With the release of OmniAuth 1.0 there is a new Identity strategy which allows users to register/login with a password if they don’t want to use an external provider.

Read more at the source