Planet Drupal

Syndicate content
Drupal.org - aggregated feeds in category Planet Drupal
Updated: 42 min 37 sec ago

Drupal Watchdog: Different, Not Difficult

Thu, 11/20/2014 - 17:36
div class=field field--article-edit-printtype field-type-list-text field-label-hidden field--rss Article /div div class=field field--article-body field-type-text-long field-label-hidden field--rss pAs AppNeta’s developer evangelist, I work with customers in five different programming languages to monitor application performance. Drupal is just one part of one language, but I’ll always have a soft spot for it because it’s where I learned to program. When I get a chance, I like to keep my skills sharp by contributing to the community-maintained TraceView integration module. Last spring, I decided to port it and learn Drupal 8 the hard way./p p Like most Drupal developers, I’d never tried writing Symfony code or using Composer to manage packages. Before attempting it, I decided to research both Symfony in its own right and how it is being leveraged to rewrite Drupal. Thankfully, there were many rich tutorials on “the basics” even then, and, after a relatively painless porting process, I had the module running with a skeletal Symfony bundle inside it./p p Initially, I relied on the same strategy as the Drupal 7 version of the TraceView module, which monitors hook execution time by installing two additional modules: an “early” module with a very low weight and a “late” module with a very high weight. As each hook was removed from core, I moved its implementations from the modules into the bundle and tagged that event with listeners at maximum and minimum priority./p /div

Dries Buytaert: Weather.com using Drupal

Thu, 11/20/2014 - 17:06
div class=field field-name-taxonomy-vocabulary-1 field-type-taxonomy-term-reference field-label-abovediv class=field-labelTopic:nbsp;/divdiv class=field-itemsdiv class=field-item evena href=/tag/drupal typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Drupal/a/divdiv class=field-item odda href=/tag/acquia typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Acquia/a/divdiv class=field-item evena href=/tag/drupal-sites typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Drupal sites/a/div/div/divdiv class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item even property=content:encodedpOne of the world's most trafficked websites, with more than 100 million unique visitors every month and more than 20 million different pages of content, is now using a href=http://drupal.orgDrupal/a. a href=http://weather.comWeather.com/a is a a href=http://www.comscore.com/Insights/Press-Releases/2014/4/comScore-Media-Metrix-R-Ranks-Top-50-US-Desktop-Web-Properties-for-March-2014top 20 U.S. site/a according to a href=http://en.wikipedia.org/wiki/ComScorecomScore/a. As far as I know, this is currently the biggest Drupal site in the world./p pWeather.com has been an active Drupal user for the past 18 months; it started with a content creation workflow on Drupal to help its editorial team publish content to its existing website faster. With Drupal, Weather.com was able to dramatically reduce the number of steps that was required to publish content from 14 to just a few. Speed is essential in reporting the weather, and Drupal's content workflow provided much-needed velocity. The success of that initial project is what led to this week's migration of Weather.com from a href=https://www.percussion.com/Percussion/a to a href=http://drupal.orgDrupal/a./p pThe company has moved the entire website to Acquia Cloud, giving the site a resilient platform that can withstand sudden onslaughts of demand as unpredictable as the weather itself. As we learned from our work with New York City's a href=http://www.mta.infoMTA/a during a href=https://www.acquia.com/resources/case-study/mtaSuperstorm Sandy in 2012/a, “weather-proofing” the delivery of critical information to insure the public stays informed during catastrophic events is really important and can help save lives./p pThe team at Weather.com worked with a href=http://acquia.comAcquia/a and a href=http://mediacurrent.comMediacurrent/a for its site development and migration./p div class=figure div class=img style=border: 1px solid #ccc; padding: 4px;display: inline-blockimg src=/sites/buytaert.net/files/cache/drupal-weather-channel-575x863.jpg style=display:block alt=Weather channel//div /div /div/div/div

Acquia: Meet Cal Evans ... Meet Jeffrey A. jam McGuire

Thu, 11/20/2014 - 15:14
div class=form-item form-type-item labelLanguage /label Undefined /div div class=field field-name-body field-type-text-with-summary field-label-hidden div class=field-items div property=content:encoded class=field-item evenp strongVoices of the ElePHPant / Acquia Podcast Ultimate Showdown Part 1/strong - Cal Evans and I got the chance to sit down and talk (a lot!) at DrupalCon Amsterdam and talk about a range of topics we have in common. In this first part of a 2-part series, we talk Drupal, PHP convergence and the PHP Renaissance, open source communities, proprietary v open source business and the ethics of helping, and more. /p h2 Why PHP?br //h2 p According to Cal, PHP has three things going for it: /p/div /div /div span property=dc:title content=Meet Cal Evans ... Meet Jeffrey A. quot;jamquot; McGuire class=rdf-meta element-hidden/span

