Merge pull request #2914 from strongloop/backport-email-case-sensitive

loay · web-flow · commit d61e173d6ffc · 2016-11-04T23:25:01.000-04:00
[backport #2912] adding check of string for case insensitive emails
diff --git a/common/models/user.js b/common/models/user.js
@@ -649,7 +649,8 @@ module.exports = function(User) {
 
     // Access token to normalize email credentials
     UserModel.observe('access', function normalizeEmailCase(ctx, next) {
-      if (!ctx.Model.settings.caseSensitiveEmail && ctx.query.where && ctx.query.where.email) {
+      if (!ctx.Model.settings.caseSensitiveEmail && ctx.query.where &&
+          ctx.query.where.email && typeof(ctx.query.where.email) === 'string') {
         ctx.query.where.email = ctx.query.where.email.toLowerCase();
       }
       next();
diff --git a/test/user.test.js b/test/user.test.js
@@ -468,6 +468,36 @@ describe('User', function() {
         done();
       });
     });
+
+    it('Should be able to use query filters (email case-sensitivity off)', function(done) {
+      User.settings.caseSensitiveEmail = false;
+      var insensitiveUser = { email: 'insensitive@example.com', password: 'abc' };
+      User.create(insensitiveUser, function(err, user) {
+        User.find({ where: { email:
+          { inq: [insensitiveUser.email] },
+        }}, function(err, result) {
+          if (err) done(err);
+          assert(result[0], 'The query did not find the user');
+          assert.equal(result[0].email, insensitiveUser.email);
+          done();
+        });
+      });
+    });
+
+    it('Should be able to use query filters (email case-sensitivity on)', function(done) {
+      User.settings.caseSensitiveEmail = true;
+      var sensitiveUser = { email: 'senSiTive@example.com', password: 'abc' };
+      User.create(sensitiveUser, function(err, user) {
+        User.find({ where: { email:
+          { inq: [sensitiveUser.email] },
+        }}, function(err, result) {
+          if (err) done(err);
+          assert(result[0], 'The query did not find the user');
+          assert.equal(result[0].email, sensitiveUser.email);
+          done();
+        });
+      });
+    });
   });
 
   describe('User.login', function() {

Original file line number	Diff line number	Diff line change
`@@ -649,7 +649,8 @@ module.exports = function(User) {`
`649`	`649`
`650`	`650`	`// Access token to normalize email credentials`
`651`	`651`	`UserModel.observe('access', function normalizeEmailCase(ctx, next) {`
`652`		`- if (!ctx.Model.settings.caseSensitiveEmail && ctx.query.where && ctx.query.where.email) {`
	`652`	`+ if (!ctx.Model.settings.caseSensitiveEmail && ctx.query.where &&`
	`653`	`+ ctx.query.where.email && typeof(ctx.query.where.email) === 'string') {`
`653`	`654`	`ctx.query.where.email = ctx.query.where.email.toLowerCase();`
`654`	`655`	`}`
`655`	`656`	`next();`