emGee Software Solutions Custom Database Applications

Share this

Drupal CMS

AddWeb Solution: AddWeb, Answers the ‘What’ & ‘Why’ of govCMS!

Drupal.org aggregator - Mon, 04/29/2019 - 02:41

Drupal has been the choice of the world’s multiple large and top-notch organisations, across various fields. The royal family of the UK, the Greenpeace Greenwire, Oxford University, Warner Music Group, Tesla, Red Cross, and now the Australian Government - everyone is using Drupal. Security and the scope of customisation are two of the major reasons behind the selection of Drupal over other CMS platforms. In fact, the govCMS was also formed using Drupal to resolve the multiple issues faced by Government agencies viz. Security, cost, extraordinaire functionalities, flexibility, smooth process of procurement, et al.
 

As a dedicated Drupal-er for more than 6 years, AddWeb has worked on multiple enterprises and large-sized Drupal projects. And hence, we are cognizant of all the strengths that Drupal contains. This is exactly why we confirm with the Australian Government’s decision of choosing Drupal for creating govCMS.
 

There are multiple reasons that make govCMS an apt choice for Government organisations. govCMS is well-equipped to meet all the requirements of the Government organisation, along with following their guidelines of the web world.
 

, ,

Advantages of govCMS:

The Australian Government created the govCMS distribution by combining Drupal Core and a specific set of Drupal modules. So that uniformity is maintained across all the Australian Government’s websites and it the creation of the same also becomes easy. Let us how else does this, govCMS distribution proves to be advantageous:

 

Cost-Effective

Individual web hosting and creation of the sites demand time and money. The higher the security and quality of these sites, the higher the costing. govCMS saves on both of these factors and simplifies the entire process by choosing a single provider and hosting platform on Acquia Cloud Site Factory PaaS Service. In fact, whenever there’s an increase in resource usage, one can always upgrade the platform, which is eventually beneficial to all the other govCMS sites also.

 

Government Standards Compliance

The entire govCMS is created in a way that it perfectly complies with the standards of the Federal Government. Hence, this makes the further process quite smooth and sorted. Security being one of the major concerns while creating a website for such Government organisations. And hence, govCMS has complied with their guideline by completing the program process of Information Security Registered Accessors. Plus, every issue that is found and rectified in govCMS will also automatically be implemented to other govCMS sites too.

 

Software Maintenance

Drupal is one of the largest open-source platform available today and hence it has a large team of 600 expert community members, who work on making govCMS a consistently growing and highly efficient product. This is taken care by Acquia, which also provides 24x7 assistance for govCMS at application and hardware level.   

 

Security Compliance

One constantly needs to confirm that there are no issues with the govCMS sites, for which a continuous process of testing, bug-fixing and other such process is required to be followed. This is very well taken care of, when it comes to govCMS and hence the security of this platform is kept intact. In fact, an automated testing process has also been set across the entire network by using Behat.

 

Responsive

In today’s day and age, a website that is not responsive is outdated. Fortunately, govCMS has been created with a base-theme that is responsive by default. This provides the developers in quick-creation of custom themes. This also helps in the creation of a standard look and feel of the Australian Government’s website, which converts into a user-friendly experience.

 

Accessibility Compliance

Every single Government website needs to be in compliance with the Web Content Accessibility Guideline (WCAG) AA 2.0. And hence, WCAG AA 2.0 has been at the base of creating the base-theme and hence it’s in complete compliance with the Government standards. This also helps in elevating the user-friendliness of the website. govCMS also provides a list of the accessible elements either via the content pages or the WYSIWYG editor.

 

Data Retention

Backups are a very critical and significant part of any website. So when it is a Government website, the stakes are even higher. The creation of govCMS is done in complete compliance with the National Archives of Australia Standards. This includes about 7 years of data retention on backups, which is a highly beneficial factor that works in the favour of these govCMS-based Australian Government’s websites.  

 

govCMS is a pool of perfection when it comes to a platform meant for Government - highly secure, affordable and effective! AddWeb is glad to have worked on the creation of the govCMS website with all our expertise and experience over Drupal. We’ll be delighted to share more about it in our future blogs. If there’s anything specific in your mind that you wish to learn about govCMS then feel free to write to us in here. Also, we’re looking forward to creating and contributing more towards govCMS projects.

Categories: Drupal CMS

Web Omelette: Ajax events on entity reference (autocomplete) form elements in Drupal 8

Drupal.org aggregator - Mon, 04/29/2019 - 00:01

In this short article I will show you something that amazed me when I discovered it. You’ll maybe say: boh, I already knew this from way back or really, that amazed you? But nonetheless, I found it cool because it really fit my needs. And like many many other things, I had no clue about this.

We all know how we can easily ajaxify our forms for quite a lot of uses cases. I talk about some of them in this Sitepoint article for example. But the other day I had a few entity autocomplete elements that needed to trigger an Ajax callback using the regular form API when the user made a selection. So I started with the regular “change” event like you normally have on other elements such as select. And it did the job…but not really. I mean, the user would look for the entity, select it, get the box filled, but no Ajax request. Only after the focus left the input would the callback kick in. This can work, maybe, but you are relying on the user’s intuition to unfocus from that form element. And that’s a nono.

Then I realised that the entity autocomplete element uses the jQuery UI autocomplete widget for finding entities. And this widget fires some events of its own. Enter autocompleteclose. This event is fired when the user has made the selection, the autocomplete closed, the selection was made and the element populated. Exactly what I needed and I guess many people need. So my form element #ajax definition now looks like this:

'#ajax' => [ 'callback' => '::ajaxRebuild', 'event' => 'autocompleteclose', 'wrapper' => 'form-container', ],

And this did the trick royally. The user would find the entity, click on it, the event would fire and my form rebuild with all the values available. Super.

Some hours of totally unrelated development later, I tried clearing the value of the element once selected. Oops, nothing would happen. But it should, at least in my case. The Ajax callback should be triggered to update stuff based on the (un)selected value. Hm…the change event would do that. Now what?!

Turns out you can use multiple events in one single Ajax definition. So I could use both of them which would trigger the same Ajax callback. Another freebie. So with the new element definition like this:

'#ajax' => [ 'callback' => '::ajaxRebuild', 'event' => 'autocompleteclose change', 'wrapper' => 'form-container', ],

Everything was peachy. Working seamlessly as the user would select something or erase the selection.

I hope this helps you as well, discovering it maybe a bit faster than it took me. Because you have it right here! :)

Categories: Drupal CMS

OpenSense Labs: Best Security Focussed CMS - Drupal 8

Drupal.org aggregator - Sun, 04/28/2019 - 05:35
Best Security Focussed CMS - Drupal 8 Shankar Sun, 04/28/2019 - 18:05

One of the most significant terms used on this planet is ‘Security’. You get to read about nutrition security in reports like the UN’s State of Food Security and Nutrition in the World in 2017 that laid out pointers to bring in nutrition policy reform. Or, you get to hear about cybersecurity which needs to be integrated into every aspect of policy and planning in this age of digitisation. Often, you also get to see the emphasis being put on national security, an integral part of every country, and surveillance becomes important to ensure the safety of citizens.


Security also plays a key role in the web development arena. Website security is one of the most significant aspects that every business considers to thrive on and dominate the internet space. Vulnerabilities in your sites can give hackers the upper hand in finding a key to the safety vault. Drupal 8 stands out as the most secure Content Management System (CMS) which comes bundled with a plenitude of advantages over other leading content management frameworks.

Security Features

With a proven track record of being the most secure CMS, Drupal has been performing much better than its competitors in the CMS market. It has stood resilient to critical internet vulnerabilities. Thanks to Drupal Security Team for actively validating and responding to security issues.

Drupal Security Team is a force to reckon with when it comes to finding out anomalies and fixing them. The goals of the Security Team are to resolve reported issues in a Security Advisory. They provide help for contributed module maintainers. They document these identifications and modifications to make sure that developers don’t find themselves tied in knots. They assist the infrastructure team to keep the Drupal.org infrastructure secure.
 
Moreover, you can allow safe access to your Drupal site as it has the in-built support for salting and repeatedly hashing account passwords when they are stored in the database. It also enforces strong password policies. Furthermore, it offers essential security modules, industry-standard authentication practices, session limits and single sign-on systems. And, by providing granular user access control, Drupal gives administrators full authority over who gets to see and who gets to modify different parts of a site.
 
Database encryption can be done efficaciously with the help of Drupal. It is configurable to encrypt your complete website or just a part of it like content types, nodes, and taxonomy terms.
 
Further, Drupal’s Form API assists in validating data in order to avoid XSS, CSRF and other malicious data entry. It also limits the number of times login attempts are made from a single IP address over a predefined period of time which enables you to brute-force password attacks.
 
Drupal limits the number of times login attempts are made from a single IP address over a predefined time period. This helps in preventing brute-force password attacks.

The multi-layered cache architecture helps in minimising Denial of Service (DoS) attacks and makes it the most preferred CMS for some of the world’s highest traffic websites; thus proving its immense scalability.
 
As a not-for-profit charitable organization, OWASP (Open Web Application Security Project) focuses on improving the security of software. Drupal conforms to the OWASP standards and its community is committed towards prevention of safety hazards.


