Posts Tagged:drupal site

rfp-robotRFP ROBOT: Website Request for Proposal Generator

The time has come for a new website (or website redesign), which means you need to write a website request for proposal or web RFP. A Google search produces a few examples, but they vary wildly and don’t seem to speak really to your goals for developing or redesigning a new website. You need to write a website RFP that will clearly articulate your needs and generate responses from the best website designers and developers out there. But how?

Have no fear, RFP Robot is here. He will walk you through a step-by-step process to help you work through the details of your project and create a PDF formatted website design RFP that will provide the information vendors need to write an accurate bid. RFP Robot will tell you what info you should include, point out pitfalls, and give examples.


Virtual reality on campus with Drupal

One of the most stressful experiences for students is the process of choosing the right university. Researching various colleges and universities can be overwhelming, especially when students don’t have the luxury of visiting different campuses in person. At Acquia Labs, we wanted to remove some of the complexity and stress from this process, by making campus tours more accessible through virtual reality. During my presentation at Acquia Engage Europe yesterday, I shared how organizations can use virtual reality to build cross-channel experiences. People that attended Acquia Engage Europe asked if they could have a copy of my video, so I decided to share it on my blog. The demo video below features a high school student, Jordan, who is interested in learning more about Massachusetts State University (a fictional university). From the comfort of his couch, Jordan is able to take a virtual tour directly from the university’s website. After…

Read More →

Decoupling Drupal 8 with JSON API

In a previous installment of Experience Express, we explored how effective core REST out of the box can be for the purposes of consuming content retrieved from Drupal and manipulating said data as well. Furthermore, with the help of Views, any content listing can be easily converted into an API resource. As these features indicate, Drupal 8 is a powerful web services provider that can expose content to any consumer application on any channel. Nonetheless, sometimes our requirements far exceed the functionality available to us. As we saw in the previous post, core REST only allows for individual entities to be retrieved, and Views REST exports only permit the issuance of GET requests rather than unsafe methods as well. But application developers often need greater flexibility and control, such as the ability to fetch collections, sort and paginate them, and access related entities that are referenced. In this column, we’ll…

Read More →

How to Build a Drupal Site with Composer, as Seen at DrupalCon

Fellow Acquian Matthew Grasmick and I just presented How to build a Drupal site with Composer AND keep all of your hair at DrupalCon Nashville, and though the session wasn’t recorded, we posted the slides and hands-on guide to using Composer to manage your Drupal 8 sites to the linked session page. I wanted to dive into the session a little bit, because it was popular enough that many people couldn’t even get in since the room was so full! Matthew, in case you didn’t know, is the creator and a maintainer of Acquia BLT, a tool used to build, launch, and manage Drupal applications using all the best practices we’ve learned over years of Drupal experience at Acquia. And I’m the maintainer of Drupal VM, among other open source projects like an Ansible role for installing Composer. Both Matthew and I have a lot of experience with Composer, and…

Read More →

How Acquia Blocked 500,000 Attack Attempts

The Acquia blog has a fascinating and important post by Dries Buytaert and Cash Williams on the recent Drupal critical security vulnerability, and it’s aftermath: Acquia blocks 500,000 attack attempts for SA-CORE-2018-002. It’s worth checking out in its entirety, but here are a few take-aways if you haven’t gotten to it yet: When the Drupal Security Team made the security patch available, there were no publicly known exploits or attacks against SA-CORE-2018-002. But a subsequent article by a security research firm, and the posting of proof-of-concept code by another researcher spawned numerous exploits. Since then, Acquia has observed over 500,000 attacks from more than 3,000 different IP addresses across our fleet of servers and customer base. Fortunately, Acquia deployed a platform level mitigation for all Acquia Cloud customers one hour after the Drupal Security Team made the SA-CORE-2018-002 release available on March 28th. To the best of our knowledge, every…

Read More →

Acquia blocks 500,000 attack attempts for SA-CORE-2018-002

On March 28th, the Drupal Security Team released a bug fix for a critical security vulnerability, named SA-CORE-2018-002. Over the past week, various exploits have been identified, as attackers have attempted to compromise unpatched Drupal sites. Hackers continue to try to exploit this vulnerability, and Acquia’s own security team has observed more than 100,000 attacks a day. The SA-CORE-2018-002 security vulnerability is highly critical; it allows an unauthenticated attacker to perform remote code execution on most Drupal installations. When the Drupal Security Team made the security patch available, there were no publicly known exploits or attacks against SA-CORE-2018-002. That changed six days ago, after Checkpoint Research provided a detailed explanation of the SA-CORE-2018-002 security bug, in addition to step-by-step instructions that explain how to exploit the vulnerability. A few hours after Checkpoint Research’s blog post, Vitalii Rudnykh, a Russian security researcher, shared a proof-of-concept exploit on GitHub. Later that day,…

