Propozycje wykładów

Chcesz zostać prelegentem?

ZGŁOŚ PROPOZYCJĘ WYKŁADU

Propozycje wykładów można zgłaszać do 31.03.2019.

W kwietniu odbędzie się głosowanie na wykłady. Kazdy kto kupi bilet będzie mógł wziąć udział w głosowaniu

 


Turning a Drupal 8 site into an HTML Static Site

Description:

The idea of creating a static HTML version of a website for production use is gaining significant traction in the industry. Doing this removes the joint attack vectors of PHP and MySQL on the site, and means there is no requirement to slavishly keep up to date with Drupal security patches. Content can still be created using Drupal in a secure non-public facing environment such as a VPC or a sandbox, then the static pages can be deployed to the production server.

The Drupal module Tome has made all this possible. Nigel shows how to use this module, and how to counteract some of the difficulties faced by choosing this architecture. Since the production website will have no Drupal backend, an alternative search mechanism will be required, and Nigel shows how to leverage Elasticsearch server and JavaScript client as a replacement to Drupal core search.

Similarly, without a Drupal backend, a Contact form requires a different approach. Nigel shows how AWS serverless products such as Lambda, Gateway API and SES can be used as a replacement for a 'Contact Me' form.

Note: This is effectively a presentation on a sequence of blogs I am writing entitled Drupal 8 as a Static Site. It is still work in progress but will be completed over the Xmas break.

Speaker Nigel Milligan

Language: EN

Experience Level: Advanced

 


Let’s write secure Drupal code!

Description:

In this session, I'll show the most common vulnerabilities that our Drupal code can have and how we should be prepared to avoid such an insecure code to be released. The presentation covers trends in vulnerabilities, starting in general aspects then showing Drupal specific ones. I'll also speak about what we should do if we find any vulnerabilities in contributed solutions. All backgrounds are welcome from Drupal site builders to contributed projects' maintainers! Every one of you will be able to learn and improve your security awareness as being an active participant in the session. Be ready for some showcases where we'll check Drupal 7 and 8 codes that are vulnerable and will fix them in live!

Speaker Balazs Janos Tatar

Language: EN

Experience Level Beginner

 


Everything You Always Wanted to Know About Drupal Security* (*But Were Afraid to Ask)

Description:

In this session, I'm giving a talk about what we should do if there is a bug or eventually a security issue that is discovered in an Open Source project.

As we are in Drupal Community, there are workflows that should be respected to report issues, especially following the Disclosure Policy of Drupal Security Team, most of the Drupal users are still not fully aware of how these issues should be reported, what qualifies a security issue to be a real vulnerability and how contributed projects' maintainers should act when they get warned by an existing security vulnerability in their code base.

We'll talk about previous examples from the last years: how the Drupal Security Team managed to release security updates. What are the key moments in the workflows of security.drupal.org issues? Why we should update our websites with at least highly critical updates ASAP? How we should evaluate risk on a Wednesday evening when a contrib gets security updated aka. What are those codes and scores in a security advisory? What we eventually should do if we find something in our or in someone else' code? And many other questions related to Drupal Security will be answered in a story-based talk by a currently Provisional Member of the Drupal Security Team!

Speaker Balazs Janos Tatar

Language: EN

Experience Level: Beginner

 


PHPUnit: Good Practices

Description:

Most of us are creating unit tests every day. We often use PHPUnit for that. But are we using it properly? What can we improve, and what to avoid? How the framework has evolved over last years? What are the newest best practices and how to start follow them?

Speaker Dariusz Rumiński

Language: EN

Experience Level: Intermediate

 


AutoReview - not (yet) common approach to make reviews easier

Description:

Lightning talk about how to make reviewing process easier by letting reviewers focus on clue of the change, and not all the minors around the code - without lowering quality of code itself. Static Code Analysis is great, but it's not enough - so what's more? Case study of PHP CS Fixer project.

Paragraphs, Bootstrap, Views Reference Field, ...

Speaker Dariusz Rumiński

Language: EN

Experience Level: Beginner

 


PHP CS Fixer - Creating own rules

Description:

In our projects, we are often using existing sets of rules and good practices, but sometimes there is a desire to follow unique, project-specific rule. Then, instead of manually checking the new policy, it is worth to automate it.

Workshop will present how to achieve that using PHP CS Fixer. We will start from basics - how to analyse source code using... code! We will learn how the code looks after tokenization and how to traverse over it, and even manipulate it. Finally, we will learn how to create our own, custom rule with both, unit and integration tests.

4h workshop

Speaker Dariusz Rumiński

Language: EN

Experience Level: Advanced

 


Layout builder - how to deal with it?

Description:

My experience using layout builder in a big project. In this session, I will present why I decided to recommend to use Layout Builder, what was w risk and how we proceed with. I will show our best practices and all dead ends. If You want to build flexible and easy to use page for content managers this session is for You.

