make npm test work right.  improve test.sh to ensure it's using the version of vows that the package is locked to and works both when invoked via npm and from cmdline

rename and move prepare_deps into scripts/ now that all it does is generate keys which are only used for local development (all other environments will manually create keys).  Also add generate_ephemeral_keys as a post-install step so that npm install is all you need, like love

upgrade to bcrypt 0.2.4 and move to bcrypt async apis, this keeps us from blocking the web server thread and leverages the threading support in the bcrypt library for better compute throughput and responsiveness.

remove dead code.  we moved from cookie-sessions to connect-cookie-sessions.  we shouldn't have references to the former, and the latter does not throw exceptions when invalid cookies are encountered, so we don't need exception handling there.

switched to connect-cookie-session which looks a lot better, will probably require people logging back in, can't do anything about that.

update package.json with new dependencies.  update getting started instructions with how to use npm to install deps.  ref package.json from the README rather than duplicating information.  closes #60 (equivalent).