Latest Blog Posts

Structured Content is King

We’ve all heard it, at least 100 times before: Content is King. While that may have been true a few years ago, there is a slight tweak that now needs to be made to that statement: Structured Content is King. Structured content is key to creating personalized, meaningful experiences for your customers and is vital when it comes to competing in today’s marketplace.

What is structured content?Structured content means just that: structuring your content to follow certain rules and patterns to insure that each content type ‘looks’ the same. This means that all product descriptions have a title, description, image, etc. - whatever pattern your team decides they want to follow. Basically, you’re breaking your content into reusable, consistent chunks, which is important when it comes to displaying content on different devices and platforms.

Structured content and CaaS Structured content is the key to success with CaaS (Content-as-a-Service). A CaaS solution, like dotCMS, means all content is manageable and accessible via REST APIs. It separates the content and presentation, creating a headless content repository. CaaS means single-sourced content can be created, searched, and reused by multiple external systems. In order to have a robust CaaS implementation that can truly deliver content to any display, it’s important to structure content items to follow the same pattern within each category.

Challenges with structured content If structured content is so vital to success, why aren’t more companies doing it? Just like any project, structuring your content isn’t always easy, especially if you’re not going through a major redesign or replatform.

If you’re not redesigning or moving to a new platform, it usually means going back to old content and adjusting it to match the new structure your team has created. It also involves changing your content editors’ behavior in how they create and post content - meaning you’ll be breaking habits, which can take time.

Creating structured content also means getting your development and business teams to work in tandem, which can also pose a challenge in some organizations. It’s important, before embarking on a project to structure your content, that both teams realize they’ll be collaborating on this project and working together - to avoid conflict over ownership. You’ll need your development team to implement the structure and your business team to act as the voice of the user and how the content will be consumed.

Why is structured content so important? Structured content is vital to a robust and optimized CaaS system, but why are companies going to CaaS anyway? A CaaS platform gives you a leg up when it comes to competing in the Internet of Things (IoT).

Structured content within a CaaS platform makes it easier for your business team to personalize content and engage customers (as well as improve security, remove design restrictions and more). By breaking content into chunks, you can deliver snippets - instead of entire PDFs - to customers on their smartwatches, improving their overall experience.

Structured content and CaaS, though they can take time to implement and get your team on board, is how you’ll take your content marketing efforts to the next level and be more competitive in the marketplace.

3 new and interesting dotCMS Plugins

I wanted to highlight a few plugins that we have developed recently for POCs (Proof of Concepts) that I think will be of general interest to our community or anyone using dotCMS.  Keep in mind these were not developed for production sites and are just provided as examples and they might need slight modifications to run effectively in different environments.  Still, I believe that they both open up new ideas and possibilities with how you can develop and use dotCMS and I wanted to share them with other developers sooner rather than later.

AI for Automatic Image Tagging The first plugin is a Workflow action that integrates with Amazon's AI based Rekognition service to automatically tag images uploaded into dotCMS.  This plugin offers a capability that can save marketers hours of administrative time both in tagging and searching for images in dotCMS. You can

OSGI based installation of Servlets and Filters in Tomcat The fact that you can only register Servlets and Filters under the /app directory via OSGi has been a long standing issue with dotCMS.  There are work arounds but not without some custom coding or static plugins.  After digging deep into Tomcat, I've come up with a way to register these via pure osgi.  It's not pretty but it seems effective, though adding a new Filter requires all Filters to Re-Init.

CSRF Prevention FilterYou can see the programatic Filter registration in use in this plugin, which registers a Filter that prevents CSRF attacks by requiring a valid Referer header to be passed.  The filter allows you to set patterns you want to protect so it is possible to use it in your custom apps.  

Form infomration about dotCMS Open Source Content Management System please visit

Security Team will publish Public Service Announcement (PSA)


   Public Service Announcements will include valuable security related information regarding TYPO3 products or the infrastructure.

   Topics of these advisories will include security issues  in third party software like e.g. Apache, Nginx, MySQL or PHP that are related to TYPO3 products, possible security related misconfigurations in third party software, possible misconfigurations in TYPO3 products, security related information about our server infrastructure and important advices how to securely use TYPO3 products.

FocusPoint is the Smarter Image Cropping for SilverStripe

     Image cropping in SilverStripe is pretty minimalistic. You don't crop images at all inside the CMS, you can however crop images in the SilverStripe template engine.

Cross-Site Request Forgery Protection in TYPO3 CMS 6.2

   In TYPO3 CMS, protection against CSRF has been implemented for many important actions (like creating, editing or deleting records) but is still missing in other places (like Extension Manager, file upload, configuration module). The upcoming 6.2 LTS version will finally close this gap and will protect editors or administrators from these kind of attacks. Since this kind of security improvement cannot be done without potentially breaking third party extensions, this additional security feature will only be part of TYPO3 CMS 6.2 and will not be backported to older versions.Solution: Since user action is always involved in this attack technique the risk can be mitigated greatly by not using the default web browser to log into a TYPO3 Backend and always log out once the work is finished.

Squarespace goes to the Superbowl!

 Squarespace are the winners of Critics' Choice Award for Best Website Builder. They have hit the big time and are now heading to the Superbowl.

We announce Squarespace Logo!

  Winners of our Critics' Choice CMS Award for Best Website Builder, Squarespace have announced a new free tool for the easy creation of quick and simple logos, Squarespace Logo!



You can download now MODX Revolution 2.2.11 !

 MODX Revolution has released the latest version MODX Revolution 2.2.11 includes a number of security fixes and aims to prevent change loss for those running the popular open source CMS.

Drupal 7.26 and 6.30 are now available!

  For those running Drupal as their CMS of choice, you should be aware that two new security releases have been made available this week. Drupal 6.30 and 7.26 are now available for download.

Tiki 12.0 LTS is now available!

    The latest version of Tiki Wiki CMS Groupware, Tiki 12.0 LTS is now released.

    New features and enhancements include:

  • Unified Index enhancement: Support for MySQL Full Text Search and ElasticSearch
  • CKeditor 4.2 full integration including inline editing of wiki pages (WYSIWYG)
  • Setup Wizard for both admin & user to facilitate admin and account configuration
  • Activity Streams to create social network automated feed within Tiki
  • Friendship Network complete redesign and re-implementation
  • Layout Switching feature to give you control over layout per page.
  • Monitoring tools and SysAdmin CLI integration
  • Profiles improvement to be used as a full configuration management tool.
  • Integration with Mozilla Together for Real Time Collaboration (RTC)