Execute OCAPI with case insensitive login
Trailblazer Community

Execute OCAPI with case insensitive login

Commerce Cloud API/OCAPI

Last updated 29 days ago ·Reference W-7713480 ·Reported By 12 users

In Review

Summary
When use case insensitive login(stored in Account Manager), users are able to obtain an OCAPI OAuth token but unable to execute an OCAPI request with that token

Repro
1.Login to Business Manager as someone@example.com

2.Obtain an OCAPI OAuth token with grant type urn:demandware:params:oauth:grant-type:client-id:dwsid:dwsecuretoken and someone@example.com as user name

3.Execute an OCAPI request with that token --> this works as expected

4.Now obtain an OCAPI OAuth token with grant type urn:demandware:params:oauth:grant-type:client-id:dwsid:dwsecuretoken and SOMEONE@example.com as user name
The OAuth token is returned successfully

5.Execute OCAPI call with that token failed because the user could not be found.

Expected: OCAPI requests with that token succeed

Actual: OCAPI requests with that token fail because the user could not be found.

Workaround
Do a case insensitive user lookup in OAuthAccessTokenValidator since Account Manager logins are case insensitive

Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.