…because it will force downcasing
allow old users to sign in by reseting their password. This initializes their salt, generates a remember token, and encrypts their password for the first time.
…he conditional is implied
… a security hole for people who forget to use attr_accessible, can be handled by a rake task
* Allows for the same user to sign in from two locations at once * Added support for setting User#remember_token on creation * Addresses this thread: http://groups.google.com/group/thoughtbot-clearance/browse_thread/thread/d071ae84573e40ff
…enerate_confirmation_token to before_create
…? and forget_me! user instance methods
…ken, & remember_token_expires_at
…ations & not have to copy over attr_accessor, attr_accessible, & callbacks.