Drupal is a registered trademark of Dries Buytaert
drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)! drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). eca 3.1.1 Minor update available for module eca (3.1.1). layout_paragraphs 2.1.3 Minor update available for module layout_paragraphs (2.1.3). ai 1.3.3 Minor update available for module ai (1.3.3). ai 1.2.14 Minor update available for module ai (1.2.14). node_revision_delete 2.0.3 Minor update available for module node_revision_delete (2.0.3). moderated_content_bulk_publish 2.0.52 Minor update available for module moderated_content_bulk_publish (2.0.52). klaro 3.0.10 Minor update available for module klaro (3.0.10). klaro 3.0.9 Minor update available for module klaro (3.0.9). layout_paragraphs 2.1.2 Minor update available for module layout_paragraphs (2.1.2). geofield_map 11.1.8 Minor update available for module geofield_map (11.1.8).
← All modules

null_auth

No security coverage
View on drupal.org

Drupal Null Authentication Provider module

This module is a null authentication provider. Enabling anonymous user access to Drupal 8 REST Resources, using an auto-login method.

WARNING: This module does not control any flood and give auto-login for all requests. Use only in environments with controlled access.

Configuration and usage instructions

There is no specific configuration for this module, it enables automatically a null authentication method. You need to add a _null_auth query parameter to all your requests.

Using the contrib module REST UI, you can enable REST Resources using the Authentication Provider null, remember to enable the specific permissions for the REST Resource to anonymous user.

Steps:

  1. Get the X-CSRF-Token: GET /rest/session/token
    HEADERS:
       - Content-Type: application/json
  2. Create a new user: POST /entity/user?_format=json&_null_auth=1
    HEADERS:
       - Content-Type: application/json
       - X-CSRF-Token: ---
     BODY:
     {
       "name":{
         "value":"userName"
       },
       "mail":{
         "value":"userMail"
       }
     }

Get in touch with us for customizations and consultancy.

Activity

Total releases
1
First release
Nov 2025
Latest release
4 months ago
Release cadence
Stability
0% stable

Releases

Version Type Release date
2.x-dev Dev Nov 25, 2025