Major Technical Improvements Drupal 8 has closed down many glitches and bugs reported in Drupal 7.

Ever since Drupal 8 came into the scene, it has emerged as the most technically improved CMS in terms of security. Some of the most important modifications that have taken shape in Drupal 8:
 
Removing the PHP input format in the core is probably the most important advancement which has removed code execution vulnerability. That means administrator login does not have to be executed with arbitrary PHP code or shell commands anymore.
 
Twig templates, which is used for HTML generation, is considered one of the most important improvements. This has resulted in better validation of 3rd party themes.
 
Twig auto-escaping has also prevented most frequently found Cross-site scripting (XSS) vulnerabilities in the custom site themes and custom and contributed modules.
 
Tracking configuration in code has been streamlined with an auditable history of changes through Configuration Management Initiative. Also, it helps in avoiding mistakes that creep in during manual configuration. Configuration changes in the production server can be completely blocked.
 
Use of filtered HTML format for content entry has prevented the execution of XSS attacks on other site users.
 
User session and session ID management has also been fortified in Drupal 8.

Statistics are on Drupal's side

Statistically, Drupal performs much better than leading CMS platforms for preventing safety hazards.

Sucuri, security platform for websites, compiled the ‘Hacked Website report’. It analyzed more than 34,000 infected websites. Among the statistics that it shared, one of the parameters was to compare the affected open-source CMS applications.

Wordpress, Joomla, and Magento suffered the most. The infection crept in due to improper deployment, configuration, and the maintenance.

Source: Sucuri

The infection rate of major content management frameworks had a varied change. While Wordpress had a significant increase from 74 percent in 2016 Q3 to 84 percent in 2017, Magento had a slight rise from 6 percent in 2016 Q3 to 6.5 percent in 2017.

Joomla had a considerable drop from 17 percent in 2016 Q3 to 13.1 percent in 2017. Drupal bettered its rate from 2 percent in 2016 Q3 to 1.6 percent in 2017.

Source: Sucuri

MDPI, which pioneers in open access publishing, prepared a report called ‘A Comparative Study of Web Content Management Systems’. They used Acunetix software for auditing the website. They compared Drupal and Joomla in terms of most commonly occurring vulnerabilities - SQL injection and XSS. Drupal came out as the clear winner.

Moreover, in the Cloud Security Report by Alert Logic, Drupal was reported for the least number of web application attacks.

Source: Alert LogicSummary

Website security is the most important constraint to survive without any existential threats. Drupal has been the frontrunner when it comes to choosing the security focussed CMS.
 
Being an open source platform and Drupal Security Team’s efforts in providing essential features and timely updates in Drupal 8 has helped in making it the most reliable and secure CMS.
 
The transition from Drupal 7 to Drupal 8 has seen a tremendous advancement in blocking the vulnerabilities.
 
Statistically proven, Drupal is the best CMS in terms of security among the major CMS platforms.

Contact us at hello@opensenselabs.com to get the best out of Drupal 8 and its security features.

blog banner blog image Security Modules Security Drupal 8 Secure CMS drupal security CMS Security Blog Type Articles Is it a good read ? On
Categories: Drupal CMS

Vardot: 4 Digital News Media Trends 2019

Drupal.org aggregator - Sun, 04/28/2019 - 02:11
Firas Ghunaim April 28, 2019

From Donald Trump's consistent accusations to lack of ad revenue caused by the shift in media consumption behaviors, the digital disruption that hit the media industry left the majority of media outlets considering their next steps knowing that being left behind in the digital age meant the end for them.

Focus shifted from simply reporting the news to delivering the most engaging and comprehensive digital experience possible for their readers.

 

Al Bawaba News - The Largest Independent News Platform in the Middle East (Built by Vardot)

 

News and media platforms need to remain vigilant and embrace the tech trends that impact content publishing in the near future. Here are the trends that are expected to impact the digital news and journalism industry:

 

1. Contextual Experiences

We are more likely to be doing more than one thing at the same time and news media outlets should have that in mind when considering how to develop their UX.

For example, you are taking a run on the gym treadmill and a relevant news article was just published; would you interrupt your routine to read a long-form article? The most likely answer is no. The desire to read the article would fade as the minutes' pass.

Wouldn’t it be great if we could listen to published news articles as we run, work out, cook or even drive? That is now possible thanks to progress made in Natural Language Generation (NLG) technology.

Natural language generation (NLG) is a software process that automatically transforms data into written narrative whilst keeping in mind SEO related factors such as keywords and users reading proficiency levels which makes it a powerful tool for news media outlets who seek to create contextual experiences for their readers.

