility breaks

11.3 Minor Change

A minor bump SHOULD occur when:

New workflows, bindings, actions, or policies are added additively
New localizations are added
Overlays are additively extended

11.4 Patch Change

A patch SHOULD occur when:

Only texts, review metadata, or harmless corrections are adjusted
No wire or runtime semantics are materially changed

12. Normalized Build Output

Runtime and SDK SHOULD consume a compiled bundle.

interface UIAPCompiledBundle {
  packageId: string;
  version: string;
  profile: string;

  buildContext: BuildContext;
  compatibility: CompatibilitySpec;

  app: AppManifest["spec"];
  capabilities?: CapabilityDocument;
  bindings?: BindingsManifest["spec"];
  actions?: AuthoredAction[];
  policies?: ScopedPolicyDocument[];
  workflows?: WorkflowDefinition[];
  locales?: Record<string, string>;

  manifestIndex?: string[];
  digest?: string;
}

Rules

The bundle MUST be free of unresolved imports and overlays.
Locale references MUST be resolved.
Only content valid for the build context MAY be included.
Review gates MUST have been passed before bundle creation or at the latest before publish.

13. Minimum Conformance

A conforming uiap.authoring/v0.1 implementation MUST:

Support the common document model
Understand Package, App, Bindings, Actions, PolicySet, WorkflowCatalog, Overlay, and ReviewSet
Deterministically resolve imports and overlays
Validate IDs
Be able to generate a normalized bundle
Be able to evaluate review gates

It SHOULD additionally:

Support Capabilities and LocalePack
Support DiscoveryImport
Store provenance
Generate build digests
Support publish channels

14. Recommended Directory Structure

uiap/
  package.uiap.yaml
  app.uiap.yaml

  capabilities/
    core.uiap.yaml

  bindings/
    routes.uiap.yaml
    elements.uiap.yaml

  actions/
    core.uiap.yaml
    billing.uiap.yaml

  policies/
    default.uiap.yaml
    admin.uiap.yaml

  workflows/
    onboarding.uiap.yaml
    support.uiap.yaml

  locales/
    common.uiap.yaml

  overlays/
    staging.uiap.yaml
    prod.uiap.yaml
    tenant-acme.uiap.yaml

  reviews/
    approvals.uiap.yaml

  discovery/
    staging-admin.discovery.json
    promoted.uiap.yaml

15. Reference Example

15.1 Package Manifest

apiVersion: uiap.authoring/v0.1
kind: Package
metadata:
  id: package.videoland
  version: 0.1.0
  title: Videoland UIAP Pack
  reviewState: approved
spec:
  packageId: videoland.uiap
  version: 0.1.0
  profile: [email protected]

  compatibility:
    uiapCore: ">=0.1 <0.2"
    profiles: ["[email protected]"]
    extensions:
      - id: uiap.policy
        range: ">=0.1 <0.2"
        required: true
      - id: uiap.workflow
        range: ">=0.1 <0.2"
        required: true
    sdk:
      web: ">=0.1 <0.2"

  imports:
    - packageId: uiap.shared.base
      versionRange: "^0.1.0"
      alias: base

  manifests:
    - id: app.core
      kind: App
      path: app.uiap.yaml

    - id: bindings.routes
      kind: Bindings
      path: bindings/routes.uiap.yaml

    - id: bindings.elements
      kind: Bindings
      path: bindings/elements.uiap.yaml

    - id: actions.core
      kind: Actions
      path: actions/core.uiap.yaml

    - id: policies.default
      kind: PolicySet
      path: policies/default.uiap.yaml

    - id: workflows.onboarding
      kind: WorkflowCatalog
      path: workflows/onboarding.uiap.yaml

    - id: locales.common
      kind: LocalePack
      path: locales/common.uiap.yaml

    - id: overlays.prod
      kind: Overlay
      path: overlays/prod.uiap.yaml

    - id: reviews.approvals
      kind: ReviewSet
      path: reviews/approvals.uiap.yaml

  publish:
    defaultChannel: staging
    channels:
      - name: staging
        requiredReviewState: in_review
        allowWaivers: true
      - name: prod
        requiredReviewState: approved
        allowWaivers: false
        forbidGeneratedOnly: true
        requireDigest: true

15.2 Workflow Catalog Manifest

apiVersion: uiap.authoring/v0.1
kind: WorkflowCatalog
metadata:
  id: workflows.onboarding
  title: Onboarding Workflows
  source: mixed
  reviewState: in_review
spec:
  workflows:
    - review:
        level: approved
        highRisk: false
      definition:
        id: video.create_first_video
        version: 0.1.0
        title:
          ref: workflow.video.first.title
          fallback: Erstes Video erstellen
        category: onboarding
        startMode: suggested
        interactionModes: [guide, assist, auto]
        initialStepId: intro
        steps:
          - id: intro
            type: instruction
            text:
              ref: workflow.video.first.intro
              fallback: Ich helfe dir beim ersten Video.
            next: done

          - id: done
            type: complete

15.3 Overlay Manifest

apiVersion: uiap.authoring/v0.1
kind: Overlay
metadata:
  id: overlays.prod
  reviewState: approved
spec:
  selector:
    channels: [prod]
  patches:
    - manifestId: policies.default
      path: /spec/policies/0/document/defaults/onUnknownAction
      op: replace
      value: deny

    - manifestId: workflows.onboarding
      path: /spec/workflows
      op: upsert
      matchKey: definition.id
      value:
        review:
          level: approved
        definition:
          id: video.create_first_video
          version: 0.1.1
          title:
            default: Erstes Video erstellen
          category: onboarding
          startMode: suggested
          interactionModes: [guide, assist]
          initialStepId: intro
          steps:
            - id: intro
              type: instruction
              text: Ich helfe dir beim ersten Video.
              next: done
            - id: done
              type: complete

15.4 ReviewSet Manifest

apiVersion: uiap.authoring/v0.1
kind: ReviewSet
metadata:
  id: reviews.approvals
  reviewState: approved
spec:
  decisions:
    - target:
        manifestId: workflows.onboarding
        itemId: video.create_first_video
      state: approved
      by: patrick
      at: "2026-03-26T17:00:00Z"
      comment: Freigegeben für Staging und Prod.

  waivers: []

16. What Comes Next

After this spec, the next logical building block is clearly UIAP Conformance Suite v0.1. Now there is finally something that can actually be tested consistently: manifest validation, import resolution, overlay conflicts, review gates, bundle compilation, and the delightful question of whether someone is “UIAP-compatible” or merely particularly convinced of it.

Normative References

[UIAP-CORE] UIAP Core v0.1
[UIAP-CAP] UIAP Capability Model v0.1
[UIAP-WEB] UIAP Web Profile v0.1
[UIAP-ACTION] UIAP Action Runtime v0.1
[UIAP-POLICY] UIAP Policy Extension v0.1
[UIAP-WORKFLOW] UIAP Workflow Extension v0.1
[RFC2119] Key words for use in RFCs to Indicate Requirement Levels, BCP 14

Security Considerations

Manifest files MAY reference credential locations or API endpoints; they SHOULD NOT be committed to public repositories without redaction.
Schema validation MUST be performed before loading manifests to prevent injection attacks via manipulated YAML/JSON files.
Authoring tools SHOULD access the target application only with minimal permissions.

Changelog

Version	Date	Changes
0.1	2026-03-27	Initial draft