[GH-ISSUE #290] Account's email uniqueness not enforced by database #219

New issue

Open

opened 2026-02-25 23:41:39 +03:00 by kerem · 3 comments

kerem commented 2026-02-25 23:41:39 +03:00

Owner

Copy link

Originally created by @cuu508 on GitHub (Sep 30, 2019).
Original GitHub issue: https://github.com/healthchecks/healthchecks/issues/290

There's a race condition when creating an user account. It is possible to create two user accounts with the same email address, which causes various problems later.

Either the email column needs a uniqueness constraint, or or the username (which already has uniqueness contraint) needs to be generated from email in a deterministic way.

Originally created by @cuu508 on GitHub (Sep 30, 2019). Original GitHub issue: https://github.com/healthchecks/healthchecks/issues/290 There's a race condition when creating an user account. It is possible to create two user accounts with the same email address, which causes various problems later. Either the email column needs a uniqueness constraint, or or the username (which already has uniqueness contraint) needs to be generated from email in a deterministic way.

kerem added the

bug

label 2026-02-25 23:41:39 +03:00

kerem commented 2026-02-25 23:41:39 +03:00

Author

Owner

Copy link

@cuu508 commented on GitHub (Oct 12, 2019):

I had fixed this by deriving username from email (and the username already has an uniqueness constraint, so problem solved...?)

Problem with this is that users can change their email addresses. Consider:

• user@example.org creates an account. Account's username is HASH(user@example.com)
• later, they change their account's email address to team@example.org. Account's username is still HASH(user@example.org)
• they then try to invite user@example.org into the account. This fails with IntegrityError because HASH(user@example.org) is already taken.

<!-- gh-comment-id:541301805 --> @cuu508 commented on GitHub (Oct 12, 2019): I had fixed this by deriving username from email (and the username already has an uniqueness constraint, so problem solved...?) Problem with this is that users can change their email addresses. Consider: * user@example.org creates an account. Account's username is HASH(user@example.com) * later, they change their account's email address to team@example.org. Account's username is still HASH(user@example.org) * they then try to invite user@example.org into the account. This fails with IntegrityError because HASH(user@example.org) is already taken.

kerem commented 2026-02-25 23:41:39 +03:00

Author

Owner

Copy link

@cuu508 commented on GitHub (Oct 12, 2019):

Adding an explicit uniqueness constraint to the email column seems like the cleaner solution. I'm not sure if there is an idiomatic way to do that in Django for the default User model. For time being, on the hosted service, I've just manually added a constraint in the database:

ALTER TABLE auth_user ADD CONSTRAINT unique_emails UNIQUE (email);

<!-- gh-comment-id:541303752 --> @cuu508 commented on GitHub (Oct 12, 2019): Adding an explicit uniqueness constraint to the email column seems like the cleaner solution. I'm not sure if there is an idiomatic way to do that in Django for the default User model. For time being, on the hosted service, I've just manually added a constraint in the database: ALTER TABLE auth_user ADD CONSTRAINT unique_emails UNIQUE (email);

kerem commented 2026-02-25 23:41:39 +03:00

Author

Owner

Copy link

@immanuelfodor commented on GitHub (Jan 3, 2020):

FYI, you can't add a unique constraint in SQLite, but can create a unique index for the same effect: https://stackoverflow.com/a/15498225

CREATE UNIQUE INDEX unique_email ON auth_user(email);

Added this manually after https://github.com/healthchecks/healthchecks/issues/306#issuecomment-570526115

<!-- gh-comment-id:570529077 --> @immanuelfodor commented on GitHub (Jan 3, 2020): FYI, you can't add a unique constraint in SQLite, but can create a unique index for the same effect: https://stackoverflow.com/a/15498225 ```sql CREATE UNIQUE INDEX unique_email ON auth_user(email); ``` Added this manually after https://github.com/healthchecks/healthchecks/issues/306#issuecomment-570526115

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

py2

v4.1.1

v4.1

v4.0

v3.13

v3.12

v3.11.2

v3.11.1

v3.11

v3.10

v3.9

v3.8.2

v3.8.1

v3.8

v3.7

v3.6

v3.5.2

v3.5.1

v3.5

v3.4

v3.3

v3.2

v3.1

v3.0.1

v3.0

v2.10

v2.9.2

v2.9.1

v2.9

v2.8.1

v2.8

v2.7

v2.6.1

v2.6

v2.5

v2.4.1

v2.4

v2.3

v2.2.1

v2.2

v2.1

v2.0.1

v2.0

v1.25.0

v1.24.1

v1.24.0

v1.23.1

v1.23.0

v1.22.0

v1.21.0

v1.20.0

v1.19.0

v1.18.0

v1.17.0

v1.16.0

v1.15.0

v1.14.0

v1.13.0

v1.12.0

v1.11.0

v1.10.0

v1.9.0

v1.8.0

v1.7.0

v1.6.0

v1.5.0

v1.4.0

v1.3.0

v1.2.0

v1.1.0

v1.0.4

v1.0.3

v1.0.2

1.0.2

v1.0.1

v1.0

Labels

Clear labels   

bug

  

bug

  

bug

  

feature

  

good-first-issue

  

new integration

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

bug

bug

bug

feature

good-first-issue

new integration

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/healthchecks#219

No description provided.