mahi/Goa-gel-fullstack
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
e6b7ed68275e537756a333059a9f45a472570ff5
Goa-gel-fullstack/Documentation/business/governance.md
Mahi 435889ee79 docs: Rebuild documentation as enterprise-grade TLAS platform 
- Migrate from custom HTTP server to VitePress framework
- Rename project to Tokenized License Approval System (TLAS)
- Add comprehensive documentation for all stakeholders:
  - Business: Executive summary, value proposition, governance
  - Operations: Infrastructure, installation, monitoring, backup
  - Departments: User guide, workflows, verification, issuance
  - Developers: API reference, authentication, webhooks, SDKs
  - Compliance: OWASP, DPDP Act, IT Act, audit framework
- Add modern theme with dark mode and full-text search
- Update Dockerfile for VitePress build process

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-02-10 00:05:20 -04:00

1.7 KiB
Raw Blame History

Governance Model

Data Ownership

Data Type Owner Access
Application data Issuing department Department staff only
Citizen information Government Authorized personnel
Blockchain records State IT Read-only public verification
Audit logs Compliance authority Designated auditors

Role Hierarchy

State Administrator
        │
        ├── Department Admin
        │       │
        │       ├── Supervisor
        │       │       │
        │       │       └── Officer
        │       │
        │       └── Viewer (Reports only)
        │
        └── Technical Admin (System operations)

Access Control Matrix

Action Officer Supervisor Dept Admin State Admin
View applications Own queue Department Department All
Approve/Reject Yes Yes Yes No
Configure workflow No No Yes Yes
Manage users No No Yes Yes
System settings No No No Yes

Audit Requirements

All actions are logged with:

  • User identity
  • Timestamp (UTC)
  • Action type
  • Before/after state
  • IP address
  • Session identifier

Logs are:

  • Immutable (append-only)
  • Retained for 7 years
  • Exportable for external audit
  • Searchable by authorized personnel

Change Management

Change Type Approval Required
Workflow modification Department Admin
User role assignment Department Admin
Department onboarding State Admin
System configuration Technical Admin + State Admin
Security policy State Admin + Compliance
Reference in New Issue View Git Blame Copy Permalink