add note about ldap restrictions as well

2016-10-01 23:52:01 -07:00
parent 0f882614b1
commit 2c357e022b
2 changed files with 2 additions and 2 deletions
--- a/src/user.js
+++ b/src/user.js
@@ -97,7 +97,7 @@ function validateUsername(username) {

    if (constants.RESERVED_NAMES.indexOf(username) !== -1) return new UserError(UserError.BAD_FIELD, 'Username is reserved');

-    // +/- can be tricky in emails
+    // +/- can be tricky in emails. also need to consider valid LDAP characters here (e.g '+' is reserved)
    if (/[^a-zA-Z0-9.]/.test(username)) return new UserError(UserError.BAD_FIELD, 'Username can only contain alphanumerals and dot');

    // app emails are sent using the .app suffix