Paul Booker: Creating you own API endpoint using Services

Thu, 11/20/2014 - 12:53
div class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item even property=content:encodedpre class=brush: php /** * Implements of hook_services_resources(). */ function mymodule_services_services_resources() { $api = array( 'frontpage' = array( 'operations' = array( 'retrieve' = array( 'help' = 'Retrieves front page', 'callback' = '_mymodule_services_frontpage_retrieve', 'access callback' = 'user_access', 'access arguments' = array('access content'), 'access arguments append' = FALSE, 'args' = array( array( 'name' = 'fn', 'type' = 'string', 'description' = 'Function to perform', 'source' = array('path' = '0'), 'optional' = TRUE, 'default' = '0', ), array( 'name' = 'nitems', 'type' = 'int', 'description' = 'Number of latest items to get', 'source' = array('param' = 'nitems'), 'optional' = TRUE, 'default' = '0', ), array( 'name' = 'since', 'type' = 'int', 'description' = 'Posts from the last number of days', 'source' = array('param' = 'since'), 'optional' = TRUE, 'default' = '0', ), ), ), ), ), ); return $api; } /** * Callback function for blog retrieve */ function _mymodule_services_frontpage_retrieve($fn, $nitems, $timestamp) { // Check for mad values $nitems = intval($nitems); $timestamp = intval($timestamp); return _mymodule_services_blog_items($nitems, $timestamp); } /** * Gets frontpage blog posts */ function _mymodule_services_blog_items($nitems, $timestamp) { // Compose query $query = db_select('node', 'n'); $query-join('node_revision', 'v', '(n.nid = v.nid) AND (n.vid = v.vid)'); $query-join('comment', 'c', 'c.nid = n.nid'); $query-join('users', 'u', 'n.uid = u.uid'); $query-fields('v', array('timestamp', 'title')); $query-addField('u', 'name', 'author'); $query-addField('n', 'nid'); $query-addField('n', 'title'); $query-addField('n', 'uid'); $query-addField('n', 'created'); $query-addField('n', 'changed'); $query-addField('u', 'picture'); $query-addExpression('COUNT(c.cid)', 'comments'); $query-condition('n.type', 'blog', '='); $query-groupBy('n.nid'); // How many days ago? if ($timestamp) { $query-condition('v.timestamp', time() - ($timestamp * 60 * 60 * 24), ''); } $query-orderBy('v.timestamp', 'DESC'); // Limited by items? if ($nitems) { $query-range(0, $nitems); } $items = $query-execute()-fetchAll(); return $items; } /pre/div/div/divdiv class=field field-name-field-tags field-type-taxonomy-term-reference field-label-above clearfixh3 class=field-labelTags: /h3ul class=linksli class=taxonomy-term-reference-0a href=/drupal-developer/tags/hookservicesresources typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=hook_services_resources/a/lili class=taxonomy-term-reference-1a href=/drupal-developer/tags/headlessdrupal typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=headlessdrupal/a/lili class=taxonomy-term-reference-2a href=/drupal-developer/tags/services typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=services/a/lili class=taxonomy-term-reference-3a href=/drupal-developer/tags/drupalplanet typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=drupalplanet/a/li/ul/divdiv class=easy_social_box clearfix horizontal easy_social_lang_und div class=easy_social-widget easy_social-widget-twitter firsta href=http://twitter.com/share class=twitter-share-button data-url=http://www.paulbooker.co.uk/drupal-developer/code-snippet/creating-you-own-api-endpoint-using-services-0 data-count=horizontal data-lang = en data-via= data-related=:Check it out! data-text=Creating you own API endpoint using ServicesTweet/a/div div class=easy_social-widget easy_social-widget-facebookiframe src=//www.facebook.com/plugins/like.php?locale=en_USamp;href=http%3A//www.paulbooker.co.uk/drupal-developer/code-snippet/creating-you-own-api-endpoint-using-services-0amp;send=falseamp;layout=button_countamp;width=88amp;show_faces=trueamp;action=likeamp;colorscheme=lightamp;font=amp;height=21amp;appId= scrolling=no frameborder=0 style=border:none; overflow:hidden; width:88px; height:21px; allowTransparency=true/iframe/div div class=easy_social-widget easy_social-widget-googleplusdiv class=g-plusone data-size=medium data-annotation=bubble data-href=http://www.paulbooker.co.uk/drupal-developer/code-snippet/creating-you-own-api-endpoint-using-services-0/div/div div class=easy_social-widget easy_social-widget-linkedin lastscript type=in/share data-url=http://www.paulbooker.co.uk/drupal-developer/code-snippet/creating-you-own-api-endpoint-using-services-0 data-counter=right/script/div /div !-- /.easy_social_box --

Drupal Commerce: Commerce 2.x Stories: Taxes

Thu, 11/20/2014 - 10:40
div class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item even property=content:encodedpWhy doesn’t Commerce/Magento/$otherSolution handle my taxes properly? That’s the most basic feature!” - many people, often./p pWhen it comes to eCommerce, nobody likes taxes. We expect taxes to “just work”, so we can finish our projects and get on with our lives. At the same time, no other topic is as complex./p pSelling online puts us at the crossroads of different (and sometimes conflicting) laws with many rules and even more exceptions. All eCommerce systems provide the basic tools (“Define your tax rates and specify when to apply them”) and make the site developer responsible for tax compliance. The developer usually passes that responsibility to the client, sometimes implicitly. The client consults an accountant, sometimes. But the buck has to stop somewhere, and it often comes back to the developer, 5 days after launch./p pAs taxes become more and more complex, there is a need for smarter tax handling, where the application does more and the site administrator less. In the Commerce 1.x lifecycle we’ve built the a href=http://drupal.org/project/commerce_vatcommerce_vat/a module to handle the more and more complex VAT taxes. For 2.x, we’re bringing this approach back into core, and releasing several libraries to share the solution with the wider PHP community./p pa href=https://drupalcommerce.org/blog/31036/commerce-2x-stories-taxesRead more.../a/p /div/div/div

PreviousNext: Community gathering at DrupalCamp Melbourne

Thu, 11/20/2014 - 03:51
pIt's been a while since the last DrupalCamp in Melbourne, so the community came together recently to share what they know. Here's a brief wrap up of the two day event./p span property=dc:title content=Community gathering at DrupalCamp Melbourne class=rdf-meta element-hidden/span

