From 99f0001c161066bd87175d12af22572647ded84b Mon Sep 17 00:00:00 2001
From: n1lby73 <65239245+n1lby73@users.noreply.github.com>
Date: Wed, 20 Dec 2023 11:40:22 +0100
Subject: [PATCH] Forced all input (email and username) to the server to be
 lowercase

---
 web-ui/webApp/apiRoute.py | 24 ++++++++++++------------
 1 file changed, 12 insertions(+), 12 deletions(-)

diff --git a/web-ui/webApp/apiRoute.py b/web-ui/webApp/apiRoute.py
index 4416b81..ee36441 100644
--- a/web-ui/webApp/apiRoute.py
+++ b/web-ui/webApp/apiRoute.py
@@ -266,7 +266,7 @@ def __init__(self):
     def post(self):
 
         args = self.parser.parse_args()
-        email = args["email"]
+        email = args["email"].lower()
         password = args["password"]
 
         try:
@@ -324,8 +324,8 @@ def __init__(self):
     def post(self):
 
         args = self.parser.parse_args()
-        email = args["email"]
-        username = args["username"]
+        email = args["email"].lower()
+        username = args["username"].lower()
         password = args["password"]
 
         existingUserName = users.query.filter_by(username=username).first()
@@ -393,7 +393,7 @@ def post(self):
 
         args = self.parser.parse_args()
         user_otp = args["otp"]
-        email = args["email"]
+        email = args["email"].lower()
 
         logged_user = users.query.filter_by(email=email).first()
 
@@ -458,8 +458,8 @@ def put(self):
         global genOtpStartTime
 
         args = self.parser.parse_args()
-        updatedEmail = args["newEmail"]
-        email = args["email"]
+        updatedEmail = args["newEmail"].lower()
+        email = args["email"].lower()
 
 
         logged_user = users.query.filter_by(email=email).first()
@@ -522,7 +522,7 @@ def get(self):
             global genOtpStartTime
             args = self.parser.parse_args()
 
-            email = args["email"]
+            email = args["email"].lower()
             
             logged_user = users.query.filter_by(email=email).first()
 
@@ -631,7 +631,7 @@ def get(self):
         
         self.parser.add_argument("email", required=True)
         args = self.parser.parse_args()
-        email = args["email"]
+        email = args["email"].lower()
 
         logged_user = users.query.filter_by(email=email).first()
 
@@ -834,8 +834,8 @@ def __init__(self):
     def put(self):
 
         args = self.parser.parse_args()
-        userEmail = args["email"]
-        newRole = args["role"]
+        userEmail = args["email"].lower()
+        newRole = args["role"].lower()
 
         user = get_jwt_identity()
         email = user["email"]
@@ -891,7 +891,7 @@ def __init__(self):
     def delete(self):
 
         args = self.parser.parse_args()
-        userEmail = args["email"]
+        userEmail = args["email"].lower()
 
         user = get_jwt_identity()
         role = user["role"]
@@ -976,4 +976,4 @@ def get(self):
 api.add_resource(resetPasswordApi, '/api/resetpass', '/api/resetpass/')
 api.add_resource(verifyEmailApi, '/api/verifyemail', '/api/verifyemail/')
 api.add_resource(resetOutTokenApi, '/api/resetouttoken', '/api/resetouttoken/')
-api.add_resource(synchardchangesApi, '/api/synchardchanges', '/api/synchardchanges/')
\ No newline at end of file
+api.add_resource(synchardchangesApi, '/api/synchardchanges', '/api/synchardchanges/')