-- Subsonic's token auth (t = md5(password + salt)) requires the server to -- compute md5 over the user's plaintext password. bcrypt (password_hash) is -- not reversible, so we store a *separate*, opt-in, plaintext credential used -- exclusively for the /rest/* legacy auth path. NULL means the user has not -- opted into Subsonic t/s auth and must use apiKey (OpenSubsonic) instead. ALTER TABLE users ADD COLUMN subsonic_password text;