 

"By 2020, natural language generation and artificial intelligence will be a standard feature of 90% of modern BI and analytics platforms." - Gartner

 

According to the Future Today Institute; various major news media outlets have been utilizing Automated Insights; which mines data for them and is capable of writing more than 2,000 stories per second using natural language generation to produce stories.

 

As voice search is increasingly becoming the norm, users will begin to ask for general content with specific conditions: 
 
  • “Alexa, I am running late, please give me the headlines only.”
  • “Siri, please provide me with news articles that are less than 2 minutes long.”   

 

Users are always looking for the most convenient and personalized experience; the news media platform that delivers contextual experiences are sure to gain a lead over their competition.

Such a digital experience could grow an audience possibly become a subscription service in the near future.

 

2. Fact Checking – In Real Time

Promoted by a president, championed by biased political views and powered by algorithms; ‘fake news’ is a trend that has become an unfortunate reality.

 

 

What is real and what isn’t?

People have either become proudly misinformed in the bubble they live in, or fatigued to the point of apathy towards real journalism. This phenomenon is arguably the biggest immediate threat to the profession and what’s worse is that generating ‘fake news’ has become easier than ever.

Enhanced algorithms for voice, video, and sound are being generated. Researchers at MIT CSAIL have been studying how children learn new words in order to train computers how to recognize speech. Computers are also being trained to watch videos and predict corresponding sounds in the real world.

Whilst this progress will enable AI to provide richer and better user experiences, there have been examples of malpractice too.

In 2017, researchers at the University of Washington developed a model that convincingly showed President Barack Obama giving a speech—that he never actually gave in real life.

 

 

 

Algorithms provide you with news based on your likes, online behavior, and interactions. While this does enable news platforms to generate more traffic, but at what cost?

 

3. Bots

Most journalism is simply about reporting the news and bots have done that efficiently so far.

Bots have proven to be effective when it comes to receiving instant alerts regarding trade warnings, natural disasters and etc. Bots will continue to be refined and improved to automate news related tasks freeing up time to allow reporters to devote time to more important tasks.

The major risk associated with bots is that they are only as reliable as the people who build them. People or groups with nefarious interests can use bots to distribute false information.

 

Important:
 
  • Ensure that your bot clearly explains its purpose and specific functions are.
  • Your bot must be able to showcase from where the answers it provides are coming from without any bias towards an idea or people.
  • The bot must represent your news and media platform’s values. What happens if your bot interacts with another bot or person whose values counter those of your organization?

 

Bots will continue to play a key role in journalism and other fields heavily reliant on content publishing as they utilize a combination of bots and AI to create new content. 

With elections taking place around the world, misinformation bots will continue to play a big role on Facebook, Twitter, and Instagram. You can expect to see more tech-based solutions being proposed to address the issue; your news platform must follow suit to ensure the credibility of your journalism.

 

4. Digital Frailty

Digital frailty refers to the loss of digital assets such as published content and articles. Typically, a news agency would lose it's content when attempting to upgrade their website.

In reality, this issue is easily avoided and usually caused due to poor IT practices and vendor selection.

A simple way to protect your archives and preserve digital assets is to build your platform using a CMS that is flexible, structured and features a revision process. 

 

Varbase - Drupal Distribution Revision Comparison - Source: Drupal.org

 

Drupal is a great CMS for digital news and media businesses as it delivers on the aforementioned and more.

Mergers and acquisitions are another reason why specific content goes missing. This is increasingly alarming as the number of media outlet owners are becoming more and more involved in politics.

News outlets sometimes are forced to delete content that is not aligned with the new ownership’s politics. A recent example of this scenario that made headlines around the world is when the Trump administration deleted all climate change related content from government websites in favor of the new administration’s agenda.

These tech trends and disruptions are but a mere sample of what impacts the digital news media industry. They present challenges but also tons of opportunities to create an engaging digital media experience for readers. 

From global media titans to independent content publishing platforms; Vardot specializes in developing personalized digital experiences for the news and media industry. 

Contact us to discuss how you can transform your news and media platform into a state-of-the-art digital news experience.

Categories: Drupal CMS

DrupalEasy: DrupalEasy Podcast 218 - Michael Hess - Drupal Security Working Group

Drupal.org aggregator - Sat, 04/27/2019 - 08:18

Direct .mp3 file download.

Michael Hess, (mlhess), Senior Technologist and Adjunct Lecturer at University of Michigan and member of Drupal's Security Working Group joins Mike Anello to talk about recent Drupal core security updates, security release processes, Drupal 7's future end-of-life, and the new Drupal Steward program.

