diff --git a/pkg/controllers/create.ctrl.go b/pkg/controllers/create.ctrl.go
index b2a4a61..573ab27 100644
--- a/pkg/controllers/create.ctrl.go
+++ b/pkg/controllers/create.ctrl.go
@@ -34,8 +34,9 @@ func (CreateUserController) CreateUser(c echo.Context) error {
 	user := &models.User{}
 
 	user.Login = randStringBytes(8)
-	user.Password = randStringBytes(15)
-	security.HashPassword(&user.Password)
+	password := randStringBytes(15)
+	hashedPassword := security.HashPassword(password)
+	user.Password = hashedPassword
 
 	if err := db.Create(&user).Error; err != nil {
 		return err
@@ -45,7 +46,7 @@ func (CreateUserController) CreateUser(c echo.Context) error {
 		Password string `json:"password"`
 	}
 	ResponseBody.Login = user.Login
-	ResponseBody.Password = user.Password
+	ResponseBody.Password = password
 
 	return c.JSON(http.StatusOK, &ResponseBody)
 }
diff --git a/pkg/lib/security/password.go b/pkg/lib/security/password.go
index 403d52e..f54fba8 100644
--- a/pkg/lib/security/password.go
+++ b/pkg/lib/security/password.go
@@ -5,7 +5,9 @@ import (
 )
 
 // HashPassword : Hash Password
-func HashPassword(password *string) {
-	bytes, _ := bcrypt.GenerateFromPassword([]byte(*password), bcrypt.DefaultCost)
-	*password = string(bytes)
+func HashPassword(password string) string {
+	bytes, _ := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
+	password = string(bytes)
+
+	return password
 }