Rules now distinguish between user errors and bugs, give more specific errors, configuration now uses a completely different interface, and start with the new setup for tests.
Also fixes a bug with checking token validity dates, reorders some methods for clarity, and ensures that the login menu is not shown in the password reset screen.