PrestaShop is one of my favorite eCommerce frameworks. I suggest it to all of my clients for their eCommerce application.
So right now, I am talking about the latest PrestaShop version which is 1.7 but normally PrestaShop has the same mechanism deployed in PrestaShop 1.5 and later, yes before they were using plain MD5 and now Presta is using bcrypt which is more secure.
In the current version they use class ‘Hashing’ which is located in root/src/Core/Crypto/Hashing.php
Of course, PrestaShop obviously uses its ‘_COOKIE_KEY_’ as a salt to the password and pushing application towards safety.
PrestaShop has introduced Tools:: hash method and I am unsure of its usage because it just returns MD5 of plain text and salt of application’s cookie key.
PrestaShop Password Encryption:
If you ever need to generate password hash manually first add the following line at top of your file,
use PrestaShop\PrestaShop\Core\Crypto\Hashing; $hashing = new Hashing; $password = $hashing->hash('password text');
If you need help with how to generate hash in an external mobile or desktop or any other application, feel free to write in the comment box below.