protected function _reset_password($user) { if ($_POST['id'] != $user->id) { return View::global_error('User id mismatch'); } if (empty($_POST['password'])) { return View::global_error('Invalid Password'); } $user->salt = substr(sha1(time()), 0, 6); $user->password = $this->auth->hash_password($user->salt, $_POST['password']); if (!$user->save()) { return View::global_error('Error saving user'); } View::global_notice('Password Updated'); }