From 1d596de48cef1bde2c65e7cd77b4ed767a518c63 Mon Sep 17 00:00:00 2001
From: JohnGrubba <nicjontrickshots@gmail.com>
Date: Tue, 3 Sep 2024 19:43:10 +0200
Subject: [PATCH] Restrict OAUTH Username Length

---
 src/api/oauth_providers/github.py | 2 ++
 src/api/oauth_providers/google.py | 2 ++
 2 files changed, 4 insertions(+)

diff --git a/src/api/oauth_providers/github.py b/src/api/oauth_providers/github.py
index 8b99776..d941080 100644
--- a/src/api/oauth_providers/github.py
+++ b/src/api/oauth_providers/github.py
@@ -110,6 +110,8 @@ async def oauth_callback(
             break
     username = rsp["login"]
     # Validate Username
+    if len(username) > 20:
+        username = username[:20]
     if len(username) < 4 or re.search("[^a-zA-Z0-9]", username) is not None:
         username = primary_email.split("@")[0]
 
diff --git a/src/api/oauth_providers/google.py b/src/api/oauth_providers/google.py
index e6dcaeb..9c96851 100644
--- a/src/api/oauth_providers/google.py
+++ b/src/api/oauth_providers/google.py
@@ -93,6 +93,8 @@ async def oauth_callback(
 
     username = jwt_decoded["name"].replace(" ", "")
     # Validate Username
+    if len(username) > 20:
+        username = username[:20]
     if len(username) < 4 or re.search("[^a-zA-Z0-9]", username) is not None:
         username = jwt_decoded["email"].split("@")[0]