Using true secure token without needs of commit it or store somewhere

<?php

// services.php

$tokenFile = getenv('BASE_DIR') . '.secret';

if (is_readable($tokenFile)) {
    // Use the existing token
    $line = (new \SplFileObject($tokenFile))->fgets();
} else {
    // Generate a new token and store it in $line
    $line = (new \Phalcon\Security\Random)->hex(64);
    (new \SplFileObject($tokenFile, 'w'))->fwrite($line, strlen($line));
}

$config->offsetSet('token', $line);


// AuthController

var_dump($this->config->token);