Level 102
What is the database type? Mysql is case insensitive out of the box, so maybe someone changed it by accident?
I assume the screenshot is from production?
Apr 1, 2022
21
Level 12
Problem with email uniqueness on user registration
Hey!
As I'm not that good in explanations just have a look at this
That's a list of registered users. As you can see a user is able to register with the same email but with changed uppercase letters. How can I avoid this?
Level 12
@Sinnbeck It's just me playing around with the database. I haven't changed anything.
The email column type in the users table is
character varying(255) NOT NULL
No, the app is not in production yet.
Level 102
@Laralex Ok. It might be related to the mysql running on your system. Windows? How is it installed?
It is also possible that you didnt set the column to unique in the migration? Just tested in my own database by duplicating username (which is unique)
Error synchronizing data with database
Reason:
SQL Error [1062] [23000]: (conn=116) Duplicate entry 'FOO' for key 'users_username_unique'
Level 12
@Sinnbeck I'm running PostgreSQL. The app is on a live server. I haven't forgot unique() in the users table migration file.
$table->string('email')->unique();
Level 102
@Laralex Ah postgresSQL might be different :) I havent been able to find any articles regarding it, but my guess is that you should be able to make it case insensitive somehow. Maybe someone who actually uses postgres can answer better (I only use mysql, mariadb and mssql)
1 like
Level 12
@Sinnbeck Then I'll wait for other responses. Thanks!
Level 102
@Laralex Think I found something http://shuber.io/case-insensitive-unique-constraints-in-postgres/
Currently searching for tricks to make it citext without a manual migration query
1 like
Level 102
Suggestion from @tray2
Use a mutator/accessor to always ensure the email is lowercase.
1 like
Level 12
@Sinnbeck I have no idea how to use a mutator/accessor :(
Level 102
@Laralex They are easy to add https://laravel.com/docs/8.x/eloquent-mutators#accessors-and-mutators
Level 55
@Laralex just try to google something like "Laravel Accessor Mutator" - and the first link will be https://laravel.com/docs/9.x/eloquent-mutators#accessors-and-mutators
Level 12
@Sinnbeck Well, okay.
User Model
public function getEmailAttribute($value) {
return strtolower($value);
}
But how is that gonna help me to prevent users to register with the same email with changed uppercase letters?
Level 6
@Laralex use a mutator not an accessor https://laravel.com/docs/9.x/eloquent-mutators#defining-a-mutator
Anyway If you use mass asignments with create() it wont work (you have to convert to lowercase manually in that cases)
Level 12
@okusax app/Actions/Fortify/CreateNewUser.php
User::create([
'name' => $input['name'],
'email' => $input['email'],
'password' => Hash::make($input['password'])
]);
Level 102
@Laralex so this should make sure they are always lowercase :)
User::create([
'name' => $input['name'],
'email' => strtolower($input['email']),
'password' => Hash::make($input['password'])
]);
1 like
Level 6
define:
// User.php
public function setEmailAttribute($value)
{
$this->attributes['email'] = strtolower($value);
}
every time you assign the user email, it will be lowercased:
$user = new User();
$user->name = $input['name'];
$user->password = Hash::make($input['password']);
$user->email = $input['email']; // will be converted to [email protected] on the database
$user->save(); // when saved of course
if you use create() I think you should do the conversion manually:
User::create([
'name' => $input['name'],
'email' => strtolower($input['email']),
'password' => Hash::make($input['password'])
]);
There is an old topic about this issue ( https://github.com/laravel/framework/issues/9430 ) Some people manage the unique validation in a Request Validation (ensuring that always your laravel application would be dealing with a lowercase email: https://github.com/laravel/framework/issues/9430#issuecomment-274482274 )
Others recommends to use a middleware to alter that kind of data to lowercase if detected https://github.com/laravel/framework/issues/9430#issuecomment-354729914
Maybe you can try that options too and check what works best for you.
Level 12
@okusax Okay, nice. But how do I make this message
appear like this
(as a part of $errors variable, something like putting this validation in the controller's $request->validate() method)
Level 4
I think you should intercept the request before validation and make sure it is passed to validation in lower case
$request->email = strtolower($request->email);
$request->validate .....
1 like
Level 12
Hey!
Sorry for replying on this old topic, but I have a problem with the login now. When a user registers with [email protected] and tries to login with [email protected] leads to an error "These credentials do not match our records.". How do I deal with that? It's because I lowercase all the emails the email on user registration and in the database the email is with lowercase letters. How to access LoginController and add strtolower($request->email) before validation?
Level 104
@Laralex are you using Fortify? You can define your own authentication callback where you can modify the email input (strtolower) so comparison will match your stored data
https://laravel.com/docs/9.x/fortify#customizing-user-authentication
1 like
Level 12
@tykus Useful answers as always.. Thanks, worked!
Please or to participate in this conversation.