usernames are forced to be lowercase & user Db code username/passwd validation

[ravthan]

This makes it easier for a hacker to guess user id. Also in many db .rb modules, checking username validation should be added. Many .rb modules in db package make no effort to do this. So is far password, ravi.

[CKinWoodstock]

Usernames (actually userids) are not coerced to lowercase - they may be mixed case, and they are case sensitive. Validation has been added to enforce stronger passwords (as part of bug #5).

Beyond that, I'm not sure I understand the issue here?

[ravthan]

At the time I was looking at some code/documentation it mentioned that force all the usernames to lower case. That's why I filed this bug, ravi.

[CKinWoodstock]

Documentation no longer shows incorrect behavior of user ids