Execute OCAPI with case insensitive login
Last updated 29 days ago ·Reference W-7713480 ·Reported By 12 users
When use case insensitive login(stored in Account Manager), users are able to obtain an OCAPI OAuth token but unable to execute an OCAPI request with that token
1.Login to Business Manager as firstname.lastname@example.org
2.Obtain an OCAPI OAuth token with grant type urn:demandware:params:oauth:grant-type:client-id:dwsid:dwsecuretoken and email@example.com as user name
3.Execute an OCAPI request with that token --> this works as expected
4.Now obtain an OCAPI OAuth token with grant type urn:demandware:params:oauth:grant-type:client-id:dwsid:dwsecuretoken and SOMEONE@example.com as user name
The OAuth token is returned successfully
5.Execute OCAPI call with that token failed because the user could not be found.
Expected: OCAPI requests with that token succeed
Actual: OCAPI requests with that token fail because the user could not be found.
Do a case insensitive user lookup in OAuthAccessTokenValidator since Account Manager logins are case insensitive
Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.