<aside> 💡 This document is a pretty version of the script for setting up a vanilla Drupal site.

</aside>

Modules

Install and enable modules

Fix JWT token refresh with a poor mobile connection

Configure

CORS

cors.config:
    enabled: true
    # Specify allowed headers, like 'x-allowed-header'.
    allowedHeaders: ['authorization', 'x-api-key', 'content-type']
    # Specify allowed request methods, specify ['*'] to allow all possible ones.
    allowedMethods: ['GET', 'POST', 'PUT', 'OPTIONS', 'DELETE']
    # Configure requests allowed from specific origins.
    allowedOrigins: ['*']
    # Sets the Access-Control-Expose-Headers header.
    exposedHeaders: false
    # Sets the Access-Control-Max-Age header.
    maxAge: false
    # Sets the Access-Control-Allow-Credentials header.
    supportsCredentials: false

Disable signing key warnings