username charset

src/Auth/Business/LuticateUsersBusiness.php

@@ -137,6 +137,9 @@ class LuticateUsersBusiness extends LuBusiness {
         $hash = self::hashPassword($password);
         if (filter_var($username, FILTER_VALIDATE_EMAIL))
             self::badInput("Username can not be an email");
+        if (!preg_match("/^[A-Za-z0-9\\-_\\.]$/", $username)) {
+            self::badInput("Username can only contain letters (A-Z a-z), numbers (0-9), hyphen (-), underscore (_) and dot (.)");
+        }
         if (!filter_var($email, FILTER_VALIDATE_EMAIL))
             self::badInput("Invalid email address");
         $user = LuticateUsersDataAccess::getByUsernameOrEmail($username);