Skip to main content

Drupal Security

Introducing the Filter Format Audit module

by lee.rowlands /

Securing filter formats is one of the most important tasks when setting up a new site.

But sometimes when you inherit a site you find it wasn't done securely, or perhaps over time the format has gotten a bit lax and you want to make changes.

The Filter Format Audit module makes this task easy.

 

Read the full post

Managing Composer Github access with Personal Access Tokens

by kim.pepper /

All PreviousNext Drupal 8 projects are now managed using Composer. This is a powerful tool, and allows our projects to define both public and private modules or libraries, and their dependencies, and bring them all together.

 

However, a if you require public or private modules which are hosted on GitHub you may run into the API Rate Limits. In order to overcome this, it is recommended to add a GitHub personal access token to your composer configuration.

 

In this blog post, I'll show how you can do this in a secure and manageable way.

Read the full post

Securing Drupal: Storing API Tokens in Lockr

by nick.santamaria /

As seen in the recent Uber hack, storing secrets such as API tokens in your project repository can leave your organisation vulnerable to data breaches and extortion. This tutorial demonstrates a simple and effective way to mitigate this kind of threat by leveraging Key module to store API tokens in remote key storage.

Read the full post

Pagination