Guardian protects specified Users a.k.a. 'guarded users' from logging in with a username and password and changes to the login data (username or password).

To login with a guarded user, login is possible with drush uli [uid] or a password reset url.

In this way there will be no need to store and share complex passwords within your organization.

Installation

Developers

To install the module, make sure that the user 1 account has the correct mail address and that the mail address is the same as the field init in your user database table.

System Administrators

System administrators need to assign a shared inbox or group mail address for development teams to receive the password reset mail. If a person is leaving the project, only access to the webserver and the shared inbox needs to be denied to secure the website for user 1 access.

Usage

  • Use drush to request a one time login url: drush uli [uid]
  • Access the password reset form: /user/password

Difference between the branches

  • 2.x Requires Drupal 9.4 or higher, open for new features
  • 7.x-1.x Only bug fixes for Drupal 7
Supporting organizations: 
ezCompany
Initial development and maintenance
SIM
Maintenance
iO
Maintenance

Project information

Releases

2.1.0 Stable release covered by the Drupal Security Team released 26 January 2023
Works with Drupal: ^9.4 || ^10
✓ Recommended by the project’s maintainer.

Bumped minimum Drupal Core version to 9.4.0 due to https://www.drupal.org/node/3000490

Install:

Development version: 2.x-dev updated 26 Jan 2023 at 14:26 UTC

7.x-1.3 Stable release covered by the Drupal Security Team released 2 March 2017
Works with Drupal: 7.x
✓ Recommended by the project’s maintainer.

Bug fix and code style fixes

Pre-release version: 7.x-1.4-rc1 released 7 Apr 2017 at 15:08 UTC

Development version: 7.x-1.x-dev updated 24 May 2017 at 08:18 UTC

Using Composer to manage Drupal site dependencies