Paul Booker: 10 commands that could help you to survive Drupageddon

Thu, 11/20/2014 - 01:18
div class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item even property=content:encodedpIt's been more than a month since Drupageddon so I thought I would post an update of my previous post.br / br/br / bCommands that help with auditing:/b/p pShowing files that have changed on the live server:/p pre class=brush: bash git status /prep Looking for code execution attempts via menu_router:/p pre class=brush: sql select * from menu_router where access_callback = 'file_put_contents' /prep Another possible code execution attempt via menu_router:/p pre class=brush: sql select * from menu_router where access_callback = 'assert'; /prep Showing which files are on the live server and not in version control:/p pre class=brush: bash diff -r docroot repo | grep 'Only in docroot' /prep Looking for PHP files in the files directory:/p pre class=brush: bash find . -path *php /prep Looking for additional roles and users:/p pre class=brush: bash select * from role select * from users_roles where rid=123 /prep Checking the amount of time between when a user logged into your site and their most recent page visit:/p pre class=brush: sql select (s.timestamp - u.login) / 60 / 60 / 24 AS days_since_login, u.uid from sessions s inner join users u on s.uid = u.uid; /prep br/br / bCommands that can help with recovery:/b/p pApply the patch. Hotfix: (SA-CORE-2014-005)/p pre class=brush: php curl https://www.drupal.org/files/issues/SA-CORE-2014-005-D7.patch | patch -p1 /prep End active sessions, i.e log everyone out./p pre class=brush: php TRUNCATE TABLE sessions; /prep Updating passwords:/p pre class=brush: php update users set pass = concat('XYZ', sha(concat(pass, md5(rand())))); /prep If you need help regarding the recent drupal vulnerability feel free to a href=http://www.paulbooker.co.uk/contactcontact me/a./p pP.S./p pLatest a href=https://www.drupal.org/SA-CORE-2014-006security advisory/a was today./p /div/div/divdiv class=field field-name-field-tags field-type-taxonomy-term-reference field-label-above clearfixh3 class=field-labelTags: /h3ul class=linksli class=taxonomy-term-reference-0a href=/drupal-developer/tags/drupageddon typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Drupageddon/a/lili class=taxonomy-term-reference-1a href=/drupal-developer/tags/security typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=security/a/lili class=taxonomy-term-reference-2a href=/drupal-developer/tags/drupalplanet typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=drupalplanet/a/li/ul/divdiv class=easy_social_box clearfix horizontal easy_social_lang_und div class=easy_social-widget easy_social-widget-twitter firsta href=http://twitter.com/share class=twitter-share-button data-url=http://www.paulbooker.co.uk/drupal-developer/code-snippet/10-commands-could-help-you-survive-drupageddon data-count=horizontal data-lang = en data-via= data-related=:Check it out! data-text=10 commands that could help you to survive DrupageddonTweet/a/div div class=easy_social-widget easy_social-widget-facebookiframe src=//www.facebook.com/plugins/like.php?locale=en_USamp;href=http%3A//www.paulbooker.co.uk/drupal-developer/code-snippet/10-commands-could-help-you-survive-drupageddonamp;send=falseamp;layout=button_countamp;width=88amp;show_faces=trueamp;action=likeamp;colorscheme=lightamp;font=amp;height=21amp;appId= scrolling=no frameborder=0 style=border:none; overflow:hidden; width:88px; height:21px; allowTransparency=true/iframe/div div class=easy_social-widget easy_social-widget-googleplusdiv class=g-plusone data-size=medium data-annotation=bubble data-href=http://www.paulbooker.co.uk/drupal-developer/code-snippet/10-commands-could-help-you-survive-drupageddon/div/div div class=easy_social-widget easy_social-widget-linkedin lastscript type=in/share data-url=http://www.paulbooker.co.uk/drupal-developer/code-snippet/10-commands-could-help-you-survive-drupageddon data-counter=right/script/div /div !-- /.easy_social_box --

Shomeya: How to Level Up from Nice Guy Dev to Awesome Guy Dev

Thu, 11/20/2014 - 01:05
img alt=Article_yfl5qgbf64ajwddmcj8m height=199 src=http://cdn.shomeya.com/uploads/article/image/29/article_yfl5qgbf64ajwddmcj8m.jpg width=590 /pIf a href=http://gizmodo.com/barbie-f-cks-it-up-again-1660326671Barbie I can be a Computer Engineer/a taught us anything it taught us that Steven and Brian are nice guys. They just want to help, they know how to fix it, and they are there just when you need them to be. And worst of all they don#39;t mean anything by it./p pSo what#39;s a nice guy to do? You care, you retweet the awesomest feminist blogs, you were ON it during #gamergate. But on a human interaction level how does it go? Here are some ways that you can level up from just that nice guy that I don#39;t call out on everything, but who secretly makes me sad, to awesome guy that makes my day well ...awesome. /p a href=http://shomeya.com/articles/how-to-level-up-from-nice-guy-dev-to-awesome-guy-dev?utm_campaign=how-to-level-up-from-nice-guy-dev-to-awesome-guy-devamp;utm_medium=rssamp;utm_source=tag-drupal-planetRead more/a

Drupal Watchdog: Drush: The Swiss Army Knife for Drupal

Wed, 11/19/2014 - 23:52
div class=field field--article-edit-printtype field-type-list-text field-label-hidden field--rss Article /div div class=field field--article-body field-type-text-long field-label-hidden field--rss pHello again, young MacGyver! /p pimg src=http://cdn1.drupalwatchdog.com/sites/default/files/images/web/3.2-swissarmy.jpg width=33% alt=Swiss Army Knive align=right class=img-responsive img-thumbnail margin-left /In the previous issue you learned how to install Drush, Drupal, and contributed modules. If you missed it, make sure you go back and read a href=http://drupalwatchdog.com/volume-3/issue-1/drush-swiss-army-knife-drupalPart One from the previous issue/a./p h3Updates/h3 pNow that you've successfully installed Drupal and extended it with some awesome contributed modules, it's time to apply a few updates. With Drush, it is easier by far than any method you might currently be using. /p pLet's get started: Make sure you are working from the root directory of your website. That would be the directory where you find index.php, and I'm going to assume that location for the remainder of this article. /p pIssue the following command:/p pre drush pm-update /prep That command will check for new versions of core, themes, and all the contributed modules that are enabled on your site. A list of all available updates will be shown on the screen. Review the list and then press “y” at the prompt if you wish to proceed with the updates. /p pIf you proceed with the updates, Drush will make a backup copy of all the out-of-date packages, download the new ones, and then run database updates, if any are required. It's all very quick and you don't even have to open an FTP client. /p pAlas, sometimes things go awry; often, very awry. That's why Drush stores a backup copy of the updated packages for you. Should an update fail, it will restore the previous versions and notify you there was a problem. Or, if you need to restore manually, you can find the backups in your user's home directory under “drush-backups”./p pNow let's say you only want to update Drupal, but none of the contributed projects. Easy enough: this time only check for Drupal core. Let’s use the shorter version of the command, which I prefer: /p pre drush up drupal /prep The command “up” is short for “pm-update”. As in the first example, Drush will backup the installed version, replace it with the latest, and then run database updates, if any are required. In this case, we specified “drupal”, so Drush will only check for updates for Drupal core. /p /div