Interview DrupalEasy News Upcoming events
  • DrupalCamp Chattanooga - June 7 and 8, 2019.
  • DrupalCamp Asheville - July 12-14, 2019.
  • Midwest Drupal Summit - August 8-11, 2019 - Michael is the primary organizer - for more info, go to #mwds in the Drupal Slack workspace.
Sponsors Follow us on Twitter Subscribe

Subscribe to our podcast on iTunes, Google Play or Miro. Listen to our podcast on Stitcher.

If you'd like to leave us a voicemail, call 321-396-2340. Please keep in mind that we might play your voicemail during one of our future podcasts. Feel free to call in with suggestions, rants, questions, or corrections. If you'd rather just send us an email, please use our contact page.

Categories: Drupal CMS

OPTASY: What Are Some of the Best Drupal Blog Posts this Month? Here Is Our Top 5

Drupal.org aggregator - Fri, 04/26/2019 - 06:55
What Are Some of the Best Drupal Blog Posts this Month? Here Is Our Top 5 adriana.cacoveanu Fri, 04/26/2019 - 13:55

April's been unexpectedly generous with us. It has spoiled us with plenty of high-quality content on Drupal. From “enlightening” tutorials to articles raising awareness of certain limitations, to useful tips and actionable advice, to blog posts announcing life-saving module releases... reading our way through the pile of Drupal blog posts this month has been a true dare.

Then, trimming down our bulky list to just 5 posts has been an even bigger challenge...

Nevertheless, we did manage to make our selection. Here's what we kept:
 

Categories: Drupal CMS

Agiledrop.com Blog: 5 key benefits of remote staffing

Drupal.org aggregator - Fri, 04/26/2019 - 05:06

What with a constantly shifting digital environment and an ever-increasing need for developers, it's become common practice for businesses to rely on remote staffing. In this post, we'll dive into the main benefits of deciding for this kind of outsourcing strategy.

READ MORE
Categories: Drupal CMS

Promet Source: Drupal Experts Weigh in: What’s Exceptional, What’s Demanding, What’s Developing

Drupal.org aggregator - Thu, 04/25/2019 - 14:54
At DrupalCon2019 earlier this month, Promet Source tapped the collective brainpower of attendees with a Human-Centered Design activity that asked this question: “What are the key advantages, the main challenges, and the emerging opportunities of Drupal as an Information delivery platform?”
Categories: Drupal CMS

Community posts: Help Us Review and Update the Drupal Code of Conduct

Drupal.org aggregator - Thu, 04/25/2019 - 12:58

Earlier this month at DrupalCon Seattle, the Drupal Community Working Group (CWG) announced plans to begin the process of reviewing the Drupal Code of Conduct. The Drupal Code of Conduct, which is maintained and upheld by the CWG, governs interactions between community members. It is distinct from the DrupalCon Code of Conduct, which governs interactions at DrupalCon and other in-person events and is maintained and enforced by Drupal Association staff.

The current Drupal Code of Conduct was adopted in 2010 and last revised in 2014. Over the last two years, the CWG has received consistent feedback from the community that the Drupal Code of Conduct should be updated so that it is clearer and more actionable:

  • A set of recommendations for improving the Code of Conduct was shared as one of the high-level findings from the community discussions facilitated by Whitney Hess in April and May 2017.

  • 63% of respondents to a community governance survey held in July 2017 said that updating our codes of conduct should be prioritized as part of the process of overhauling community governance.

  • Improving the community code of conduct so that it is clearer and more actionable was also one of the key takeaways of the community governance discussions that occurred in the fall of 2017.

Over the last year, the CWG has been working on implementing changes to its charter to make the group more accountable to the community-at-large and provide a sustainable foundation for future growth. Now that those changes are complete, the CWG is now able to shift focus to the process of reviewing and improving the Drupal Code of Conduct.

To that end, we have set up a survey at https://forms.gle/rhKHorXXnp3wPQn2A for community members to share their thoughts, both about the current Code of Conduct and the next steps in the process. The results of this survey will help the CWG determine how, when, and who is involved in reviewing and updating the Code of Conduct.

We will be accepting responses through May 31, 2019, and we encourage as many community members to participate as possible.

Categories: Drupal CMS

Duo Consulting: Have No Fear, Extended Drupal 7 Support Is Here

Drupal.org aggregator - Thu, 04/25/2019 - 09:40

Every year, the Drupal community gathers in a new city for the annual DrupalCon show. More expansive than regional camps, DrupalCon gives attendees from all around the world the chance to collaborate and learn from each other face-to-face.

 

The expansive audience of the convention makes it an ideal venue for Drupal creator Dries Buytaert to address the community. In his “Driesnote,” Dries usually focuses on highlights from the past year and upcoming developments for the platform. As such, the upcoming Drupal 8.7 update got a lot of spotlight, as did the efforts of star contributors working to make Drupal so robust. And with Drupal 9 coming in the not-so-distant future, Dries’ address this year demonstrated the advances being made at the cutting edge of Drupal.

