Governance Service Configuration
Governance Service is configured through Helm values and environment variables rendered by the deployment chart.
Required Categories
Section titled “Required Categories”- Server settings and service version.
- PostgreSQL connection details.
- Migration behavior.
- Auth Service URL and service-to-service API key.
- Integrity Service URL.
- Optional PDF generation service URL.
- Credential encryption key.
- File storage provider and provider-specific credentials.
- Swagger and public base path settings when API reference is exposed.
Production Guidance
Section titled “Production Guidance”- Use
gcs,azure_blob, oraws_s3storage for customer evidence. - Do not use mock storage for production evidence.
- Keep encryption keys stable across upgrades.
- Store secrets in Kubernetes secrets or an approved secret-management workflow.
- Keep Auth Service and Governance Service shared secrets synchronized.
- Use the umbrella chart globals unless a service-specific override is required.
Reference
Section titled “Reference”The generated Helm values reference is the customer-facing values table for the release. The service environment reference is generated from the released chart and service configuration docs.