KatteKrab: DrupalSouth - Call for sessions open!! (closes 30 Nov 2014)

Wed, 11/19/2014 - 22:49
div class=field field-name-post-date field-type-ds field-label-hiddendiv class=field-itemsdiv class=field-item evenThursday, November 20, 2014 - 08:49/div/div/divdiv class=field field-name-field-image field-type-image field-label-hiddendiv class=field-itemsdiv class=field-item evenimg src=http://kattekrab.net/sites/kattekrab.net/files/styles/large/public/drupalsouth-drop.png?itok=Y3a4Fr5H width=400 height=400 alt= //div/div/divdiv class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item evenpDrupalSouth is the biggest Drupal gathering in the Antipodes./p pWe'll be at the Melbourne Convention and Exhibition Centre over three days in early March 2015. March 5-7 to be exact./p pFind out more at the websitebr /stronga href=https://melbourne2015.drupal.org.au/https://melbourne2015.drupal.org.au//a/strong/p pThe call for sessions is open, and we're trying hard to get the word out wide and far, to whisper in new ears, and encourage people of all sorts to share their ideas for sessions so we can create a truly wonderful, inspiring, engaging and fun program for this conference!/p pFor those who may not know, a href=http://drupal.orgDrupal is an open source content management system/a. It's used by people and organisations all around the world, for all sorts of web sites. It's also being used as back end application framework for mobile apps! It's amazing what Drupal can do./p pDrupal events are the heart and soul of the community that makes Drupal. Bringing people together drives the project forward, and forges friendships. /p pBut we're also part of the wider web. So we want to hear from all sorts of web specialists, not just Drupalists./p pPlease, submit a session, or simply help us spread the word. The deadline is looming and won't be extended. Get that proposal in by 30 November 2014. a href=https://melbourne2015.drupal.org.au/program/session-submissionhttps://melbourne2015.drupal.org.au/program/session-submission/a/p /div/div/divdiv class=field field-name-taxonomy-vocabulary-1 field-type-taxonomy-term-reference field-label-hidden clearfixul class=linksli class=taxonomy-term-reference-0a href=/category/tags/drupalplanetdrupalplanet/a/li/ul/div

Mediacurrent: Highlights From BADCamp, Part 2

Wed, 11/19/2014 - 20:07
img typeof=foaf:Image src=http://d1l4od7sxc8nwf.cloudfront.net/cdn/farfuture/CUxnmaQ_uZtpz8YU3JfLtXr1MIrnOeQaRQVRxMbZ8NM/mtime:1416346673/sites/default/files/styles/thumb_blog_spotlight/public/badcampreview.png?itok=PciosR1k width=200 height=152 / pFrom November 6th through the 9th, members of the Mediacurrent team headed to San Francisco for the Bay Area Drupal Camp. Hundreds of Drupal enthusiasts convened at the Palace of Fine Arts to take part in some fantastic sessions, code sprints, and all the San Francisco has to offer. Mark Casias and Matt Davis weigh in for Part 2 of a href=http://www.mediacurrent.com/blog/highlights-badcamp-part-1 target=_blankBADCamp's highlights/a./p

Drupal.org frontpage posts for the Drupal planet: Drupal 7.34 and 6.34 released

Wed, 11/19/2014 - 19:39
div class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item evenp style=position: inherit;Drupal 7.34 and Drupal 6.34, maintenance releases which contain fixes for strongsecurity vulnerabilities/strong, are now available for download. See the a href=https://www.drupal.org/drupal-7.34-release-notesDrupal 7.34/a and a href=https://www.drupal.org/drupal-6.34-release-notesDrupal 6.34/a release notes for further information./p div style=float: right; margin: 0 0 1em 1em; text-align: center; a href=http://ftp.drupal.org/files/projects/drupal-7.34.tar.gz class=link-button style=margin: 0 0 0.6em 0;spanDownload Drupal 7.34/span/abr /a href=http://ftp.drupal.org/files/projects/drupal-6.34.tar.gz class=link-buttonspanDownload Drupal 6.34/span/a/div p style=position: inherit;stronga href=/upgrade/Upgrading/a your existing Drupal 7 and 6 sites is strongly recommended./strong There are no new features or non-security-related bug fixes in these releases. For more information about the Drupal 7.x release series, consult the a href=https://www.drupal.org/drupal-7.0Drupal 7.0 release announcement/a. More information on the Drupal 6.x release series can be found in the a href=https://www.drupal.org/drupal-6.0Drupal 6.0 release announcement/a./p !--break--div style=float: right; padding: 0 0 2em 1em; margin-left: 2em; width: 35%; border-left: 1px solid #cdcdcd; h2Security information/h2 pWe have a a href=/securitysecurity announcement mailing list and a history of all security advisories/a, as well as an a href=/security/rss.xmlRSS feed with the most recent security advisories/a. We strongstrongly advise Drupal administrators to a href=/securitysign up/a/strong for the list./p pDrupal 7 and 6 include the built-in Update Status module (renamed to Update Manager in Drupal 7), which informs you about important updates to your modules and themes./p h2Bug reports/h2 pBoth Drupal 7.x and 6.x are being maintained, so given enough a href=https://drupal.org/project/issues/search/drupal?status[]=8amp;categories[]=1bug fixes/a (not just a href=https://drupal.org/project/issues/search/drupal?status[]=1amp;categories[]=1bug reports/a) more maintenance releases will be made available, according to our a href=https://www.drupal.org/documentation/version-info#whenmonthly release cycle/a. /p/div h2Changelog/h2 pDrupal 7.34 is a security release only. For more details, see the a href=https://www.drupal.org/drupal-7.34-release-notes7.34 release notes/a. A complete list of all bug fixes in the stable 7.x branch can be found in a href=http://drupalcode.org/project/drupal.git/shortlog/refs/heads/7.xthe git commit log/a./p pDrupal 6.34 is a security release only. For more details, see the a href=https://www.drupal.org/drupal-6.34-release-notes6.34 release notes/a. A complete list of all bug fixes in the stable 6.x branch can be found in a href=http://drupalcode.org/project/drupal.git/shortlog/refs/heads/6.xthe git commit log/a./p h2Security vulnerabilities/h2 pDrupal 7.34 and 6.34 were released in response to the discovery of security vulnerabilities. Details can be found in the official security advisory:/p ullia href=https://www.drupal.org/SA-CORE-2014-006SA-CORE-2014-006/a/li /ulpTo fix the security problem, please upgrade to either Drupal 7.34 or Drupal 6.34./p h2Known issues/h2 pNone./p /div/div/divdiv class=field field-name-taxonomy-vocabulary-34 field-type-taxonomy-term-reference field-label-abovediv class=field-labelFront page news:nbsp;/divdiv class=field-itemsdiv class=field-item evena href=/taxonomy/term/903Planet Drupal/a/div/div/divdiv class=field field-name-taxonomy-vocabulary-5 field-type-taxonomy-term-reference field-label-abovediv class=field-labelDrupal version:nbsp;/divdiv class=field-itemsdiv class=field-item evena href=/taxonomy/term/102Drupal 6.x/a/divdiv class=field-item odda href=/taxonomy/term/120Drupal 7.x/a/div/div/div

Károly Négyesi: Drupal 8 critical issues office hours November 14, 2014

Wed, 11/19/2014 - 19:27
pa href=https://www.drupal.org/u/cilefencilefen/a begin to work on the a href=https://www.drupal.org/node/2278017When a content entity type providing module is uninstalled, the entities are not fully deleted, leaving broken references/a issue. Turned out that a necessary dependent issue is already being worked on so he was able proceed well. I am reasonably confident this issue will get resolved in due time. a href=https://www.drupal.org/u/sam-hermansSam Hermans/a have advanced a href=https://www.drupal.org/node/2172017Bulk operations does not respect entity access/a forward which is great but it still needs some work. Let's note that Sam only had a core patch reroll so far and yet he was able to move a critical forward! You could do it as well: I will be waiting for you on IRC in channel #drupal-contribute every Friday noon Pacific (9pm CET)./p

Phase2: Make Your Product Vision Real – A Case for Incorporating Prototyping Into Your Next Project

Wed, 11/19/2014 - 17:53
p dir=ltrAs product designers and experience strategists, we research how people use systems and design products that tap into users’ natural behaviors. We want people to instinctively know how our product works./p p dir=ltrYears of research into the human mind tells us that our brains love patterns, the repeated way in which something happens or is done. Our subconscious mind uses what we’ve learned from patterns #8211; like turning a knob will open a door #8211; to instinctively make decisions about what we do throughout our day. This is why we can walk or breathe without thinking about it #8211; we spend most of our time running on autopilot./p p dir=ltrWe have an understanding of how people make decisions, but we forget to apply this knowledge when communicating our product vision to stakeholders./p h2 dir=ltrThere are Drawbacks to Designing in the Abstract/h2 p dir=ltrExperience design deliverables, or artifacts, are abstract. We too often produce artifacts, intended to build a shared understanding of a product vision, that are hard to understand. Low-fidelity wireframes and complex flow diagrams require stakeholders to think hard about what we are trying to communicate. They mentally fill in the gaps where we lack details. We consistently break Steve Krug’s number one rule: “Don’t make me think!”/p p dir=ltrImagine how these abstract artifacts skew conversations about a product:/p p dir=ltrWe show a stakeholder some wireframes and talk them through the features. Once they see them they begin to imagine the ways features will look and act based on similar products they have used./p p dir=ltrWhile perfectly natural, this behavior is problematic #8211; what we envision may be nothing like products this stakeholder has previously used. These assumptions your stakeholder makes will lead to you and your stakeholders having different expectations during product development./p p dir=ltrYou need to make artifacts as real as possible in order to elicit the most unbiased, unimpeachable feedback from users during research. You do not need to build a fully functioning product to validate your idea.You do need to eliminate or reduce the guesswork needed to understand how your product will work./p h2 dir=ltrMake Your Product Vision Real/h2 p dir=ltrPrototyping is a great way to eliminate ambiguity so that you get the best results from user research. A prototype is a preliminary model of a product used to show a concept or validate an idea. A prototype should only contain the minimum amount of content, design and functionality needed to demonstrate how the end-product will function./p pContext is key to determining fidelity of a prototype. If you are conducting user testing with a tech-savvy group of stakeholders, clickable wireframes may suffice. If you are introducing a new concept to a set of clients, then you may need a higher-fidelity, interactive web page. Your prototype should only contain the fidelity needed to have a meaningful conversation with your users about your product./p h2 dir=ltrBuild The Right Prototype For You/h2 p dir=ltrThere are many different approaches to building prototypes. You can link wireframes together to show user flow with a system like inVision, or build interactive features using an open source CMS like Drupal./p p dir=ltrWhen creating prototypes, make sure to include the following:/p ol li dir=ltr p dir=ltrThe main actions that a user can take and the reactions they will receive from interactive elements./p /li li dir=ltr p dir=ltrThe key messages you want to communicate to users at different stages of their interaction./p /li li dir=ltr p dir=ltrA programmatic way to track user behavior while they use the prototype./p /li /ol h2 dir=ltrGet Better Results from Your Projects/h2 p dir=ltrSome of the many benefits of prototyping are:/p ul li dir=ltr p dir=ltrIt produces more accurate results from user testing, allowing you to better determine what works and what doesn’t./p /li li dir=ltr p dir=ltrIt gives you more opportunity to focus on interaction design by forcing you to have conversations about interactive elements during user research rather than development./p /li li dir=ltr p dir=ltrPrototypes bring less-apparent usability issues to light earlier in the development process./p /li li dir=ltr p dir=ltrYou have a potential starting point to work from when beginning development, minimizing the amount of work that needs to be done in the long run./p /li /ul p dir=ltra href=http://www.slideshare.net/johnwhalen/emergent-ux-seducing-the-six-mindsJohn Whalen/a said “UX does not happen on a screen. It happens here. In the mind.” Keep that in mind (no pun intended) as you seek to build a shared understanding of, and validate, your product ideas. The more real you make the experience of interacting with your product early in the design process, the more accurate a feedback you will get from your users. For more thoughts on prototyping, check out Frederic Mitchell#8217;s #8220;a title=Permalink to Static Prototyping and Keeping Drupal Simple (KDS) href=http://www.phase2technology.com/blog/static-prototyping-and-keeping-drupal-simple-kds/ rel=bookmarkStatic Prototyping and Keeping Drupal Simple (KDS)/a#8221; and #8220;a href=http://www.phase2technology.com/blog/the-devils-in-the-details/The Devil#8217;s in The Details/a#8221; by Sharon Smith!/p img src=http://track.hubspot.com/__ptq.gif?a=457100k=14bu=http%3A%2F%2Fwww.phase2technology.comr=http%3A%2F%2Fwww.phase2technology.com%2Fblog%2Fmake-your-product-vision-real-a-case-for-incorporating-prototyping-into-your-next-project%2Fbvt=rssp=wordpress style=float:left; xml:base=http://www.phase2technology.com/feed/ width=1 height=1 border=0 align=right/

