- Installing and upgrading
-
- Installation overview
- General installation requirements
- Upgrading
- Installing on Ubuntu Linux
- Installing on CentOS Linux
- Installing on SuSE
- Installing on Windows Server
- Installing on Mac OS X
- Configuring php.ini
- Configuring Apache
- Configuring the database
- OpenOffice / LibreOffice
- OpenCV (facial recognition)
- Alternative installation
- Upgrading PHP versions
- Backups
- User management
- Advanced user group options
- Customising ResourceSpace
- Plugins
- StaticSync
- Configuring ResourceSpace
-
- The config file
- E-commerce
- E-commerce and PayPal
- Offline job queues
- File integrity checking
- ResourceSpace file storage (filestore)
- Checksums
- Configuring geolocation settings
- Edit access for contributors
- Configuring Leaflet Maps
- Create Alternative Video Files
- Signing all database PHP code
- Integrating with Uppy Companion
Signing all database PHP code
From version 10.0, for security purposes any PHP code that is stored in the database and can be manipulated via the user interface must be signed using a command line utility. This is to prevent system compromise by a user that has gained administrator access.
Signing is done by executing the following:
php {path to resourcespace}/pages/tools/resign_all_code.php
This will need to be executed after changes to the following properties:
- Resource type field - "Value filter"
- Resource type field - "On change macro"
- Resource type field - "Autocomplete macro"
- Resource type field - "Exiftool filter"
- Resource type - "Config options"
- User group - "Config options"