[prev in list] [next in list] [prev in thread] [next in thread] 

List:       vtigercrm-developers
Subject:    [Vtigercrm-developers] email is case sensitive when when using forgotpassword
From:       "Hamono, Chris (DPC)" <Chris.Hamono () sa ! gov ! au>
Date:       2014-07-28 6:13:37
Message-ID: 6CC78B54517348498CB1E58845C8F3D13616FB528F () EMSCM005 ! sagemsmrd01 ! sa ! gov ! au
[Download RAW message or body]


When someone has forgotten their password the email address is case sensitive.

The following code in forgotPassword.php

	$username = vtlib_purify($_REQUEST['user_name']);
	$result = $adb->pquery('select email1 from vtiger_users where user_name= ? ', \
array($username));  if($adb->num_rows($result) > 0) {
		$email = $adb->query_result($result, 0, 'email1');
	}

	if(vtlib_purify($_REQUEST['emailId']) == $email) {



Should be changed to

	$username = vtlib_purify($_REQUEST['user_name']);
	$result = $adb->pquery('select email1 from vtiger_users where user_name= ? ', \
array($username));  if($adb->num_rows($result) > 0) {
		$email = $adb->query_result($result, 0, 'email1');
	}

	if(strcasecmp ($_REQUEST['emailId'],$email)  ===  0) {

It is important to note that comparisons done using == or === are always case \
sensitive. It's also important to note that comparisons should always be done with \
the type sensitive comparison operators  === or !==

$int = 0;
$name = "";

If ($int == $name) { <== true

If ($int === $name) { <== false


Chris

_______________________________________________
http://www.vtiger.com/


[prev in list] [next in list] [prev in thread] [next in thread]