Cheppers blog: Busy Drupal weekend with a training day and a camp

Wed, 11/19/2014 - 13:54
div class=field field-name-field-front-image field-type-image field-label-hiddendiv class=field-itemsdiv class=field-item even rel=schema:image resource=http://cheppers.com/sites/default/files/styles/blog_promoted-image/public/trainingday_final.png?itok=Qolx8Vb3a href=/blog/busy-drupal-weekend-with-a-training-day-and-a-campimg typeof=foaf:Image src=http://cheppers.com/sites/default/files/styles/blog_promoted-image/public/trainingday_final.png?itok=Qolx8Vb3 width=350 height=210 alt= //a/div/div/divdiv class=field field-name-field-lead field-type-text-long field-label-hiddendiv class=field-itemsdiv class=field-item even property=schema:headlinepIn the middle of November there was a weekend when it was all about Drupal in Hungary. Cheppers was hosting the Drupal Global Training Day Hungary 2014 and I was one of the core organizers of Drupal Weekend Budapest 2014, so we were concerned by the success of both./p /div/div/divspan rel=schema:url resource=/blog/busy-drupal-weekend-with-a-training-day-and-a-camp class=rdf-meta/spanspan property=schema:name content=Busy Drupal weekend with a training day and a camp class=rdf-meta/span

Code Karate: Drupal 7 FullCalendar

Wed, 11/19/2014 - 13:49
div class=field field-name-field-episode-number field-type-number-integer field-label-abovediv class=field-labelEpisode Number:nbsp;/divdiv class=field-itemsdiv class=field-item even179/div/div/divdiv class=field field-name-field-ddod-video field-type-file field-label-hiddendiv class=field-itemsdiv class=field-item evenimg src=http://codekarate.com/sites/default/files/styles/large/public/media-youtube/Mj62mcHE2EM.jpg?itok=Ubmn7znq alt=Drupal 7 FullCalendar - Daily Dose of Drupal 179 //div/div/divdiv class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item evenpThe a href=https://www.drupal.org/project/fullcalendar rel=nofollowDrupal FullCalendar module/a makes it easy to build an interactive calendar using the power of Views. The Drupal FullCalendar module uses the JQuery FullCalendar plugin to make it easy to create an event calendar that allows event dates to be changed by drag and drop./p pIn this episode you will learn:/p/div/div/divdiv class=field field-name-taxonomy-vocabulary-1 field-type-taxonomy-term-reference field-label-abovediv class=field-labelTags:nbsp;/divdiv class=field-itemsdiv class=field-item evena href=/category/tags/drupalDrupal/a/divdiv class=field-item odda href=/category/tags/drupal/drupal-7Drupal 7/a/divdiv class=field-item evena href=/category/tags/drupal-planetDrupal Planet/a/divdiv class=field-item odda href=/category/tags/uidesignUI/Design/a/div/div/div

Modules Unraveled: 127 Using Entity Pilot for Content Staging in Drupal 8 with Lee Rowlands - Modules Unraveled Podcast

