Fix case-sensitive email handling in password recovery

2021-06-01 15:30:07 +02:00
parent a1cc17094d
commit db029882ec
1 changed files with 1 additions and 1 deletions
--- a/src/pretix/presale/forms/customer.py
+++ b/src/pretix/presale/forms/customer.py
@@ -283,7 +283,7 @@ class ResetPasswordForm(forms.Form):
        if 'email' not in self.cleaned_data:
            return
        try:
-            self.customer = self.request.organizer.customers.get(email=self.cleaned_data['email'])
+            self.customer = self.request.organizer.customers.get(email=self.cleaned_data['email'].lower())
            return self.customer.email
        except Customer.DoesNotExist:
            # Yup, this is an information leak. But it prevents dozens of support requests – and even if we didn't