Now that we have fixed the usage of authorize.php when using Installer module for manual module installs (#1920), it's become clear that we should be using authorize.php for all downloading/installing of modules/themes/layouts.
Without using authorize.php, Installer module only works if the owner of web root directory and the web server user are the same. By using authorize.php, we could enable users to more securely set up their site and still allow modules to be downloaded/installed. If the owner of the web root is the web server user (as is the case in most shared hosting environments and Pantheon), then we don't have a problem. But when these users are different, authorize.php could enable the use of the Installer UI.
Recent comments
[DX] Add layout machine name as a class to the body element Two dashes -- or single dash - between label and value...
July 9th, 2026 - Weekly Meetings
Just to say I discovered an issue with doing this, which I have documented here. https://github.com/backdrop/backdrop-issues/issues/7168 To make this work, before this issue is...
Let users search for NIDs?
You could probably do this with a View where the exposed filter is the node id Ah, interesting idea. Thanks! Would you kindly consider creating links in the...
Let users search for NIDs?