# Allowed commands

LogicalDOC relies on a set of external commands to implement features like document preview or OCR. You may also run whatever external command from inside the Automation.

In order to improve the security, only those commands listed in the file <LDOC_HOME>/conf/allowed-commands.txt can be executed. That is a text file you can edit easily edit and the format is very simple: each line represents the full path of an allowed command.

A simple allowed-commands.txt looks like this:

C:\LogicalDOC\imagemagick\convert.exe
C:\LogicalDOC\ghostscript\bin\gs.exe
C:\LogicalDOC\openssl\bin\openssl.exe
C:\LogicalDOC\clamav\clamscan.exe
C:\LogicalDOC\tesseract\tesseract.exe

If you want to allow all possible commands, you may put the special line *:

*
C:\LogicalDOC\imagemagick\convert.exe
C:\LogicalDOC\ghostscript\bin\gs.exe
C:\LogicalDOC\openssl\bin\openssl.exe
C:\LogicalDOC\clamav\clamscan.exe
C:\LogicalDOC\tesseract\tesseract.exe