diff options
| author | Cleopatra Enjeck M. <patrathewhiz@gmail.com> | 2025-03-03 04:18:59 +0000 |
|---|---|---|
| committer | Enjeck <32180937+enjeck@users.noreply.github.com> | 2025-03-05 05:00:24 +0000 |
| commit | 32e46a8b3ae2939491949f914f0e6530f7e4157e (patch) | |
| tree | 6c7638420f779d39c42f1a8f2d4e2a2987ca8045 | |
| parent | a6d6a1fa9e0db43e6b33e8874b979cc1f87d8be5 (diff) | |
| download | nextcloud-server-case-insensitive-login.tar.gz nextcloud-server-case-insensitive-login.zip | |
fix: use mb_strtolower to convert login namecase-insensitive-login
Signed-off-by: Cleopatra Enjeck M. <patrathewhiz@gmail.com>
| -rw-r--r-- | lib/private/User/Session.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/private/User/Session.php b/lib/private/User/Session.php index 7a21473d20c..9a5713630c5 100644 --- a/lib/private/User/Session.php +++ b/lib/private/User/Session.php @@ -780,7 +780,7 @@ class Session implements IUserSession, Emitter { * Check if login names match */ private function validateTokenLoginName(?string $loginName, IToken $token): bool { - if (strcasecmp($token->getLoginName(), $loginName ?? '') !== 0) { + if (mb_strtolower($token->getLoginName()) !== mb_strtolower($loginName ?? '')) { // TODO: this makes it impossible to use different login names on browser and client // e.g. login by e-mail 'user@example.com' on browser for generating the token will not // allow to use the client token with the login name 'user'. |