/** * Set data from POST to the record. * * Removes the 'password' and 'salt' entries, if passed. */ public function setPostData($post) { // potential security hole if (isset($post['password'])) { unset($post['password']); } if (array_key_exists('salt', $post)) { unset($post['salt']); } return parent::setPostData($post); }