* When authenticating, since we no longer generate/sync keypairs, do the sync.
* Collapse cases in required_email so things are easier.
* Remove the doSyncAndPickEmail action, no longer needed.
* Update the state machine to assume that once a user authenticates, their emails are synced.

* To user, add canSetPassword, hasSecondaries.
* Add unit tests for these functions as well as setPassword.

updated crazy verifier test to chop off last 2 chars from assertion rather than 1, due to base64 resilience that is not worth testing. Fixes #833

(loadgen) fix bug that would leave virtual users with incorrect cookies in their device contexts after a password reset (still authenticated as th old user that they split from) issue #785

(loadgen) tons of fixes to handle request failures without mucking up the local user database - issue #838, issue #785, issue #787, issue #784

staging a new acct on a session logs you out.  clear the auth'd bit on the session when this happens to prevent errors that occur when the loadgen client thinks it's authed, but the server knows its not.  issue #785

when loadgen emits errors, indicate what activity was being performed when the error was encountered.

gracefully handle excessive load - all cases where bcrypt will take to long return 503, loadgen special cases 503 errors for better output.  closes #787

* Simplify the signature for checkAuthenticationAndSync by removing onSuccess.
* Simplify the user unit tests by using failureCheck.
* Add testHelpers.failureCheck which came from network.js
* Cleanup the user unit tests a ton.

* Added tests for the various flows in required_email.
* cache off address information, clean up required_email controller a bit.
* Add some error messages.
* User.addressInfo now returns whether the primary users are authenticated with their IdP.

* email_for_token now returns whether the user needs to set their password.
* complete_email_addition now takes a password if necessary.
* Update the add_email_address page to support scheme.
* Update network.js and user.js to support these schemes.
* HUGE simplification of the Network unit tests.  Vast reduction in number.

Setting "location=1" when opening the dialog so that all users see the URL bar and can have a level of trust.

close #847

* Put the user into the primary_email flow, which will do the provisioning/redirection.

close #844

close #846

* Adding IE8 specific CSS to handle rgba backgrounds.
* Changing some borders to standard hex values instead of rgba.

close #820

* Add function.prototype.curry
* Make sure all callbacks are called through the "safe" complete function.

close #732

updated to new version of client-sessions, renamed, and re-added connect-cookie-session for example primary

SCHEMA CHANGES! update the mysql driver to support the new database apis motivated by issue #388 (identify user by userid rather than email)

Updating the "password_too_short" tooltip to be "password_length".  Add test for password too long in add_email

close #845

Conflicts:
	resources/views/verifyuser.ejs

close #845.

close #837

close #821

* the first button in the form would be clicked instead of the "submit" event, even if the first button is hidden.
* Changed the order of the DOM so that the correct button comes first in the DOM.

update all WSAPIs now that userid rather than email is stored in session after auth.  all tests pass on JSON database driver

* primary - user who is authenticated, owns address, valid cert.
* primary - user who is authenticated, owns address, but invalid cert.
* primary - user who is authenticated, but does not own address.

Required email feels more "correct", still some work to do though for working with expired certs cleanly.

* Changed the state machine so pushing a state to the stack is optional.
* Changed the verify_primary_user screen to have an optional cancel button
* Updated required_email to handle primary verification of unauthenticated users.