Comment 2 for bug 589335

When we upgrade production for this, there will be older, long tokens which are still active. What should be our strategy for dealing with those? Some ideas:

 1. Keep two tables for the two types of tokens, and permanently retire the old ones after another upgrade cycle.

 2. Invalidate & remove the old tokens, forcing users to re-register, re-validate, &c.

 3. Keep old tokens, but put new tokens in the same table.