Read More →

Acquia blocks 500,000 attack attempts for SA-CORE-2018-002

On March 28th, the Drupal Security Team released a bug fix for a critical security vulnerability, named SA-CORE-2018-002. Over the past week, various exploits have been identified, as attackers have attempted to compromise unpatched Drupal sites. Hackers continue to try to exploit this vulnerability, and Acquia’s own security team has observed more than 100,000 attacks a day. The SA-CORE-2018-002 security vulnerability is highly critical; it allows an unauthenticated attacker to perform remote code execution on most Drupal installations. When the Drupal Security Team made the security patch available, there were no publicly known exploits or attacks against SA-CORE-2018-002. That changed six days ago, after Checkpoint Research provided a detailed explanation of the SA-CORE-2018-002 security bug, in addition to step-by-step instructions that explain how to exploit the vulnerability. A few hours after Checkpoint Research’s blog post, Vitalii Rudnykh, a Russian security researcher, shared a proof-of-concept exploit on GitHub. Later that day,…

Read More →

Decoupling Drupal 8 Core: Core REST, HAL, and Setting Up Drupal as a Web Services Provider

Perhaps the most critical piece of any decoupled CMS architecture is the API layer which exposes data in the back end for consumption by other applications. In Drupal’s case, the REST module (also known as the RESTful Web Services module) in Drupal 8 core fulfills this responsibility. The REST module contains important logic that drives the availability of data through formatted responses. Nevertheless, in many cases, what is provided in Drupal core might not be the most suited to your needs. For instance, the Hypertext Application Language (HAL) specification includes links to other resources, information that might be superfluous in a setting where payload size needs to be as minimal as possible. Fortunately, Drupal’s wider web services ecosystem, which I’ll discuss next week, incorporates API optionality across a diverse range of specifications like JSON API, GraphQL, and CouchDB. In this Experience Express column, we’re zeroing in on core REST because…

Read More →

Checking for Bad Passwords in Drupal to Avoid Site Compromise

Easy-to-guess passwords are all too often the means by which intruders gain unauthorised access. It’s useful to be able to audit the passwords in use on your site – especially for user accounts with administrative privileges. Ideally your Drupal site should have a robust (but user friendly) password policy (see my previous post: Password Policies and Drupal). However, this is not always possible. The problem with checking your users’ passwords is that Drupal doesn’t actually know what they are; rather than storing the plaintext password, a cryptographic (salted) hash is stored in the database. When a user logs in, Drupal runs the supplied password through its hashing algorithm and compares the result with the hash stored in the database. If they match, the user has successfully authenticated themselves. The idea is that even if the hashes stored in the database are compromised somehow, it should be very difficult (if not…

Read More →

Log Into Drupal Without the Login Block

This is actually quite a common question from our students. They start building their Drupal site. Then they go to work with their blocks or menus. Then they accidentally disable the “Log in” menu link. There is no “Log in” link displayed on the site anymore. Neither for them nor for their visitors. In this short tip, you will learn how to login to your Drupal admin page in such situation.  [[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]] Source: https://www.ostraining.com/

SANDcamp: Introduction to Site Building

Start:  2018-03-23 09:00 – 17:00 America/Los_Angeles Organizers:  rainbreaw cstauffer Event type:  Training (free or commercial) https://www.sandcamp.org/introduction-drupal-8-site-building Description Learn the basics of building a CMS (content management system) based website using Drupal 8 — a completely customizable, flexible, and scalable open-source framework. This introduction will give you all of the essentials required to produce a straightforward site, customize your content and displays, and enough knowledge to find more targeted information for unique customizations as you progress through your Drupal site building adventures. This training is being offered by STAUFFER – www.stauffer.com – for free as part of the Drupal Global Training Days initiative. Training Agenda Morning: Part I Introduction: What is Drupal? Getting Set Up Quickly Basic Site Configuration Basic Content Creation Navigation / Structure: — The Menu System — Taxonomy Morning: Part II Going beyond OOTB (out of the box) Options — Changing functionality with Contributed Modules — Customizing your…

Read More →

Posting my phone's battery status to my site

Earlier this month, I uninstalled Facebook from my phone. I also made a commitment to own my own content and to share shorter notes on my site. Since then, I shared my POSSE plan and I already posted several shorter notes. One thing that I like about Facebook and Twitter is how easy it is to share quick updates, especially from my phone. If I’m going to be serious about POSSE, having a good iOS application that removes friction from the publishing process is important. I always wanted to learn some iOS development, so I decided to jump in and start building a basic iOS application to post notes and photos directly to my site. I’ve already made some progress; so far my iOS application shares the state of my phone battery at https://dri.es/status. This is what it looks like: This was inspired by Aaron Parecki, who not only tracks…

Read More →

Delivered by Acquia: Drupal 8 Site Builder Accelerator Course w/ Certification prep

Level: IntroductoryThis innovative course is a ‘flipped’ virtual training that combines self-paced learning with weekly live virtual classroom sessions led by an expert Drupal instructor. Each week you will do weekly self-paced learning and project assignments when it is convenient for you, and attend a 90-minute instructor-led virtual class session. Each session is a workshop where students ask questions, test their skills in applying knowledge, and interact with one another in hands-on activities. The Course includes… Four weekly 90-minute virtual class sessions Access to self-paced study materials to learn each week’s Drupal topics Access to collaborative/social learning environment for peer-to-peer and peer-to-instructor asynchronous interaction Access to private Slack channel for this course for peer-to-peer help Slack access to instructor during specified weekly office hours Max class size of about 15 ensures significant instructor attention Voucher to take the Acquia Certified Site Builder – D8 exam ($250 value) – 1 free retake…

Read More →

To PESOS or to POSSE?