While Dries focused on the present and future benefits of Drupal 8, he didn’t neglect users still on Drupal 7. First launched in 2011, Drupal 7 remains the most widely deployed version of the platform, even though Drupal 8 was released in 2015. The reasons for the relatively slow adoption of Drupal 8 are numerous, ranging from incompatible modules to the standard costs of a redesign. Dries understands that, and in this year’s Driesnote, offered words of support to those who have not made the change.

“There’s no need to panic,” Dries said. Indeed, he said that Drupal 7 will continue to be officially supported for over two-and-a-half years, until November 2021. At that point, Drupal 7 will reach its end of life.

What happens in November 2021, you might ask? We’ve covered the upcoming Drupal release pipeline in an earlier blog post, but the major driving force behind this date is Symfony 3. A major dependency for Drupal 7 and 8, when Symfony 3 is sunset in November 2021, it will expose sites running on D7 and D8 to security threats. Because Symfony 3 is also a major dependency for Drupal 8, most Drupal users will need to upgrade to Drupal 9 before November 2021.

As Dries said, though, there’s no need to panic if you’re on Drupal 7. This end-of-life date is still over two years away, giving you plenty of time to consider your options and decide how to move forward. In the meantime, Drupal 7 will continue to be supported by both the open-source community and agencies like Duo. 

If you’re running Drupal 7 and want to get a head-start, there are a few options. Upgrading to Drupal 8 is the most logical route, as it the direct successor to D7. The Driesnote also noted that more and more modules that D7 users are accustomed to using are now functional in D8, which will make the transition smoother. The big draw of this path, however, is the ease with which you’ll be able to upgrade to Drupal 9. Drupal 8 is built on the same codebase as D9, which means that an upgrade between those two systems will not require a major design or development overhaul.

Another option for D7 users is to bypass D8 altogether. Jumping from Drupal 7 to Drupal 9 would be more akin to a traditional redesign, both in terms of the work involved and the cost. That being said, even though moving from D8 to D9 will be relatively easy, it will still require some effort. Going from D7 to D9 streamlines the process, requiring only one comprehensive upgrade.

Whichever path you take, rest assured that there is time. Dries acknowledges that there are still many users who enjoy the benefits of Drupal 7, and this year’s Driesnote signifies that this crowd hasn’t been forgotten. While ever Drupal 7 site will eventually need an upgrade, users can rest easy knowing that they have plenty of time.

When the time comes to make a decision about upgrading, Duo can help you chart your journey ahead. Whether you want to stay on Drupal 7 or can’t wait for Drupal 9, we’re committed to delivering the best possible version of your site.

Categories: Drupal CMS

Sooper Drupal Themes: WordPress vs. Drupal: David vs. Goliath

Drupal.org aggregator - Thu, 04/25/2019 - 04:57
WordPress and Drupal

WordPress and Drupal, two of the most popular content management systems that are currently on the market. So, in case you're wondering what content management system to pick, keep in mind that both of them serve different needs. The decision that you are going to take is going to be based off your individual needs for your business or yourself. In this article, I am going to aim to make it easier for you to take a decision, by presenting information about both systems. With the help of this article, you should be able to take an informed decision when it comes to making a choice between WordPress and Drupal.

Ease of Installation Left: WordPress's famed 5 minute installation. Right: Sooperthemes custom Drupal distribution with Glazed theme and Glazed Builder included.

WordPress is famed for the ease of their installation process. While they claim that the installation process takes only 5 minutes, you have to take this with a grain of salt. Sure, for somebody who is highly experienced in WordPress, an installation might take 5 minutes. However, for a total beginner this might take longer. 

Drupal on the other hand is a little bit more tricky when it comes to the installation. There are more steps and clicks involved. The experience is very similar to installing WordPress, there is just more of it. Drupal has one advantage over WordPress: Distributions. Distributions are packages of features, design, and demo content that let you install a full functional turn-key website just by running the installer. At sooperthemes.com all our demo websites can be reproduced in your own environment in just about 10 minutes with our custom Drupal distributions.

Functionality

WordPress is an easy and intuitive easy to use open source CMS. One of the reasons WordPress is simpler is that is has fewer features and options compared to Drupal, so there is a trade-off going on here! Although there are a number of extensions that can make up for what WordPress is lacking, the more complex a website becomes, the harder it is for WordPress to be able to manage the website properly.

Now, when it comes to functionality, Drupal is considered to be highly functional. It was designed from the beginning to be able to meet the users needs as well as software developers' needs. Through modules, Drupal is able to fulfill the many needs a user has for developing a website. On top of that, Drupal is able to handle complex websites in a without slowing down the user experience, thanks to its advanced caching layers. Functionality is one of the areas where Drupal is shining.

