Capitalization is getting changed on some flights, causing unauthorized access

[ericberman]

If a user is abcdef, some flights are sometimes abcdef and some are Abcdef. These fail the authorization check when you go to edit them. Need to relax that check to be case insensitive, but the bigger question is "why is the capitalization getting changed???"

[ericberman]

Interesting -

select f.username, f.username, u.username from flights f inner join users u on f.username=u.username where binary f.username <> u.username

reveals 232 such flights, across 8 users.

[ericberman]

Still should fix the flights. The query here is select idflight, f.username, f.username, u.username from flights f inner join users u on f.username=u.username where binary f.username <> u.username

[ericberman]

Got a report of this happening with saving a pending flight from the iOS (look for Resources.WebService.errFlightNotYours), but I'm not doing any case-sensitive username comparison there. I am doing one on the pending flight ID, though.