sascha
/
nextcloud-server
mirror of https://github.com/nextcloud/server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix: use mb_strtolower to convert login name 

Signed-off-by: Cleopatra Enjeck M. <patrathewhiz@gmail.com>
pull/51251/head
Cleopatra Enjeck M. 2025-03-03 04:18:59 +07:00 committed by backportbot[bot]
parent 90f83ac234
commit 0535716391
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/private/User/Session.php
Unescape Escape View File

@ -780,7 +780,7 @@ class Session implements IUserSession, Emitter {
* Check if login names match
*/
private function validateTokenLoginName(?string $loginName, IToken $token): bool {
if (strcasecmp($token->getLoginName(), $loginName ?? '') !== 0) {
if (mb_strtolower($token->getLoginName()) !== mb_strtolower($loginName ?? '')) {
// TODO: this makes it impossible to use different login names on browser and client
// e.g. login by e-mail 'user@example.com' on browser for generating the token will not
// allow to use the client token with the login name 'user'.