Clear separation for user post information and authentication information.

The starting point was just blog user and web api but now this api also used for authenticaiton service so it's better to separate the concern - 

Move some user credential information to another table and authentication data to the user table. 