GPaONE passwords

Probably wondering why the new MOTD for GridHaul HUDs.

Short story is thisâ€¦ I've added an extra layer of encryption to passwords and need you all to relog to update your password's encryption string.

Long storyâ€¦
I was storing the passwords with just bcrypt, EVEN though that is like leading edge of password hashing for php i felt it wasnt enough to keep your raw passwords out of the hands of losers, eerrr, i mean hackers.
Server has a special encryption key to get in and im always watching the access logs, kinda funny seeing the attempts.
SO anyways starting now all passwords gets a md5 hash before being put through bcrypt which then goes into the database.

I swear i dont store your raw password or i wouldnt be asking you all to relog on the gpa.one website.
Theres another reason i did this. The MMO im TRYING to make will md5 passwords from the game's login screen before hitting the gpaone website for confirmation.
This is so bad actors that could be between the player and the gridplay server cant see your raw password.

So thats the truth. The whole truth and nothing but the truth so help me Sir John A. MacDonald (first Canadian Prime Minister)