drupal


Mocking Drupal 7 Core Functions in Tests

Recently I needed to test a function that involved the drupal_valid_token function. There are no hooks for this function and it will generate new tokens with each user session. I needed to verify an external API’s cryptographic signature and a part of that signature involved a nonce for which I used the drupal_get_token function. I… Read More

Invalidating form tokens in Drupal 7

I wanted to invalidate the CSRF token generated by drupal_get_token once the user had submitted a form, to ensure that we didn’t get a double submit. Drupal 7 generates tokens based on a combination of things, including the PHP session id. A simple call to session_regenerate_id() will cause the token generated by drupal_get_token to change… Read More

Drush Aliases and SSH aliases

Drush is a pretty handy tool. I use it whenever I’m working on a Drupal site. I also make extensive use of SSH aliases. It doesn’t seem to be documented anywhere but I discovered that you can combine both. If you have a SSH alias that might look something like: Host example Hostname ssh.example.com Port 22… Read More