Please sign in to comment.
A blank password should be allowed.
Otherwise, we must see an error message for the password_digest column when the user inputs a blank password into a user registration form. If a developer think this is not secure, he/she should use the ordinary validation mechanism against the password attribute.
- Loading branch information...
Showing with 1 addition and 1 deletion.