Tue, 11/14/2017 - 10:58 by Chris Burge
Advanced Custom Fields provide two functions to render a field’s value: get_field() and the_field(). Neither function sanitizes user input before output, which results in a critical security vulnerability.
Sat, 02/04/2017 - 11:56 by Chris Burge
Currently in Drupal 7, it's not possible to prepopulate an exposed Views filter from a URI - at least in the UI. It is possible, but you'll need to use hook_views_pre_build().
Mon, 01/30/2017 - 16:25 by Chris Burge
HTML5 form validation can be disabled on Webforms by using hook_form_alter() to add a 'novalidate' attribute to the form element.
Sat, 09/03/2016 - 15:17 by Chris Burge
On a recent build where I used Panels extensively, I needed to be able to restrict the types of content that end users could insert into specific regions. For example, users should only be able to insert Buttons and Quotes in the Second Sidebar region and Header Images in the Header region. The solution was to override template_preprocess_panels_add_content_modal().
Wed, 01/20/2016 - 18:49 by Chris Burge
Out of the box, Entity Reference Prepopulate doesn't work with forms rendered inside Panelizer modals. Using hook_entityreference_prepopulate_providers_info, we can extend Entity Reference Prepopulate to support Panelizer.


Subscribe to Blog