In episode 550 of Talking Drupal, Rod Martin joins us to discuss how Drupal site builders are defined, how their role has changed across Drupal versions, and what the future may look like with Drupal CMS, Canvas, and Drupal AI. The show’s module of the week is Password Policy, presented by Avi Schwab, covering customizable password constraints and password expiration/reset features, along with supporting modules Password Policy Extras and Password Policy Pwned, which checks passwords against the Have I Been Pwned database. The conversation also explores the challenges site builders face around layout, theming, and configuration management, and the need for better templates, workflows, and guardrails as AI-assisted site building evolves.
Listen:
direct LinkTopics
- Module of the Week: Password Policy
- MidCamp 2026 Promo
- Defining Drupal Site Builders
- Rod's Training Background
- Site Builder Role and Skills
- Comparing Drupal WordPress Joomla
- Editors vs Site Builders
- Site Building Changing in Drupal
- Layout Builder Fallout
- Canvas and AI Promise
- Barriers and Bulk Fields
- Prompt Built Architecture
- Guardrails and Nuance
- Playbooks and Context
- Drupal Must Shift
- Templates Over CMS
- Dev and Builder Handoff
- Two Paths Forward
- Recipes Upgrade Gotchas
- Closing and Contacts
Resources
NIST Password Guidelines - https://specopssoft.com/blog/nist-password-guidelines/
Password Recipe - https://www.drupal.org/project/password_policy/issues/1592202
Emdash - https://blog.cloudflare.com/emdash-wordpress/
Talking Drupal #122 - Taxonomy or Entity Reference
https://talkingdrupal.com/122
Module of the Week
A password policy can be defined with a set of constraints which must be met before a user password change will be accepted. Each constraint has a parameter allowing for the minimum number of valid conditions which must be met before the constraint is satisfied.