Here are some of the advanced built-in features inspires some to choose Drupal over WordPress:

  • Custom content types and block types, equipped with menu different field types for your content
  • Multilingual is both built-in and more advanced than in most other CMS
  • The views module lets you create custom content listings, with support for fields, tables, portfolio grids, external data sources, and much more. It's a beast and a big part of why Drupal got popular to begin with.
  • Fine-grained permissions for your custom user roles
  • Advanced API's for batch processing, REST services, and many more advanced programming concepts 
Ease of use

WordPress is well known for its ease of use. The dashboard and layout are intuitive and easy to use. This means that even a beginner can make good looking websites. However, it gets harder as the complexity of the website increases.

Compared to this, Drupal is not so beginner friendly. Since Drupal is the more complex CMS from the two, there are more tricks to be learned and discovered when working in it. Drupal has been criticized in the past as having a steep learning curve. Indeed, it is harder to master, however, it also is capable of handling more complexity and it is able to better cater and fulfill the needs of its users.

Fortunately, there are some options you have to make Drupal more pleasing to your content, communications, and marketing staff. For exampel you can simplify their toolbars and menus by limiting their permissions. Sooperthemes also provides a visual drag and drop editor: Glazed Builder provides an entirely new user experience, letting your users design and create pages and interactive content in the frontend, away from Drupal's forms and administrative tools.

How secure are WordPress and Drupal?

Security is one of the most important things when running a website with important user information on it. In case of a security vulnerability of the CMS, a hacker can exploit said vulnerability and get the important user information off the website, such as usernames, passwords, emails, credit card information, etc. This is why security is so important for a content management system.

Since WordPress is the most used content management system to date, it is also bound to be the target many cyber attacks. When it comes to security, WordPress has three components, the core, plugins and themes. The core is always watched by cybersecurity experts who are continuously working identifying and patching vulnerabilities. The plugins and themes are reviewed and patched by the community members, which means that there is an increased chance to suffer a malicious attack by installing a certain plugin or theme that has an undiscovered vulnerability.

Drupal is recognized as the most secure content management system that is currently on the market. This is partly because the security team works on spotting vulnerabilities in the core of Drupal. On top of that, before a module is released to the general public, the code is usually examined for vulnerabilities. After being released to the general public for review, the contributors are then again checking the code for vulnerabilities that can be exploited by a hacker. This measures add up to an increased security compared to its competitors. This is why a lot of big names have trusted Drupal with the security of their websites. Examples are UNESCO, The US Senate, Fox News, Harvard University and many more.

WordPress vs Drupal Costs

WordPress is free to install and use. You can have the option to use WordPress.com, offers both paid plans and a free plan that shows ads on your website. Since WordPress is open source, you can download the software for free if you intend to host it yourself. Hiring a developer to build your website will also have to be taken into account when talking about costs. Generally speaking, hiring a WordPress developer is cheaper than hiring a Drupal developer, simply because a Drupal developer is harder to come by.

Drupal is also free to use and install, because it is an open source software. For a beginner, it is harder to make full use of the features that the CMS has to offer, especially when building a professional website. Depending on the needs of the customer, the website being built might have different degrees of complexity. Some of the most demanding websites are ecommerce websites.

Typical WordPress vs Drupal Pricing

Typical WordPress websites will be informational business websites, or simplistic community platforms based on popular themes and plugins, and would cost anywhere between 500,- USD, and 20,000 USD on the more complex and customized end of the spectrum. Most Drupal agencies aim to take on projects starting at 20,000 USD, and love to build the most complex online platforms, with contracts often running into the hundreds of thousands. These platforms could be so called "Site Factories" where a single platform will be responsible for spawning hundreds of websites, or it may be large content platforms for governmental bodies where hundreds of thousands of content items are managed.

That said, once you've mastered Drupal nothing stops you from making simplistic content websites with it. In fact, with the products and demo websites provided by Sooperthemes, it is very much possible to create a complete business websites within one day, and within a most humble budget.

Conclusion

In conclusion, WordPress is a great CMS for beginners and people that are not demanding complexity from their CMS. When it comes to security, although WordPress has good security practices in place, it is the most widespread CMS, making it a great target for hackers.

Drupal on the other hand, while not as easy to pick up as WordPress, it compensated with the complexity that it can handle. So, for people or organisations that require big websites, Drupal is the way to go. Furthermore, Drupal is perfect for this group of people, simply because it offers a great security.

So before choosing the right CMS for you, you have to be aware of the needs that have to be met by the CMS. Only after that can you take a decision.

