Merge pull request #1498 from datacite/consortium-admin-bug

Downcase consortium ID when determining access to individual DOI records for cases where `doi.provider.consortium_id` is downcased

Author: codycooperross

app/models/concerns/authenticable.rb

@@ -221,8 +221,9 @@ def not_allowed_by_doi_and_user(doi: nil, user: nil)
       return true if user.blank?
       return false if %w[staff_admin staff_user].include?(user.role_id)
       if %w[consortium_admin].include?(user.role_id) &&
-          user.provider_id.present? &&
-          user.provider_id.upcase == doi.provider.consortium_id
+         user.provider_id.present? &&
+         doi.provider&.consortium_id&.present? &&
+         user.provider_id.downcase == doi.provider.consortium_id.downcase
         return false
       end
       if %w[provider_admin provider_user].include?(user.role_id) &&