clean up username entered at login

darcs-hash:20080829225258-84dde-6fee5f0beea62f023c13436b8d7044241bc0d01a.gz
author: Evan Prodromou <evan@prodromou.name> 2008-08-29 18:52:58 -0400
committer: Evan Prodromou <evan@prodromou.name> 2008-08-29 18:52:58 -0400
commit: adeb19f1f7a82b17cee85ade1ac06fcd48e0d4cb (patch)
tree: b197913ac835432b6f1c6635d6a099b2b89289a7 /actions/login.php
parent: 9fb08ec45e79f9cc782154ac8b8995e022e777e6 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/actions/login.php b/actions/login.php
index aa25a0cec..f183c1cd4 100644
--- a/actions/login.php
+++ b/actions/login.php
@@ -39,7 +39,7 @@ class LoginAction extends Action {
 	function check_login() {
 		# XXX: form token in $_SESSION to prevent XSS
 		# XXX: login throttle
-		$nickname = $this->arg('nickname');
+		$nickname = common_canonical_nickname($this->trimmed('nickname'));
 		$password = $this->arg('password');
 		if (common_check_user($nickname, $password)) {
 			# success!
author	Evan Prodromou <evan@prodromou.name>	2008-08-29 18:52:58 -0400
committer	Evan Prodromou <evan@prodromou.name>	2008-08-29 18:52:58 -0400
commit	adeb19f1f7a82b17cee85ade1ac06fcd48e0d4cb (patch)
tree	b197913ac835432b6f1c6635d6a099b2b89289a7 /actions/login.php
parent	9fb08ec45e79f9cc782154ac8b8995e022e777e6 (diff)