Passwords are stored as BCrypt hashes with an additional static pepper added before hashing.
As a podmin you can easily manually update a password via the rails console:
$ bin/rails console production
>> user = User.find_by(username: "alice")
>> user.password = "new plaintext password"
>> user.save!