protected function hashToken($token) { // note: with user passwords, you'd want legit password hashing, but since these are randomly // generated and long tokens, rainbow tables aren't any help. return md5($token); }