Wed, 11/19/2014 - 07:00
div class=field field--name-field-image field--type-image field--label-hiddendiv class=field__itemsdiv class=field__item evenimg typeof=foaf:Image src=http://modulesunraveled.com/sites/default/files/styles/podcast_default/public/podcast/image/leerowlands.png?itok=-0U_1-M1 width=251 height=251 alt=Photo of Lee Rowlands //div/div/divspan class=submitted-byPublished: Wed, 11/19/14/spandiv class=field field--name-field-podcast-file field--type-file field--label-hiddendiv class=field__itemsdiv class=field__item evendiv class=mediaelement-audioaudio src=http://traffic.libsyn.com/modulesunraveled/127_Using_Entity_Pilot_for_Content_Staging_in_Drupal_8_with_Lee_Rowlands_-_Modules_Unraveled_Podcast.mp3 class=mediaelement-formatter-identifier-1416387653-0 controls=controls /audiodiv class=mediaelement-download-linka href=http://traffic.libsyn.com/modulesunraveled/127_Using_Entity_Pilot_for_Content_Staging_in_Drupal_8_with_Lee_Rowlands_-_Modules_Unraveled_Podcast.mp3Download this episode/a/div/div/div/div/divdiv class=field field--name-body field--type-text-with-summary field--label-hiddendiv class=field__itemsdiv class=field__item even property=content:encodedh2Entity Pilot/h2 ulliWhat is Entity Pilot? ulliI’ve been working on Entity Pilot since February, and have slowly been working through my backlog of features - but now its ready for Beta testers so that’s why I here on the show./li /ul/li liHow does Entity Pilot work? ulliThe basic premise is you create your content like normal and then create a new departure. You can add the content to your departure in logical groups, or you can create one departure for each piece of content - its a pretty flexible workflow. So if you were working on a new product launch you might create all of that content on your staging site. You’d be able to see what the site will look like with the new content, preview the front-page and landing pages etc./li /ul/li liYou’re using airport terminology, like “baggage”, “departure” and “arrival”. Can you break those down, and explain what each one entails? ulliPassengers/li liBaggage/li liDeparture - When you create the departure the baggage handler service takes care of adding the dependencies - so if you create a node, any terms or images it requires, or the author account are automatically added as baggage./li liArrival - On another site, you setup your Entity Pilot account and then create a new Arrival. This presents you with the list of your flights that exist in Entity Pilot for your account. After selecting the flight for the arrival, you move to the approval stage./li liCustoms - The approval stage presents you with a list of content on the incoming flight. Each item can be previewed and if it matches existing content on the site the administrator is able to view a diff of the changplanet-drupal the desired items to import are selected and imported either immediately, or via background processing./li /ul/li liHow does this work in a team?/li liTalk about security/li liPricing/li /ulh2Use Cases/h2 ulliFor marketing: Prepare content for a product launch on the staging site. Land the content on the live site on launch day./li liFor editors: Share content between your sites. Write content once and adapt to any site in your network./li liFor developers: Deploy content when you deploy code. Use real content not lorem ipsum. Solid APIs to integrate into your custom deployment workflow or code./li /ul/div/div/divdiv class=field field--name-field-items-mentioned field--type-link-field field--label-abovediv class=field__labelEpisode Links:nbsp;/divdiv class=field__itemsdiv class=field__item evena href=http://drupal.org/u/larowlan rel=nofollow target=_blankLee on drupal.org/a/divdiv class=field__item odda href=http://twitter.com/larowlan rel=nofollow target=_blankLee on Twitter/a/divdiv class=field__item evena href=http://twitter.com/EntityPilot rel=nofollow target=_blankEntity Pilot on Twitter/a/divdiv class=field__item odda href=https://drupal.org/irc rel=nofollow target=_blanklarowlan on IRC/a/divdiv class=field__item evena href=http://entitypilot.com/ rel=nofollow target=_blankEntity Pilot/a/div/div/divdiv class=field field--name-field-tags field--type-taxonomy-term-reference field--label-abovediv class=field__labelTags:nbsp;/divdiv class=field__itemsdiv class=field__item evena href=/tags/content-staging typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Content Staging/a/divdiv class=field__item odda href=/tags/drupal-8 typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Drupal 8/a/divdiv class=field__item evena href=/planet-drupal typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=planet-drupal/a/div/div/div

Large Robot: Better Sleep Through Web Security

Wed, 11/19/2014 - 03:09
div class=field field-name-body field-type-text-with-summary field-label-hiddendiv class=field-itemsdiv class=field-item even property=content:encodedpimg src=https://largerobot.com/sites/default/files/drupalgeddon-351x144.jpg height=144 width=351 alt=Drupalgeddon - image courtesy of Fuse Interactive align=right hspace=10 vspace=5 / This Thursday I'm presenting on stronga href=https://groups.drupal.org/node/448913Better Sleep Through Web Security/a/strong, an in-depth overview of web security, what to do do if your website is hacked, and how to sleep better by following basic web security best practices. /p pIt's at the beautiful a href=http://fuller.edu/campuses/pasadena/pasadena-campus-photo-gallery/Fuller Theological Seminary/a in Pasadena, California, and there's a video conference for those who can't attend in person. The meeting is from 6-8pm Pacific Time and we'll launch into the security talk after some quick intros and raffle prizes./p pIt's been about a year since I last gave a talk on internet security and the recent Heartbleed, Shellshock and POODLE (and now the Drupalgeddon vulnerabilities that hit the mainstream news in a href=http://www.forbes.com/sites/thomasbrewster/2014/10/30/did-drupal-drop-the-ball-users-who-didnt-update-within-7-hours-should-assume-theyve-been-hacked/Forbes/a, the a href=http://www.bbc.com/news/technology-29846539BBC/a and a href=http://www.theregister.co.uk/2014/10/30/drupal_sites_considered_hosed_if_sqli_hole_unclosed/The Register/a), have prompted me to dust off my slides and update them for some of the internet security threats we face today./p pThis particular presentation goes into some detail about the Drupalgeddon vulnerability, officially known as a href=https://www.drupal.org/node/2357241SA-CORE-2014-005/a. It allows attackers with specialized knowledge to send requests to any unprotected Drupal website that result in arbitrary SQL execution, which in turn may lead to privilege escalation, arbitrary PHP execution and total server control. Scary stuff./p pI hope you can join me. If you haven't heard of Drupal or aren't interested in general web application security, you can skip this one (unless, of course, you just like the sound of my voice). If, however, you make websites for either fun or profit, this is a great chance to get up to speed on some security best practices, including common attack vectors, what to do if your site gets hacked, and the the differences between security and privacy./p /div/div/divdiv class=field field-name-field-tags field-type-taxonomy-term-reference field-label-abovediv class=field-labelTags:nbsp;/divdiv class=field-itemsdiv class=field-item evena href=/tags/planet-drupal typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Planet Drupal/a/divdiv class=field-item odda href=/tags/internet-security typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=internet security/a/divdiv class=field-item evena href=/tags/drupal typeof=skos:Concept property=rdfs:label skos:prefLabel datatype=Drupal/a/div/div/div

