Guardian protects specified Users a.k.a. 'guarded users' from logging in with a username and password and changes to the login data (username or password).

To login with a guarded user, login is possible with drush uli [uid] or a password reset url.

In this way there will be no need to store and share complex passwords within your organization.

Installation

Developers

To install the module, make sure that the user 1 account has the correct mail address and that the mail address is the same as the field init in your user database table.

System Administrators

System administrators need to assign a shared inbox or group mail address for development teams to receive the password reset mail. If a person is leaving the project, only access to the webserver and the shared inbox needs to be denied to secure the website for user 1 access.

Usage

  • Use drush to request a one time login url: drush uli [uid]
  • Access the password reset form: /user/password

Difference between the branches

  • 2.x Requires Drupal 9.4 or higher, open for new features
  • 7.x-1.x Only bug fixes for Drupal 7
Supporting organizations: 
ezCompany
Initial development and maintenance
iO
Maintenance

Project information

Releases

2.2.0 Stable release covered by the Drupal Security Team released 3 June 2024
Works with Drupal: ^9.4 || ^10 || ^11

Drupal 11 compatibility, eslint/phpcs/phpstan fixes

Install:

Development version: 2.x-dev updated 24 Mar 2025 at 10:12 UTC

2.1.0 Stable release covered by the Drupal Security Team released 26 January 2023
Works with Drupal: ^9.4 || ^10

Bumped minimum Drupal Core version to 9.4.0 due to https://www.drupal.org/node/3000490

Install:

Development version: 2.x-dev updated 24 Mar 2025 at 10:12 UTC

Using Composer to manage Drupal site dependencies