From 2cccbf2f987af2937db1db5abbffd573bc432ef1 Mon Sep 17 00:00:00 2001
From: Henrik Hautakoski <henrik.hautakoski@gmail.com>
Date: Fri, 10 Aug 2018 20:40:04 +0200
Subject: [PATCH] app/controllers/UserController.php: in settingsAction() use
 Phalcon\Security::hash() instead of password_hash()

---
 app/controllers/UserController.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/controllers/UserController.php b/app/controllers/UserController.php
index 3d4aab1..a6973ef 100644
--- a/app/controllers/UserController.php
+++ b/app/controllers/UserController.php
@@ -31,7 +31,7 @@ class UserController extends ControllerBase
                 $new_pw = $form->getValue('passwordNew');
                 if (strlen($new_pw) > 0) {
 
-                    $hash = password_hash($new_pw, PASSWORD_BCRYPT);
+                    $hash = $this->security->hash($new_pw, 12);
 
                     // User had a password before. just update.
                     if (strlen($user->getPassword()) > 0) {