make all emails lowercase closes #89

2025-08-04 10:05:53 +02:00 · 2025-01-21 18:36:50 -05:00 · 2025-01-21 18:36:50 -05:00 · 5f92b0bbc1
commit 5f92b0bbc1
parent d1278c252b
10 changed files with 73 additions and 15 deletions
--- a/server/routers/auth/login.ts
+++ b/server/routers/auth/login.ts
@ -20,7 +20,10 @@ import { verifySession } from "@server/auth/sessions/verifySession";

 export const loginBodySchema = z
    .object({
-        email: z.string().email(),
+        email: z
+            .string()
+            .email()
+            .transform((v) => v.toLowerCase()),
        password: z.string(),
        code: z.string().optional()
    })
--- a/server/routers/auth/requestPasswordReset.ts
+++ b/server/routers/auth/requestPasswordReset.ts
@ -20,7 +20,10 @@ import { hashPassword } from "@server/auth/password";

 export const requestPasswordResetBody = z
    .object({
-        email: z.string().email()
+        email: z
+            .string()
+            .email()
+            .transform((v) => v.toLowerCase())
    })
    .strict();

@ -63,10 +66,7 @@ export async function requestPasswordReset(
            );
        }

-        const token = generateRandomString(
-            8,
-            alphabet("0-9", "A-Z", "a-z")
-        );
+        const token = generateRandomString(8, alphabet("0-9", "A-Z", "a-z"));
        await db.transaction(async (trx) => {
            await trx
                .delete(passwordResetTokens)
--- a/server/routers/auth/resetPassword.ts
+++ b/server/routers/auth/resetPassword.ts
@ -19,7 +19,10 @@ import { passwordSchema } from "@server/auth/passwordSchema";

 export const resetPasswordBody = z
    .object({
-        email: z.string().email(),
+        email: z
+            .string()
+            .email()
+            .transform((v) => v.toLowerCase()),
        token: z.string(), // reset secret code
        newPassword: passwordSchema,
        code: z.string().optional() // 2fa code
--- a/server/routers/auth/signup.ts
+++ b/server/routers/auth/signup.ts
@ -23,7 +23,7 @@ import { checkValidInvite } from "@server/auth/checkValidInvite";
 import { passwordSchema } from "@server/auth/passwordSchema";

 export const signupBodySchema = z.object({
-    email: z.string().email(),
+    email: z.string().email().transform((v) => v.toLowerCase()),
    password: passwordSchema,
    inviteToken: z.string().optional(),
    inviteId: z.string().optional()
--- a/server/routers/resource/authWithWhitelist.ts
+++ b/server/routers/resource/authWithWhitelist.ts
@ -24,7 +24,10 @@ import logger from "@server/logger";

 const authWithWhitelistBodySchema = z
    .object({
-        email: z.string().email(),
+        email: z
+            .string()
+            .email()
+            .transform((v) => v.toLowerCase()),
        otp: z.string().optional()
    })
    .strict();
--- a/server/routers/resource/setResourceWhitelist.ts
+++ b/server/routers/resource/setResourceWhitelist.ts
@ -11,7 +11,10 @@ import { and, eq } from "drizzle-orm";

 const setResourceWhitelistBodySchema = z
    .object({
-        emails: z.array(z.string().email()).max(50)
+        emails: z
+            .array(z.string().email())
+            .max(50)
+            .transform((v) => v.map((e) => e.toLowerCase()))
    })
    .strict();

--- a/server/routers/user/inviteUser.ts
+++ b/server/routers/user/inviteUser.ts
@ -23,7 +23,10 @@ const inviteUserParamsSchema = z

 const inviteUserBodySchema = z
    .object({
-        email: z.string().email(),
+        email: z
+            .string()
+            .email()
+            .transform((v) => v.toLowerCase()),
        roleId: z.number(),
        validHours: z.number().gt(0).lte(168),
        sendEmail: z.boolean().optional()