Sergio Cambra

if you want invite email to be sent, you can override invited_to_sign_up? to return true for persisted users too. It would be an easier hack, but then checking invited_to_sign_up would...

I have been thinking in this and not sure if it's safe. If raw token is stored, getting access to DB can allow to get access to an account, it...

I only used same as devise. Although they added sign_out_via config option later, but default is GET

Check if that user has an invitation active (invitation_token present)

A test or sample app with instructions to reproduce would be needed to fix this

In the email view, you can use @resource.raw_invitation_token or @token, they are the same If you are loading the resource from db, you don't have raw token anymore, that's the...

I'm not sure if it would be interesting, is it too hard to add with current behaviour? You can accept other parameters from accept form with strong parameters, and add...

You can save role when invitation is sent, or add as a parameter in accept invitation url. Then you would have in the model or at least in the controller.

What's the sql generated when works and when return empty array?

Can you post your mail view where you use special chars?