Book Image

Drupal 8 Module Development - Second Edition

By : Daniel Sipos
Book Image

Drupal 8 Module Development - Second Edition

By: Daniel Sipos

Overview of this book

Drupal 8 comes with a release cycle that allows for new functionality to be added at a much faster pace. However, this also means code deprecations and changing architecture that you need to stay on top of. This book updates the first edition and includes the new functionality introduced in versions up to, and including 8.7. The book will first introduce you to the Drupal 8 architecture and its subsystems before diving into creating your first module with basic functionality. You will work with the Drupal logging and mailing systems, learn how to output data using the theme layer and work with menus and links programmatically. Then, you will learn how to work with different kinds of data storages, create custom entities, field types and leverage the Database API for lower level database queries. You will further see how to introduce JavaScript into your module, work with the various file systems and ensure the code you write works on multilingual sites. Finally, you will learn how to programmatically work with Views, write automated tests for your functionality and also write secure code in general. By the end, you will have learned how to develop your own custom module that can provide complex business solutions. And who knows, maybe you’ll even contribute it back to the Drupal community. Foreword by Dries Buytaert, founder of Drupal.

Related Content you might be interested in

Current Title:

Small book image
Drupal 8 Module Development - Second Edition
Daniel Sipos
Mar, 2019 | 580 pages
Small book image
Drupal 10 Development Cookbook
Kevin Quillen | Matt Glaman
Feb, 2023 | 442 pages
Small book image
Drupal 8 Development Cookbook
Matt Glaman
Sep, 2017 | 430 pages
Small book image
Mastering Drupal 8
William Hurley | Chaz Chumley
Jul, 2017 | 456 pages
Table of Contents (20 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Get in touch
Free Chapter
1
Developing for Drupal 8
Developing for Drupal 8
Introducing Drupal (for developers)
Developing for Drupal 8
Technologies that drive Drupal
Summary
2
Creating Your First Module
Creating Your First Module
Creating a module
Using services in Drupal 8
The form
Blocks
Working with links
Event Dispatcher and redirects
Summary
3
Logging and Mailing
Logging and Mailing
Logging
Mail API
Tokens
Summary
4
Theming
Theming
Business logic versus presentation logic
Twig
Theme hooks
Theme hook suggestions
Render arrays
Assets and libraries
Common theme hooks
Attributes
Layouts
Theming our Hello World module
Summary
5
Menus and Menu Links
Menus and Menu Links
The menu system
Rendering menus
Working with menu links
Defining local tasks
Defining local actions
Defining contextual links
Summary
6
Data Modeling and Storage
Data Modeling and Storage
Different types of data storage
State API
TempStore
UserData
Configuration
Entities
TypedData
Interacting with the Entity API
Summary
7
Your Own Custom Entity and Plugin Types
Your Own Custom Entity and Plugin Types
Custom content entity type
Drush command
Summary
8
The Database API
The Database API
The Schema API
Running queries
Summary
9
Custom Fields
Custom Fields
A recap of Field type plugins
Field type
Field widget
Field formatter
Field settings
Using our custom field type as a base field
Summary
10
Access Control
Access Control
Introduction to the Drupal access system
Defining permissions
Checking the user credentials
Route access
Entity access
Block access
Summary
11
Caching
Caching
Introduction to Caching
Cacheability metadata
Placeholders and lazy building
Using the Cache API
Summary
12
JavaScript and the Ajax API
JavaScript and the Ajax API
JavaScript in Drupal
The Ajax API
Summary
13
Internationalization and Languages
Internationalization and Languages
Introduction to the multilingual ecosystem
Internationalization
Content entities and the Translation API
Summary
14
Batches, Queues, and Cron
Batches, Queues, and Cron
Batch-powered update hooks
Batch operations
Cron
Queues
The Lock API
Summary
15
Views
Views
Entities in Views
Exposing custom data to Views
Custom Views field
Custom Views filter
Custom Views argument
Views theming
Views hooks
Summary
16
Working with Files and Images
Working with Files and Images
The filesystem
Stream wrappers
Managed versus unmanaged files
Using the File and Image fields
Working with managed files
Our own stream wrapper
Working with unmanaged files
Private filesystem
Images
Summary
17
Automated Testing
Automated Testing
Testing methodologies in Drupal 8
PHPUnit
Registering tests
Unit tests
Kernel tests
Functional tests
Functional JavaScript tests
Summary
18
Drupal 8 Security
Drupal 8 Security
Cross-Site Scripting (XSS)
SQL Injection
Cross-Site Request Forgery (CSRF)
Summary
19
Other Books You May Enjoy
Other Books You May Enjoy
Leave a review - let other readers know what you think

Cross-Site Scripting (XSS)

Drupal 7 was not inherently vulnerable to XSS attacks but made it easy for novice developers to open such vulnerabilities. The PHP-based templating system, in particular, made it easy for developers to forget to properly sanitize user input and any other kind of data before outputting it. Moreover, it allowed novice developers to perform all kinds of business logic directly in the template. Apart from not keeping a separation of concerns (business logic versus presentation), this also meant that third-party themes were much more difficult to validate and could easily include security holes.

Most of these concerns have been addressed in Drupal 8, in principal with the adoption of Twig as the templating system. There are two main consequences of this adoption. The first one addresses the need for separating presentation from business logic. In other words...

Previous Section
End of Section 2
Next Section