From 7da54f656d003039221cf1961def9c4ce0b68742 Mon Sep 17 00:00:00 2001
From: Xevion <ryanchwalters@gmail.com>
Date: Wed, 30 Mar 2022 01:27:28 -0500
Subject: [PATCH] Limit possible characters in a username heavily to combat
 abuse

---
 forms.py | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/forms.py b/forms.py
index d1fb1be..aafe74e 100644
--- a/forms.py
+++ b/forms.py
@@ -5,7 +5,9 @@ from validators import NoProfanity
 
 
 class RegistrationForm(FlaskForm):
-    username = StringField('Username', [validators.Length(min=4, max=25), NoProfanity()])
+    username = StringField('Username', [validators.Length(min=4, max=25),
+                                        validators.Regexp(r' ^[a-zA-Z0-9]+([._]?[a-zA-Z0-9]+)*$'),
+                                        NoProfanity()])
     name = StringField('Name', [validators.Length(min=2, max=35), NoProfanity()])
     password = PasswordField('New Password', [
         validators.DataRequired(),
@@ -23,7 +25,7 @@ class LoginForm(FlaskForm):
 
 class EditProfileForm(FlaskForm):
     name = RegistrationForm.name
-    about_me = TextAreaField('About Me', [validators.Optional(), NoProfanity()], description='Tell us about yourself',)
+    about_me = TextAreaField('About Me', [validators.Optional(), NoProfanity()], description='Tell us about yourself', )
 
 
 class NewPostForm(FlaskForm):