I have an existing, non-framework-based PHP/MySQL website. It has a simple security model, with a users table with usernames and hashed (MD5) passwords.

I’m currently working on “version 2” of this site, this time using Symfony, with Doctrine. The new version is working fine, and I’m using the sfDoctrineGuard plugin for my user management.

I’d like to migrate my existing users into the new app with the minimum of fuss, retaining their existing usernames and passwords. My main problem, though, is that I’d like to change the password hash I’m using.

The current site uses unsalted MD5 hashes of the passwords^*. I’ve already figured out how to migrate users to Symfony/sfDoctrineGuard while maintaining the existing algorithm (by providing my own “algorithm” function for unsalted MD5.) But unsalted md5 obviously isn’t ideal.

So — my question is, given a bunch of users that I can successfully migrate into sfDoctrineGuard users with my custom plain-MD5 password hashing algorithm, is there any way I can then transform those users so they use the standard, salted SHA1 sfDoctrineGuard algorithm?

I figure I’ll only be able to do this per-user as each user logs in, as that’s the only time I’ll have the user’s plaintext password for re-hashing. I guess what I need to do is hook into something at the “this user just successfully logged in with this password” point so I can then set the user’s algorithm, salt and password to the new SHA1 system, and save the user back to the database without them even knowing about it.

I’ve dug around a bit and I can’t figure out a way to override or hook into the sfDoctrineGuard (specifically sfGuardSecurityUser, I think?) login system at the right point. Well, not without hacking around with the actual plugin files, which seems evil.

Can any Symfony/sfDoctrineGuard experts out there point me in the right direction?

_{*Don’t look at me like that, it was my first website! And at least I didn’t store them plaintext…}