Drupal Introduction - Why enterprises should use it

Drupal IntroductionWhy enterprises should consider it
@manishgarg

What will we cover?
Drupal?
Architecture
Top Enterprise concerns
Security
Scalability
Future of Drupal

INTRODUCTION

What?
Content Management System (CMS) …
Yes, but …
Web application framework
PHP, xAMP (Apache, MySQL, PHP) stack
Tools

History
2001 – Originally conceived by Dries Buytaert
2002– Drupal 4.0
2010- – Drupal 7.0
2007 – Drupal 5.0
2008 – Drupal 6.0
Developer centric
Admin centric
Biz centric

Why?
Out of the box
Build& Extend easily
ThereIsAModuleForThat
Connect & Collaborate
Apps
Community
Scalable & Secured
FREE!!

What’s fueling the growth of Drupal
Licensing
~20 distributions of Dupal(intranet, education…)
Community, Community, Community
Events and Meetups
Chat (IRC)
Planet Drupal
Community Spotlight
Forums
Mailing lists
Commercial support

ARCHITECTURE

Architecture
Theme (template engine)
Contributed and developed modules
Core modules
LAMP stack

Theme existing one or create new
Extend user roles and perms
Custom blocks / menus
Custom modules or hooks
Custom content type = objects
Database

Core concepts
Nodes: Content type or objects
Hooks: Internal event handling (this is what we cover here)
Theming: Assembling the web page
Views: UI driven query engine for reports, lists, etc.

Hooks
2. Calls
Basic contract between Drupal and the different modules
Sort of like well-known or contractible function names
myModule_menu(…)
myModule_formAlter(…)
1. Defines
Module

SCALABILITY

Scaling
Modular Architecture
Scale out
Scale up
Web Server
Search
File Server
DB

Scaling – Scale the web servers
Load Balancer
WS1
WS2
File Server
DB
Search

Scaling + Failover
Load balancer cluster
Load Balancer
Load Balancer
WS1
WS2
File Server
DB
Search

Scaling – scale horizontal
Load balancer cluster
Load Balancer
Load Balancer
Search
WS1
WS2
Master slave DB Cluster
File Server
DB
DB

Drupal support other scaling strategies as well
Inbuilt support for Multi-tenancy
Opcode (php acceleration)
Memcached
CSS aggregation
Compress, minify and cache JS & CSS
CDN (Content delivery network)
Resin = 6*php
CODE REUSE – Modular architecture

SECURITY

Security
XSS (Cross site scripting)
SQL injection
Files in the FS are protected (.htaccess)
Files are prevented from execution
CSRF (Cross-site Request Forgery)

OWASP Top 10Open web application security project
Injection
XSS
Session management
Insecure direct object reference
CSRF
Security Misconfiguration
Failure to restrict URL Access
Unvalidated redirects and forwards
Insecure cryptographic storage
Insufficient Transport Layer Protection
http://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project

Current STATE & FUTURE

Current
Over 7,000 Modules
Close to 4,000 committers
10s of millions of websites

Drupal 7
InnoDB support
SQLLite
+
Improved search, file system access and image handling

Getting started
Get a xMAP stack
Download Drupal
Implement a site without writing any code
Write a new module

Challenges
Steep learning curve initially
Potentially a new language to learn
A whole new world and architecture

http://10jumps.com	509
http://translate.googleusercontent.com	3
http://duckzland.info	2

Drupal Introduction - Why enterprises should use it

by manishgarg on Nov 09, 2010

Accessibility

Categories

Upload Details

Usage Rights

3 Embeds 514

Statistics

Drupal Introduction - Why enterprises should use it — Presentation Transcript