src/hg/hgLogin/hgLogin.c 0ada44855b610aa826c3839e41d9b48929f86951

0ada44855b610aa826c3839e41d9b48929f86951
angie
  Wed May 25 09:52:13 2016 -0700
Logins are case-insensitive, but cookie-checking is case-sensitive, so when making cookies, use the correctly cased userName from gbMembers.  fixes #17396

diff --git src/hg/hgLogin/hgLogin.c src/hg/hgLogin/hgLogin.c
index 4f8a592..b6f2ec8 100644
--- src/hg/hgLogin/hgLogin.c
+++ src/hg/hgLogin/hgLogin.c
@@ -1221,31 +1221,31 @@
 struct gbMembers *m = gbMembersLoad(row);
 sqlFreeResult(&sr);
 
 /* Check user name exist and account activated */
 if (!sameString(m->accountActivated,"Y"))
     {              
     freez(&errMsg);
     errMsg = cloneString("Account is not activated.");
     displayLoginPage(conn);
     return;
     }
 if (checkPwd(password,m->password))
     {
     hPrintf("<h2>Login successful for user %s.\n</h2>\n", userName);
     clearNewPasswordFields(conn, userName);
-    displayLoginSuccess(userName, m->idx);
+    displayLoginSuccess(m->userName, m->idx);
     return;
     } 
 else if (usingNewPassword(conn, userName, password))
     {
     cartSetString(cart, "hgLogin_changeRequired", "YES");
     changePasswordPage(conn);
     } 
 else
     {
     errMsg = cloneString(incorrectUsernameOrPassword);
     displayLoginPage(conn);
     return;
     }
 gbMembersFree(&m);
 }