Drupal Mountain Camp 2024

Drupal Security 101
2024-03-07 , Parsenn

Let's learn about Drupal native security options as well as solid contrib modules you can add to protect your sites.


Drupal offers multiple native security layers, however there are many points to check to be sure to deliver a more secured experience to our users.

This workshop aims to familiarize you with the most interesting practices and modules that will make your projects stronger with the additional layer of security that will protect you from the main risk referenced by OWASP.

The following tools are required for this workshop:
- Git: https://git-scm.com/
- Docker: https://docs.docker.com/engine/install/
- DDEV: https://ddev.readthedocs.io/en/latest/users/install/ddev-installation/

Alternatively, please check Drupal official system requirements (https://www.drupal.org/docs/getting-started/system-requirements/overview) to setup the local environment or use Lando (https://docs.lando.dev/install/linux.html) and setup Drupal normally.

This workshop's slide deck is available here: https://docs.google.com/presentation/d/1gk8N8v3fi1MgOSgrBodlBupS7SSCtM3pxCu2FEmRZek/edit?usp=sharing.

See also: Slides

Marine discovered Drupal in her first job as a PHP developer and fell in love with both the tool and its community! She is the current president of the French Drupal Association and a DevRel Engineer at Platform.sh

This speaker also appears in:

Nicolas Loye (CTO Smile)
Nicolas is the French Drupal Association treasurer. He has joined the community in 2006 and is a Drupal enthusiast since then. When he is not coding he likes any kind of game (board, card, tabletop roleplaying, etc) and spending some time with his cat.