Security News
tea.xyz Spam Plagues npm and RubyGems Package Registries
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
subterra
Advanced tools
Readme
From Latin Sub Terra ("Under Earth; Underground; Layer below your application").
Subterra is a free, open-source and lightweight content management system. Running on Node.js and MySQL. Officially made for a school project, but converted to a downloadable npm-package and made public for everyone to implement in their projects.
Subterra is:
Subterra is easily installed by typing the following command:
$ npm install subterra --save
Before you can start expanding your project, you need to set some things up first. After all, Subterra is just a package you add to your project, instead of a package that takes it over fully.
In order for subterra to work on your server, you need to add some env-variables. Create an .env
file containg these variables:
Note: Everything after the equals sign, including the parentheses, should be replaced with your specific data.
DB_HOST=( Host-address )
DB_USERNAME=( Database username )
DB_PASSWORD=( Database password )
DB_DATABASE=( The name of the database your site will use, however you want to name it )
DB_PORT=3306
SUBTERRA_USERNAME=( Admin username to Subterra, to your preference (Can only be edited via a MySQL query via tools like MySQL Workbench) )
SUBTERRA_PASSWORD=( Admin password to Subterra, to your preference (Can only be edited via a MySQL query via tools like MySQL Workbench) )
CRYPTO_KEY=( The key to encrypt the administrator password, must be an integer (larger numbers are better) )
SESSION_SECRET=( A string to keep the administrator session a secret )
An example .env
file can also be found on the blank Subterra project repository on GitHub.
Though the CMS itself is entirely dynamic, the file-structure it applies must be consistent with the next diagram. You do need to create certain files and folders for Subterra to function, but you are free to expand on these files as you please.
subterra-project-folder
├─ media (An empty folder in which Subterra stores all image-uploads made via the CMS)
├─ node_modules (Subterra operates from here; folder is created when Subterra is installed)
│ └─ ...
├─ routes (The necessary routes for your project)
│ ├─ main.js
│ └─ page.js
├─ views (The necessary ejs-views for your project)
│ ├─ error.ejs
│ ├─ index.ejs
│ └─ page.ejs
├─ .env (The previously mentioned .env file)
├─ package.json (The package.json file from your own project)
└─ server.js (The server your project runs on)
All files can be found in a repository on GitHub. You can checkout the code or directly clone the needed files in a new folder on your system with the following command:
$ git clone https://github.com/BerendPronk/subterra-project.git
Navigate to /subterra
and log in with the administrator data you added in the server environment file.
Is there something wrong with Subterra, or are you having trouble setting everything up? File an issue over on the issues page of Subterra. The users of Subterra and I would love to help.
Bugs and feature ideas should be filed as issues, as well.
Copyright - Berend Pronk
2017
FAQs
A Free Open-Source Lightweight Content Management System, running on Node.js and MySQL
The npm package subterra receives a total of 8 weekly downloads. As such, subterra popularity was classified as not popular.
We found that subterra demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Tea.xyz, a crypto project aimed at rewarding open source contributions, is once again facing backlash due to an influx of spam packages flooding public package registries.
Security News
As cyber threats become more autonomous, AI-powered defenses are crucial for businesses to stay ahead of attackers who can exploit software vulnerabilities at scale.
Security News
UnitedHealth Group disclosed that the ransomware attack on Change Healthcare compromised protected health information for millions in the U.S., with estimated costs to the company expected to reach $1 billion.