Exaltation of Larks: Is Drupal Secure? Drupalgeddon and Our Approach to Security at Exaltation of Larks

Tue, 11/18/2014 - 22:09
pIs a href=https://www.larks.la/about/what-is-drupalDrupal/a secure software? You may have heard about the significant security announcement nicknamed #8220;a href=https://www.drupal.org/drupalsa05FAQDrupalgeddon/a#8221; and are wondering where Drupal fits in today#8217;s fast-changing world of internet threats, enterprise software and risknbsp;management./p pWe stand by Drupal#8217;s security record and recommend it for a variety of business cases. To put our money where our mouth is, our cofounder and chief tin-foil-hat fashionista, Christefano Reyes, is presenting strongBetter Sleep Through Web Security/strong. this Thursday, November 20th, at the a href=https://groups.drupal.org/sgvSan Gabriel Valley Drupal Meetup/a. /p pThanks to a the a href=http://www.drupal.laGreater Los Angeles Drupal/a user group and its sponsors, this meetup is hosted on the beautiful Fuller Theological Seminary campus in Pasadena, California, and also have a video conference for those who can attend only by video conference ornbsp;phone. /p p nbsp;nbsp; strongDate and time:/strong November 20, 2014 at 6pm Pacific Timebr / nbsp;nbsp; strongLocation:/strong Fuller Theological Seminary, at 135 N Oakland Avebr / Pasadena, span class=capsCA/span 91101 (Building #8220;Glasser 110#8221;)br / nbsp;nbsp; strongVideo conference:/strong a href=https://glad.zoom.us/j/129319220 title=https://glad.zoom.us/j/129319220https://glad.zoom.us/j/129319220/abr / nbsp;nbsp; strongPhone:/strong +1 415-762-9988 or +1 646-568-7788br / nbsp;nbsp; strongMeeting span class=capsID/span:/strong 129 319nbsp;220/p pstrongBetter Sleep Through Webnbsp;Security/strong/p pa href=https://www.drupal.org/user/104Christefano Reyes/a presents strongBetter Sleep Through Web Security/strong, an in-depth overview of web security, what to do do if your website is hacked, and how to sleep better by following basic web security bestnbsp;practices. /p pThe #8220;Drupalgeddon#8221; vulnerability has been covered in mainstream news including a href=http://www.forbes.com/sites/thomasbrewster/2014/10/30/did-drupal-drop-the-ball-users-who-didnt-update-within-7-hours-should-assume-theyve-been-hacked/Forbes/a, the a href=http://www.bbc.com/news/technology-29846539span class=capsBBC/span/a and a href=http://www.theregister.co.uk/2014/10/30/drupal_sites_considered_hosed_if_sqli_hole_unclosed/The Register/a, and has brought web security, frequently an overlooked part of web development, back to the centernbsp;stage. /p pThis particular vulnerability, officially known as a href=https://www.drupal.org/node/2357241span class=capsSA/span-span class=capsCORE/span-2014-005/a, allows attackers with specialized knowledge to send requests to any unprotected Drupal website that result in arbitrary span class=capsSQL/span execution, which in turn may lead to privilege escalation, arbitrary span class=capsPHP/span execution and total servernbsp;control. /p pTopics that will be covered in this presentationnbsp;include:/p ul liSecurity vs.nbsp;Privacy /liliCommon Attacknbsp;Vectors /liliDrupal#8217;s security record and the Drupal Securitynbsp;Team /lilia href=https://www.drupal.org/node/2357241span class=capsSA/span-span class=capsCORE/span-2014-005/a (also known asnbsp;#8220;Drupalgeddon#8221;) /liliI#8217;ve Been Hacked! Nownbsp;What? /liliBest Practices for Helping Others andnbsp;Yourself /liliResources /liliQuestions /nbsp;Answers /li/ul pChristefano is one of the founders of a href=http://www.larks.laExaltation of Larks/a, a Drupal design and engineering firm with a worldwide team of Drupal experts; and a href=http://www.droplabs.netDroplabs/a, an open source-friendly coworking space and business incubator near Downtown Los Angeles. As an advocate of open source software and self-declared meetup junky, he helps organize meetups and conferences all over the Greater Los Angeles Area, including the a href=http://www.meetup.com/los-angeles-chessLos Angeles Chess/a meetup and a href=http://www.meetup.com/lageekdinnerspan class=capsLA/span Geek Dinners/a./p pIf you haven#8217;t heard of Drupalgeddon or don#8217;t know if your Drupal sites have been updated since the announcement, please stop reading and see the a href=https://www.drupal.org/drupalsa05FAQspan class=capsSA/span-span class=capsCORE/span-2014-005 span class=capsFAQ/span/a immediately. You can contact us for any questions related to Drupal maintenance and support, including security services, at 888-527-5752 and via our a href=https://www.larks.la/contactContact/anbsp;form./p pa href=https://www.larks.la/articles/drupalgeddon-and-our-approach-to-drupal-security target=_blankread more/a/p

Mediacurrent: Highlights From BADCamp, Part 1

Tue, 11/18/2014 - 21:48
img typeof=foaf:Image src=http://d1l4od7sxc8nwf.cloudfront.net/cdn/farfuture/CUxnmaQ_uZtpz8YU3JfLtXr1MIrnOeQaRQVRxMbZ8NM/mtime:1416346673/sites/default/files/styles/thumb_blog_spotlight/public/badcampreview.png?itok=PciosR1k width=200 height=152 / pFrom November 6th through the 9th, members of the Mediacurrent team headed to San Francisco for the Bay Area Drupal Camp. Hundreds of Drupal enthusiasts convened at the Palace of Fine Arts to take part in some fantastic sessions, code sprints, and all the San Francisco has to offer. Below is Part 1 of their weekend highlights./p