Make sure to filter wildcard queries

Fixes #640

data/model/team.py

@@ -137,12 +137,13 @@ def add_or_invite_to_team(inviter, team, user_obj=None, email=None, requires_inv
 
 
 def get_matching_user_teams(team_prefix, user_obj, limit=10):
+  team_prefix_search = _basequery.prefix_search(Team.name, team_prefix)
   query = (Team
            .select()
            .join(User)
            .switch(Team)
            .join(TeamMember)
-           .where(TeamMember.user == user_obj, Team.name ** (team_prefix + '%'))
+           .where(TeamMember.user == user_obj, team_prefix_search)
            .distinct(Team.id)
            .limit(limit))
 
@@ -162,6 +163,7 @@ def get_organization_team(orgname, teamname):
 
 
 def get_matching_admined_teams(team_prefix, user_obj, limit=10):
+  team_prefix_search = _basequery.prefix_search(Team.name, team_prefix)
   admined_orgs = (_basequery.get_user_organizations(user_obj.username)
                   .switch(Team)
                   .join(TeamRole)
@@ -172,7 +174,7 @@ def get_matching_admined_teams(team_prefix, user_obj, limit=10):
            .join(User)
            .switch(Team)
            .join(TeamMember)
-           .where(Team.name ** (team_prefix + '%'), Team.organization << (admined_orgs))
+           .where(team_prefix_search, Team.organization << (admined_orgs))
            .distinct(Team.id)
            .limit(limit))
 
@@ -180,8 +182,8 @@ def get_matching_admined_teams(team_prefix, user_obj, limit=10):
 
 
 def get_matching_teams(team_prefix, organization):
-  query = Team.select().where(Team.name ** (team_prefix + '%'),
-                              Team.organization == organization)
+  team_prefix_search = _basequery.prefix_search(Team.name, team_prefix)
+  query = Team.select().where(team_prefix_search, Team.organization == organization)
   return query.limit(10)