Do not permit login with obviously invalid email

It’s next to impossible to ensure an email is valid, so simply check for the general form of an email address.
HermesApp · Apr 16, 2014 · 32a6acb · 32a6acb
1 parent 738719e
commit 32a6acb
Showing 1 changed file with 5 additions and 1 deletion.
diff --git a/Sources/Controllers/AuthController.m b/Sources/Controllers/AuthController.m
@@ -4,6 +4,8 @@
 #import "StationsController.h"
 #import "Notifications.h"
 
+#define ROUGH_EMAIL_REGEX @"[^\\s@]+@[^\\s@]+\\.[^\\s@]+"
+
 @implementation AuthController
 
 - (id) init {
@@ -88,9 +90,11 @@ - (IBAction) logout: (id) sender {
 }
 
 - (void)controlTextDidChange:(NSNotification *)obj {
+  NSPredicate *emailTest = [NSPredicate predicateWithFormat:@"SELF MATCHES %@", ROUGH_EMAIL_REGEX];
+
   [login setEnabled:
    [spinner isHidden] &&
-   ![[username stringValue] isEqualToString:@""] &&
+   [emailTest evaluateWithObject:[username stringValue]] &&
    ![[password stringValue] isEqualToString:@""]];
 }