changed password hashing from md5 to cryptographic hashing (BCRYPT)for sign up and in  login the password verifies with the hashed password from db