added conformance tests.

tests should now pass
updated to jwcrypto that has proper callback delay guarantees and removed unnecessary setTimeouts

Updated all calls to jwcrypto to use the more intuitive API. Fixed a front-end test that was failing due to true asynchronicity of jwcrypto.

unit tests which excercise verification of emails in a "different browser" from whence verification is initiated

require authentication on complete_* wsapis to reduce risk now that password is provided before email verification.  issue #290 and a pre-requisite for issue #1000

remove delay in primary-then-secondary test that was introduced in issue #1445 and is no longer neccesary with the movement of password selection to dialog

* /wsapi/complete_email_addition no longer has to bcrypt the password, so the previously mentioned race condition should be a thing of the past.
* in pages/start.js, signUp is now a module so it has to be started.
* in controllers/actions.js doEmailConfirmed is no longer an action and is no longer needed.

* Update the "stage_user" and "stage_email" to take a password where appropriate.
* Remove pass from calls to "complete_user_creation" and "complete_email_addition"
* Update database drivers to set the account password where appropriate.
* Update unit tests.

re-work complete_email_addition to return faster in the case where a secondary email address is being added - mitigates issue #1445 for the purposes of a hotfix to train-2012.04.11

fix backend unit tests that were failing due to increased input parameter checking on site arguments to stage_user

fixed check for site parameter, it should be an origin not a domain, and fixed all tests accordingly. Was careful not to screw up the verifier tests that are testing for old parameters to the verifier.

(cache unit tests, issue #1353) check for proper X-Frame-Options headers on initial request as well as 304 response

fix fragile static resources tests that verify locale substitution works properly based on the present resource deps and the order which they occur in static_resources.js - broken with the move off jquery

(test fix) when checking that certificate duration is correct based on 'ephemeral' argument to cert_key api, allow a 200ms window to account for a small elapsed time between setting of iat and exp - which occurs on a system under load or slower virtualized environments (like travisci)

API changes for public terminals/shared computers, and update all tests
to post data using JSON rather than form encoding, as the front end now does.

Adding unit test to demonstrate x-frame-options value for iframed and non-iframed content, after a 304

implement and test the prolong_session wsapi - which extends the duration of an existing session from the ephemeral duration (an hour) to full authentication session length (2 weeks) - doesn not change the start time of the session, so is a noop when invoked multiple times.  to be added to frontend code once user acknoledges ownership of device.

update cache header tests because etagify lazy calculates content hashes for etag headers, see comment in commit contents

update cache header tests because etagify lazy calculates content hashes for etag headers, see comment in commit contents

add a ping wsapi that's registered on all daemons and does a light weight test of database health - closes #1324

fix unit tests - autenticate_user and cert_key now require a boolean 'ephemeral' value which will affect duration of authentication and certificate validity respectively.

Conflicts:

	lib/primary.js

rewrite compress scripts in javascript: better output, build of resources only when needed, uses multiple    cores, and leverages the same resource lists as cachify so we only express what dev resources go into what prod resources once #DRY.  closes #1009 closes #660

fix unit tests when run under travis-ci - when we want address_info to not detect primary support, we should use a domain name that will never offer primary support - issue #1197

improve documentation of mysql wrapper and associated tests, remove debug console output, fail slow queries rather than retrying, and add a statsd counter for failed_query

fix unit tests failing under travis-ci: for verifier tests, use impossible domain names for bogus resources that are never supposed to exist. closes #1197

  * all database functions return an err as the first param which is non-null for failure.
  * all wsapis handle database errors and return service unavailable to client.
  * stalled-mysql-test implements unit tests to verify proper failure behavior of all wsapis.
  * configuration parameter added to define max allowed time per query

 /test now redirects to /test/ so that you can hit either url to run front end unit tests.  fixes backend unit tests. closes #1178

* Add a new view, cookies_disabled - this is displayed to browsers that do not allow access to localStorage when cookies are disabled (Firefox, Chrome, Fennec)
* Add localStorage check in include.js to check for browsers that do not allow write access to localStorage.
* Add a Javascript cookie check in network.js->cookiesEnabled using a test cookie with duration of 1 second so it is never sent to the server.
* Remove the old cookies_enabled check that was theorized to come from session_context - remove this from the XHR mock as well.

issue #835

vary session cookie name by public_url when public_url is not browserid.org - this addresses issues which affect testing with IE when cookies are set for both, diresworb.org and dev.diresworb.org.  closes #296.