It is possible to create a user that can never log into bhima by putting uppercase letters in the username. The login procedure is case-insensitive, and automatically converts the username using toLowerCase(). Therefore, a user with the username 'bHima' will never match, since it will automatically be converted to 'bhima'.
I suggest that we convert the user's username toLowerCase() in the user creation page to prevent this bug.
It is possible to create a user that can never log into bhima by putting uppercase letters in the username. The login procedure is case-insensitive, and automatically converts the username using
toLowerCase(). Therefore, a user with the username 'bHima' will never match, since it will automatically be converted to 'bhima'.I suggest that we convert the user's username
toLowerCase()in the user creation page to prevent this bug.