Speaker Bartłomiej Zabdyr

Language: EN

Experience Level: Beginner

 


The project management of a big Drupal website

Description:

The case study of the site building of the Italian registrar (nic.it) with Drupal 8, focused on the project management. (note: I may do it in Polish as well, but I still prefer English)

Speaker Gabriele Carboni

Language: EN

Experience Level: Intermediate

 


SSO : Smack the Drupal with SAML and OKTA, representing a beautiful love triangle

Description:

This session will demonstrate how a single sign-on being setup between a Drupal 8 site and Okta that connects any person with any application on any device, by integrating them with an award-winning application written in native PHP that deals with authentication called SimpleSAMLphp so that an end user can authenticate seamlessly without bothering about the credentials thereby eliminating further prompts when the user switches applications during the same session. This also includes configuration of SimpleSAMLphp Authentication module provided by Drupal community.

A short brief about the family background of the members of this love triangle story:

A Drupal 8 site - (where an end user will land and try to gain some access, basically a service provider) Okta - It's an enterprise-grade, identity management service, built for the cloud, but compatible with many on-premises applications. SimpleSAMLphp is an open standard for exchanging authentication and authorization data between parties between an identity provider and a service provider. This session aims at how to configure Drupal 8 site with Okta and create an SSO between them using SAML.

Topics covered:

What is a Single Sign On and its benefits
Single Sign on and Compliance issues
choose right authentication protocol: ADFS vs LDAP
What is SimpleSAMLphp
SimpleSAMLphp workflow
SimpleSAMLphp request
SimpleSAMLphp response
SimpleSAMLphp response
Assertions SimpleSAMLphp bindings
Security improvements
What is Okta
Configuring Okta and its attributes.
Integrate Okta as IDP in a Drupal 8 site
Configuration
Authentication methods
Metadata
Integrate SimpleSAMLphp as SP in a Drupal 8 site
Configuration
Authentication methods
Metadata Login or register users from IDP to SP
Configuring SimpleSAMLphp Authentication contributed module in Drupal 8

At the end of the session you will be able to install and configure SimpleSAMLphp as SP and Okta as IDP, integrate SimpleSAMLphp into Drupal 8 and create your SSO network.

Speaker Sugandh khanna

Language: EN

Experience Level: Intermediate

 


Content Migration Between Remote D8 Sites Using Divide and Rule Policy of British

Description:

How many of you are worried about how to migrate nodes, lets say 2000 nodes or more, from one Drupal 8 instance to another? How many of you are a bit kind of lazy person? Well this question I'm asking because, a lazy guy will think twice or thrice atleast to write a script for exporting nodes from one D8 instance and importing it to another one. This session is specifically designed for those who impatiently want things to get done at quickest without writing a huge bunch of scripts by investing time and mind :P.

So, here introducing some quick and easy ways for nodes migration where the concept basically built upon the "Divide and Rule Policy" introduced by British so far in India in 1947. The same policy will demonstrate a wonderful way to get all the nodes cloned into your desired instance, assuming the content type configurations would remain same.

This session will cover up the use cases and real life implementation of some of the best contributed modules introduced by Drupal community. Further, demonstrate how composer makes our life so much easier by minimizing the glitches of dependencies for installing modules and their corresponding libraries. Below listed down some modules around which we are going to take a roller coaster.

Content sync
Views data export
content import
Drupal 8 migration (source)
What’s In It For You?

Know the modules that work best for D8 migration
Understand the possible challenges to expect while working with these modules.
Understand how to work with CSV Import/export nodes, Composer, Views data export
Understand the advantages of Composer

 

Speaker:  Sugandh khanna

Language: EN

Experience Level: Beginner

 


Cutting edge web apps powered by Drupal

Description:

During last few years headless architecture became more and more popular while developing modern webApps. The development stack is rapidly changing and we need to change along with it to stay competitive on the market. This session aims to explain how to decouple Drupal using Gatsby, what Progressive Web App is, how to use graphQL with Drupal and static websites, what are the advantages of such decoupling and how to overcome most encountered problems. There will be also mentioned how to extend your technology stack to be able to build mobile and desktop applications. By the end of this session you will be familiar with all headless hype words and know how to apply mentioned techniques in your projects.

 

Speaker:  Andrey Posudevsky

Language: EN

Experience Level: Advanced

 


Frontend Architecture for Scalable Design Systems

Description:

How do you build and manage a design system’s frontend architecture that is both scalable and maintainable? The typical tools and techniques for approaching design systems often break down when trying to scale across multiple sites, integrate with dynamically injected content, or keep the system up to date. Many of these technical boobytraps aren't discovered till late in development, but can be avoided through progressively decoupled components. This session (originally presented at Drupalcon Seattle 2019) is most appropriate for frontend developers & architects or teams building and maintaining a design system.

You will learn:

- Why and how to decouple a design system from Pattern Lab and Drupal

- Preventing component fragmentation in Drupal through the use of web components

- Pattern Lab improvements and techniques to reduce rework and ease Twig-based component integration

- How distributing a design system via NPM (yes, NPM) can help teams overcome technical hurdles with Composer?

 

Speaker:  Salem Ghoweri

Language: EN

Experience Level: Intermediate