module Clearance::PasswordStrategies::BCrypt

Uses BCrypt to authenticate users and store encrypted passwords.

BCrypt has a ‘cost` argument which determines how computationally expensive the hash is to calculate. The higher the cost, the harder it is for attackers to crack passwords even if they posess a database dump of the encrypted passwords. Clearance uses the `bcrypt-ruby` default cost except in the test environment, where it uses the minimum cost value for speed. If you wish to increase the cost over the default, you can do so by setting a higher cost in an initializer: `BCrypt::Engine.cost = 12`