clean up username entered at login

author Evan Prodromou <evan@prodromou.name>

Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)

committer Evan Prodromou <evan@prodromou.name>

Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)
author Evan Prodromou <evan@prodromou.name>
Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)
committer Evan Prodromou <evan@prodromou.name>
Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)
diff --git a/actions/login.php b/actions/login.php

index aa25a0cec5fb3a179524100c5a0af15dd25290a2..f183c1cd45c5ab7ff57f84440a0e2f321679fc9d 100644 (file)
--- a/actions/login.php
+++ b/actions/login.php
@@ -39,7 +39,7 @@ class LoginAction extends Action {
         function check_login() {
                 # XXX: form token in $_SESSION to prevent XSS
                 # XXX: login throttle
-               $nickname = $this->arg('nickname');
+               $nickname = common_canonical_nickname($this->trimmed('nickname'));
                 $password = $this->arg('password');
                 if (common_check_user($nickname, $password)) {
                         # success!
author	Evan Prodromou <evan@prodromou.name>
	Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)
committer	Evan Prodromou <evan@prodromou.name>
	Fri, 29 Aug 2008 22:52:58 +0000 (18:52 -0400)