Devise: manually encrypt password and store directly

You should do it like this:

password = 'the secret password'
new_hashed_password = => password).encrypted_password

This is much better than using BCrypt directly as it abstracts away how passwords are generated from your code, making it easier to understand, and also immune to changes in how devise constructs encrypted passwords. Your code should not, and has no reason to know anything about that.

Leave a Comment