Yesterday I shared that I uninstalled the Facebook application from my phone. My friend Simon Surtees was quick to text me: “I for one am pleased you have left Facebook. Less Cayman Island pictures!”. Not too fast Simon. I never said that I left Facebook or that I’d stop posting on Facebook. Plus, I’ll have more Cayman Islands pictures to share soon. 🙂 As a majority of my friends and family communicate on Facebook and Twitter, I still want to share updates on social media. However, I believe I can do it in a more thoughtful manner that allows me to take back control over my own data. There are a couple of ways I could go about that: I could share my status updates and photos on a service like Facebook or Twitter and then automatically download and publish them to my website. I could publish my status updates…

Read More →

Working with BLT: An Automation Layer for Testing, Building, and Launching Drupal 8 Applications

Overview Mike Madison, a Technical Architect in Acquia Professional Services, recently completed a Drupal site build for a major public transit agency in the United States. I spoke with him in December 2017 about his experiences using BLT on this project. Mike said that BLT has been a critical component of the project’s success, and has especially helped in three primary ways: by accelerating project spinup, improving developer onboarding, and increasing development velocity and delivery consistency. About the project This transit agency set out to improve the efficiency of its customer experience, and create a cohesive user journey across all touchpoints and channels. To provide every commuter with the right experience, on the right device, at the right time, they needed to extend the information accessed on their website into train stations and platforms, as well as create an intranet. This required the ability to push screen-based information, news, and…

Read More →

Embed a Youtube Player as a Media Asset Into CKEditor in Drupal 8

The new media capabilities in Drupal allow you create a media library with all kinds of media assets and use these assets everywhere. One way to use them is to embed these assets directly into CKEditor. In this tutorial, I will show you how to pull a video from Vimeo with the Video Embed Field module. You will only need to store the video URL on your Drupal site. This will come in handy for a lot of site editors. Let’s start! [[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]] Source: https://www.ostraining.com/

Smart Cropping of Media with Image Widget Crop Drupal Module

Sometimes, in your Drupal site, you may need to crop images with a predefined aspect ratio but with different size values within a certain range. This is where the Image Widget Crop module is your tool for the job. It can be used in a great variety of Drupal sites. From image galleries to educational sites with illustrations. In this tutorial, you’ll be using the contrib Image Widget Crop module in conjunction with the new media features for images available in Drupal core.   [[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]] Source: https://www.ostraining.com/

Showcase Two Drupal Images Together with the Zurb TwentyTwenty Module

Zurb TwentyTwenty module is mostly intended to highlight the difference between two images on a Drupal site. One example use case is advertising images for skin products. Those images present half of the face before applying the product and half of the face after applying it. Besides doing direct comparisons between images, you can use this module for other purposes as well. In this tutorial, you will learn how Zurb TwentyTwenty module works. [[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]] Source: https://www.ostraining.com/

#DrupalGTD "Intro to Drupal 8 Site Building” – SoCal Code Camp x Stauffer

Start:  2017-12-02 (All day) America/Los_Angeles Organizers:  rainbreaw cstauffer Event type:  Training (free or commercial) https://www.socalcodecamp.com/member_register.aspx “SoCal Code Camp” is coming towards you at the speed of light, are you ready? We are! The community driven software and technology conference, is an absolutely free volunteer organized event scheduled to take place December 2nd & 3rd. Hosted on the grounds of the historic USC campus, the soirée will include great sessions, workshops, networking events, and a very special Four(4) part “Intro to Drupal 8 Site Building” training session lead by Rain Michael’s on Saturday, December 2nd. This is your time to shine: Follow the steps below to reserve your space today! 1. First things first, you’re the realest. 2. Register your account (link above) 3. RSVP for this years SoCal Code Camp 4. “Check” your interest in Session Parts 1–4 (below) 1.4 Intro to Drupal 8 Site Building: Part 1 of 4…

Read More →

Adding a MailChimp Newsletter to Your Drupal Site

Finding easy to use modules for Drupal 8 is not always easy. Often they haven’t been migrated from Drupal 7. Or they are still in beta. Or the documentation is either poor or non-existent. That’s why finding the MailChimp module was a true delight. In this tutorial, you will learn how to use this module to integrate your Drupal 8 site with MailChimp newsletter service. [[ This is a content summary only. Visit http://OSTraining.com for full links, other content, and more! ]] Source: https://www.ostraining.com/

Back to Top