FindUserByConfirmationCode fails because of HasUser check #7
Assignees
Comments
|
Thanks for reporting! I will look into this. |
|
I'm in the process of writing a proper example for this, while also double-checking that everything works as expected and/or if there are issues with the documentation. In the mean time, this function roughly outlines what I was thinking in terms of how to register/confirm users, and which order the functions can be called ( |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello
For the use case of verifying a user by having them click a link with the confirmation code as a URL parameter:
When calling UserState.FindUserByConfirmationCode() to find the uncomfirmed user whose confirmation code is the one specified in the URL query string, the function finds the candidate username and then does the following check (link to the relevant line in source code):
hasUser := state.HasUser(username)
The issue is that HasUser() has the following check:
state.usernames.Has(username)
which, for unconfirmed users, it fails. It really should also do the check on the state.unconfirmed Set.
Note that calling UserState.ConfirmUserByConfirmationCode() fails the same way, because the very first thing it does is call FindUserByConfirmationCode().
Having said all this, maybe I'm using the library incorrectly for the use case described at the beginning.
Thanks!
The text was updated successfully, but these errors were encountered: