Welcome to the Treehouse Community
Looking to learn something new?
CHI WAI YIP10,438 Points
Why not password_digest but :password and :password_confirmation?
in this course, Jason changed the strong parameters
:password, :password_confirmation in user_controller.rb.
What's that mean? Doesn't
password_digest include presence and confirmation of password ?
Maciej Czuchnowski36,440 Points
Basically, when using bcrypt gem and has_secure_password method, you need a database column password_digest (it does not store the password, just a digest), but in your interface with the user, you need password and password_confirmation (in your form and strong parameters). More documentation: