Monkeypatch Devise to support saving sessions via HTTP auth (e.g. via bookmarklets or browser addons)

devise_http_rememberable.rb

# config/initializers/devise_http_rememberable.rb

# Monkeypatch Devise so HTTP authentication sets remember_user_token cookie
# ABR: Always Be Remembering
module Devise
  module Strategies
    class Authenticatable < Base
      def remember_me?
        # Devise's implementation of this is:
        #   valid_params? && Devise::TRUE_VALUES.include?(params_auth_hash[:remember_me])
        # which only works for param authentication, not http authentication
        true
      end
    end
  end
end

You can probably subclass the existing strategy, actually, which would be cleaner I guess?