add query escape

controllers/user.go

@@ -1144,9 +1144,8 @@ func userInviteSignUp(w http.ResponseWriter, r *http.Request) {
 //	Responses:
 //		200: ReturnSuccessResponse
 func userInviteVerify(w http.ResponseWriter, r *http.Request) {
-	params, _ := url.ParseQuery(r.URL.String())
-	email := params.Get("email")
-	code := params.Get("code")
+	email, _ := url.QueryUnescape(r.URL.Query().Get("email"))
+	code, _ := url.QueryUnescape(r.URL.Query().Get("code"))
 	logger.Log(0, "EMAIL", email, "CODE", code)
 	err := logic.ValidateAndApproveUserInvite(email, code)
 	if err != nil {

logic/notification.go

@@ -32,7 +32,7 @@ func SendInviteEmail(invite models.UserInvite) error {
 
 	// Set E-Mail body. You can set plain text or html with text/html
 	u, err := url.Parse(fmt.Sprintf("https://api.%s/api/v1/users/invite?email=%s&code=%s",
-		servercfg.GetServer(), invite.Email, invite.InviteCode))
+		servercfg.GetServer(), url.QueryEscape(invite.Email), url.QueryEscape(invite.InviteCode)))
 	if err != nil {
 		return err
 	}