Categories: Drupal CMS

OPTASY: What Are the Best Solutions for Creating a Slider in Drupal? 4 Drupal 8 Slideshow Modules

Drupal.org aggregator - Thu, 04/25/2019 - 02:40
What Are the Best Solutions for Creating a Slider in Drupal? 4 Drupal 8 Slideshow Modules silviu.serdaru Thu, 04/25/2019 - 09:40

Do you need to set up a custom image carousel? Or maybe one slider with a teaser, displaying content from your website? What are the best Drupal 8 slideshow modules to consider for implementing and maintaining your slideshow?

And out of the box options are... out of question, right? Your requirements are too specific for that.
Maybe you need:
 

  • a certain number of slider items
  • different arrow designs
  • to display the image slideshow on other pages, too, not just on your homepage
     

With such flexibility and customization requirements in mind, we started digging into the “pile” of Drupal 8 image slider modules.

And here are the 4 ones that we've selected, those with the best reviews in the Drupal community:
 

Categories: Drupal CMS

Issue 385

TheWeeklyDrop - Thu, 04/25/2019 - 01:44
Issue 385 - April, 25th 2019
Categories: Drupal CMS

Pronovix: Drupal 9: Automated Deprecated Code Removal - A Proof of Concept

Drupal.org aggregator - Thu, 04/25/2019 - 01:33

We would like to introduce a new tool called Rector that could speed up an upgrade process and can reduce upgrade costs. We run a proof of concept for the possible use cases in which Rector can be beneficial for Drupal developers - including but not limited to the automated update to Drupal 9.

Categories: Drupal CMS

Drudesk: Why create a food website with Drupal: reasons and examples

Drupal.org aggregator - Wed, 04/24/2019 - 07:27

Delicious food is able to inspire people even as they just see it on a website. That’s why food industry companies greatly benefit from well-built sites. The platform choice also matters. Drupal suits websites in all industries — e-commerce, real estate, education, or any other. In this post, we will explore why create a food website with Drupal.

Categories: Drupal CMS

Axelerant Blog: How Axelerant became an ISO certified organization

Drupal.org aggregator - Wed, 04/24/2019 - 06:50


On the 1st of August, 2018, Karuna Batra began the process of getting our organization ISO certified. Here is her reflection on that journey. 

Why did we pursue this certification?

The effectiveness of an organization depends heavily on its ability to perform several interconnected activities simultaneously in order to achieve its intended results and meet stakeholders’ expectations. These relationships have to be managed, prioritized and controlled.

Categories: Drupal CMS

TEN7 Blog's Drupal Posts: Episode 058: New Support Clients and Why We Date Before Getting Married

Drupal.org aggregator - Wed, 04/24/2019 - 06:49
Are you looking for someone to support your existing Drupal site? Or, are you an agency and you're considering taking on a new client? We think you should date before getting married right away. Trust us, it's better for both parties! In this podcast, Ivan Stegic and our DevOps Engineer Tess Flynn discuss the TEN7 courtship—er—new client onboarding process, which insures that we get to know your site better than you do!
Categories: Drupal CMS

Third & Grove: Should You Upgrade to Drupal 8 or Wait for Drupal 9?

Drupal.org aggregator - Wed, 04/24/2019 - 04:00
Should You Upgrade to Drupal 8 or Wait for Drupal 9? justin Wed, 04/24/2019 - 07:00
Categories: Drupal CMS

OPTASY: Drupal 8 Contact Forms vs Webform: Choosing Between Drupal Most Popular Form Builders

Drupal.org aggregator - Wed, 04/24/2019 - 00:47
Drupal 8 Contact Forms vs Webform: Choosing Between Drupal Most Popular Form Builders admin Wed, 04/24/2019 - 07:47

Simple or custom-made? Is it a quick-to-assemble, rather “prototypical” form that you need for your website? Or a more complex, custom-made one? In a Drupal 8 Contact Forms vs Webform “debate”, which Drupal form builder best suits your data collection requirements?

On one hand, you have the convenience of creating your web forms in no time: simple, straightforward, “conventional” web forms. On the other hand, you get to scan through a never-ending list of advanced options and come up with a complex, fully custom-made web form.

Categories: Drupal CMS

ADCI Solutions: Drupal Global Training Day 8

Drupal.org aggregator - Tue, 04/23/2019 - 20:23

The Drupal Global Training Day is a conference where professionals share their knowledge and work experience with web development beginners. It’s two days of training that consist of reports and practice.

ADCI Solutions is a single GTD event organizer in Russia. We are trying to boost the Drupal adoption and engage as many developers as possible in the Drupal community. Read the article how the last GTD by ADCI Solutions was.

Find blog post here.

 

Categories: Drupal CMS

Pages