From 48f1e59abd0cfa11fa2f4dbef966b9fe063a570c Mon Sep 17 00:00:00 2001
From: lewis <747342561@qq.com>
Date: Mon, 9 Aug 2021 10:05:13 +0800
Subject: [PATCH] verify email format

---
 routers/secure/user.go | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/routers/secure/user.go b/routers/secure/user.go
index 808761d06..fd9a773c3 100755
--- a/routers/secure/user.go
+++ b/routers/secure/user.go
@@ -7,6 +7,7 @@ package secure
 
 import (
 	"net/http"
+	"strings"
 
 	"code.gitea.io/gitea/models"
 	"code.gitea.io/gitea/modules/context"
@@ -75,6 +76,14 @@ func CreateUser(ctx *context.Context, form api.CreateUserOption) {
 		u.MustChangePassword = *form.MustChangePassword
 	}
 
+	if strings.Contains(form.Email, " ") {
+		log.Error("CreateUser failed: email(%s) contains blank space", form.Email, ctx.Data["MsgID"])
+		ctx.JSON(http.StatusBadRequest, map[string]string{
+			"error_msg": "Email contains blank space",
+		})
+		return
+	}
+
 	parseLoginSource(ctx, u, form.SourceID, form.LoginName)
 	if ctx.Written() {
 		return