Off-canvas style resets are overriding styles (especially SVGs) resulting in...
Problem/MotivationCSS selectors from 'off-canvas.reset.css' are targetting elements in Safari and setting properties to their initial values. This is overriding styles from 'off-canvas.base.css' and...
View ArticleViews Blocks with Contextual Filters not showing in Layout Builder
I tried to see if this has already been reported so sorry if this is duplicated. Problem/MotivationWhen viewing a content type that has layout builder enabled (show preview content unchecked or...
View ArticleWarning: Invalid argument supplied for foreach()
Hello,On a fresh migrated D8.9.11 updated to 8.9.13 I get this warning:Warning: Invalid argument supplied for foreach() in Drupal\Core\Field\FormatterPluginManager->getOptions() (line 176 of...
View ArticleClik here to view.
Media library allows adding videos from providers other than Youtube/Vimeo...
When adding a remote video using Embed Media (within WYSIWYG - CKeditor), it specifies you can only add from Youtube or Vimeo. However, videos from other providers can be added (eg dailymotion, unsure...
View ArticleMore granular and intuitive permissions for the user module
Problem/MotivationOn busy websites with many users, it becomes essential to be able to delegate some tasks, for example the management of the user's roles. As it is, you can give the 'administer...
View ArticleUse Symfony's VarDumper for easier test debugging with dump()
Problem/Motivationdebug() can be helpful from time to time. Sadly its throwing an error which phpunit converts to an exception, which stops the processing of anything.Proposed resolutionAllow Symfony's...
View ArticleClik here to view.
HTTP_HOST header cannot be trusted
This issue has been handled by the Drupal Security Team in private and it was decided that this security hardening issue can be handled in public. See also, Handbook for Protecting against HTTP HOST...
View Article[regression] User roles field access is inconsistent, users with...
Problem/MotivationThis is approved as a public security hardening in #25.Access to modify a users role is handled inconsistently. The user access control handler incorrectly allows users with...
View ArticleSupport context aware layout plugins
Problem/MotivationLayout plugins are great, but they don't have the ability to interact with the context APIE.g. a layout plugin might define one set of regions for a given node, but different regions...
View Article(followup) Limit PDO MySQL to executing single statements if PHP supports it
One of the reasons for the severity of https://www.drupal.org/SA-CORE-2014-005 was the fact the PDO MySQL allows multiple statements to be executed.In contrast, the mysqli functions used for Drupal...
View ArticleAllow contributed modules (mostly database drivers) to override tests in core
Problem/MotivationLastly discussed from #3098426-10: EntityQueryTest::testToString fails with non-core db drivers onwards, but really popped up several times already, + if...
View ArticleMedia Library widget produces "This value should not be null" error...
Problem/MotivationAdding media field on entity and marking it as required does not show proper validation message.Steps to reproduceSteps to reproduce the bugAdd media field in page content type, and...
View ArticleViews file name suggestions often missing from Twig debugging
(Drupal 8.2.4, using a custom theme that has 'stable' as the base.)I'm not sure if I've broken something, but (having rebuilt the cache etc.) the FILE NAME SUGGESTIONS section is missing entirely from...
View ArticleRemove redundant role="article" from <article> html tags
Postponed: for as long as we support IE11, leave the explicit role="article" in place. Explanation in comment #25.article is the default role of an<article> and thus the attribute can be...
View ArticleStandardize Olivero's focus states across all non-form controls
During the Drupal Accessibility Office Hour (18 Jun 2020) we reviewed the focus styles as they currently stand in Olivero.Video recording of the focus style walk-through....
View ArticleAdd documentation for variable source plugins
Problem/MotivationThis issue is to add documentation for the following source plugins:VariableMultiRow.phpVariable.phpd6/VariableTranslation.phpd7/VariableTranslation.phpSee parent issue for more...
View ArticleAdmin toolbar should always be rendered in the admin language (if set)
Problem/MotivationIf the site has an admin language preference option set in negotiation, users can set their admin language preference. However, even if that is set, only admin pages are affected. The...
View ArticleDetermine to which module the new security advisory functionality should be...
Problem/MotivationIn #3041885: Display relevant Security Advisories data for Drupal as part of the Automatic Updates Initiative we are adding the ability to display messages from the new highly...
View ArticleClik here to view.
Also use text editor (CKEditor) for "summary" of a text field
Problem/MotivationThe Summary part of the textfield should have a WYSIWYG Editor because the format applies to body and summary.Proposed resolution@todo - Lock down the format for summary in the...
View ArticleImplement object oriented form alters
In #2392319: Config objects (but not config entities) should by default be immutable we need to be able to use a trait in a form alter. This is so that form alter can save configuration once...
View Article