From cbb5e6f765fbebc86980e5c72321fca79324aa34 Mon Sep 17 00:00:00 2001
From: mrgoldy <gijsmartens1@gmail.com>
Date: Tue, 8 Oct 2019 20:18:20 +0200
Subject: [PATCH] [ticket/16008] Enforce string data type as per ticket/16181

PHPBB3-16008
---
 phpBB/phpbb/auth/provider/oauth/oauth.php | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/phpBB/phpbb/auth/provider/oauth/oauth.php b/phpBB/phpbb/auth/provider/oauth/oauth.php
index 20810149dd..fe82663799 100644
--- a/phpBB/phpbb/auth/provider/oauth/oauth.php
+++ b/phpBB/phpbb/auth/provider/oauth/oauth.php
@@ -215,7 +215,12 @@ class oauth extends \phpbb\auth\provider\base
 				];
 			}
 
-			// Check to see if this provider is already associated with an account
+			/**
+			 * Check to see if this provider is already associated with an account.
+			 *
+			 * Enforcing a data type to make sure it are strings and not integers,
+			 * so values are quoted in the SQL WHERE statement.
+			 */
 			$data = [
 				'provider'			=> (string) utf8_strtolower($provider),
 				'oauth_provider_id'	=> (string) $unique_id