Drup1 Consulting
Drupal • Identity • Apps • DevOps

We solve hard engineering problems in Drupal and Identity.

Senior architects and builders for platforms where correctness, security, and uptime matter. Drupal at scale, OAuth2/OIDC and PKI, and end‑to‑end delivery across web, mobile, and desktop — backed by rigorous DevOps.

15+ yrsDrupal & platform work
IdentityOAuth2/OIDC • PKI • mTLS
Ops‑readyCI/CD • Monitoring • Runbooks
Discuss your problem See work

Services

Focused on correctness, maintainability, and measurable outcomes.

Drupal Engineering

  • Custom modules & deep integrations
  • Headless/decoupled front‑ends
  • Content migrations & upgrades
  • Performance & security hardening
  • Governance, release hygiene

Identity, SSO & Security

  • OAuth2 / OpenID Connect design & rollout
  • PKI & client‑certificate auth (mTLS)
  • Enrollment flows, KYC/KYB, liveness
  • RBAC/ABAC, SCIM provisioning
  • Threat modelling & audits

Applications (Web • Mobile • Desktop)

  • React/Next.js, PHP/Laravel
  • iOS/Android (native & Flutter)
  • macOS/Windows utilities
  • API design (REST/GraphQL)
  • Observability & performance

DevOps & Infrastructure

  • CI/CD (GitHub Actions, GitLab CI)
  • IaC with Ansible
  • Containers (Docker), Nginx/Apache
  • Caching, CDN, backups
  • Monitoring, alerting, runbooks

Migrations & Rescue

  • Legacy to modern stacks
  • Zero‑downtime cutovers
  • Security fixes & stabilisation
  • Cost reduction initiatives
  • Documentation & handover

Consulting & Training

  • Architecture reviews & roadmaps
  • Quality gates & SDLC improvements
  • Security reviews
  • Team enablement (Drupal/DevOps)
  • Fractional leadership

Identity & Access Engineering

We design and implement production identity systems — from enrollment and proofing to credential issuance and SSO. Our work includes collaborating with identity pioneers (e.g., privacy‑first initiatives and certificate‑based login projects). Details available on request under NDA.

  • • End‑to‑end enrollment: email/phone verification, liveness, scoring
  • • Credential issuance: password‑protected client certs, secure storage
  • • SSO & provisioning: OIDC, SCIM, RBAC/ABAC, audit trails
  • • Drupal integration: OIDC and certificate login with fine‑grained access
View engagement snapshots Discuss your stack
# Identity architecture (simplified)
user → verification → liveness → scoring
      → keypair generation (local)
      → client certificate issuance (CA)
      → browser/keychain import
      → OIDC bridge / mTLS gateway
      → fine‑grained authorisation (RBAC/ABAC)

Engagement snapshots

Representative outcomes. Full case studies available under NDA.

Identity enrollment & cert‑based auth

macOS enrollment app + backend issuing client certificates; OIDC bridge for web; policy‑driven access.

  • • Local keypair generation • Secure import to keychains
  • • Verification + liveness + scoring
  • • CI/CD, monitoring, incident playbooks

Drupal platform modernisation

D7→D10 migration with content redesign; decoupled modules; performance & security uplift; hosting cost reduction.

  • • Config management, release governance
  • • Caching strategy, perf baseline & SLOs
  • • Access controls & secrets hygiene

Mobile & desktop delivery

iOS/Android/macOS/Windows clients backed by stable APIs; crash/perf monitoring and phased rollouts.

  • • Native + Flutter stacks
  • • Versioned APIs with contract tests
  • • Release channels and rollback plans

Assurance

  • • NDAs, code ownership, and clear IP terms
  • • Security‑first delivery: dependency hygiene, SBOMs, secrets management
  • • ISO 27001–aligned practices and least‑privilege access
  • • Documented runbooks, SLOs, and change control
  • • Measurable outcomes and post‑project audits

Operating model

  1. Architecture review: goals, constraints, risk register.
  2. Plan & gates: milestones with quality gates and DOR/DOD.
  3. Delivery: CI/CD, security checks, code reviews.
  4. Operate: monitoring, on‑call, incident response.
  5. Handover: documentation, training, knowledge transfer.

Tell us what you need solved

A few lines about your objectives, current stack, and timelines help us prepare a precise response.

Or email hello@drup1.consulting

Privacy Policy

We respect your privacy. Drup1 Consulting collects only the minimum personal data necessary to communicate with clients and deliver services. We do not sell, share, or trade personal information. Analytics and server logs are used solely for performance and security monitoring.

Any data shared via forms or emails is used strictly for project communication. You may request deletion or correction of your data at any time by contacting privacy@drup1.consulting.

For projects involving sensitive or regulated data, we comply with applicable data protection laws, including GDPR, and maintain NDAs where required.

Terms of Service

Engagements with Drup1 Consulting are governed by mutually signed Statements of Work (SOWs) or proposals. These documents define scope, timelines, deliverables, and payment terms. Unless explicitly agreed otherwise, intellectual property developed under a paid engagement is transferred to the client upon full payment.

All software and documentation are delivered without warranty beyond agreed service levels. We make every effort to ensure security and quality; however, production deployment and operational responsibility remain with the client unless covered by a managed services contract.

For clarification or legal correspondence, please contact legal@drup1.consulting.