check if username is used during signup

2023-09-25 21:08:34 +02:00 · 2023-09-25 21:08:34 +02:00 · 5d367d5b35
commit 5d367d5b35
parent a2d6376e81
1 changed files with 16 additions and 3 deletions
--- a/src/Controller/LoginController.php
+++ b/src/Controller/LoginController.php
@ -364,11 +364,24 @@ class LoginController
            $newUser->setPlainPassword(\Container::$request->post('password'));
        }

-        if (strlen(\Container::$request->post('username')) > 0 && preg_match('/^[a-zA-Z0-9_\-\.]+$/', \Container::$request->post('username')) !== 1) {
-            return new JsonContent(['error' => ['errorText' => 'Username can contain only english letters, digits, - (hyphen), . (dot), _ (underscore).']]);
+        if (strlen(\Container::$request->post('username')) > 0) {
+            $username = \Container::$request->post('username');
+
+            if (preg_match('/^[a-zA-Z0-9_\-\.]+$/', $username) !== 1) {
+                return new JsonContent(['error' => ['errorText' => 'Username can contain only english letters, digits, - (hyphen), . (dot), _ (underscore).']]);
+            }
+
+            if ($this->userRepository->getByUsername($username) !== null) {
+                return new JsonContent(['error' => ['errorText' => 'The given username is already taken.']]);
+            }
+        } else {
+            $usernameGenerator = new UsernameGenerator();
+            do {
+                $username = $usernameGenerator->generate();
+            } while ($this->userRepository->getByUsername($username));
        }

-        $newUser->setUsername(strlen(\Container::$request->post('username')) > 0 ? \Container::$request->post('username') : (new UsernameGenerator())->generate());
+        $newUser->setUsername($username);
        $newUser->setCreatedDate(new DateTime());

        \Container::$persistentDataManager->saveToDb($newUser);