project commit v2

.gitignore

@@ -76,3 +76,11 @@ _[Ss]cripts
 *.ncrunchsolution
 *.dot[Cc]over
 /AnimeSearch/wwwroot/.well-known
+/AnimeSearch/wwwroot/sitemap.xml
+*.v1
+.dtbcache.v2
+
+#########
+# Rider #
+#########
+/.idea/

.vs/AnimeSearch/project-colors.json

@@ -0,0 +1,16 @@
+{
+  "Version": 1,
+  "ProjectMap": {
+    "233fb6b9-81ab-4c9b-bf25-5b5b7051393b": {
+      "ProjectGuid": "233fb6b9-81ab-4c9b-bf25-5b5b7051393b",
+      "DisplayName": "AnimeSearch",
+      "ColorIndex": 0
+    },
+    "a2fe74e1-b743-11d0-ae1a-00a0c90fffc3": {
+      "ProjectGuid": "a2fe74e1-b743-11d0-ae1a-00a0c90fffc3",
+      "DisplayName": "Fichiers divers",
+      "ColorIndex": -1
+    }
+  },
+  "NextColorIndex": 1
+}

AnimeSearch.sln

@@ -1,9 +1,16 @@
 
 Microsoft Visual Studio Solution File, Format Version 12.00
-# Visual Studio Version 16
-VisualStudioVersion = 16.0.31129.286
+# Visual Studio Version 17
+VisualStudioVersion = 17.0.32014.148
 MinimumVisualStudioVersion = 10.0.40219.1
-Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "AnimeSearch", "AnimeSearch\AnimeSearch.csproj", "{233FB6B9-81AB-4C9B-BF25-5B5B7051393B}"
+Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "AnimeSearch", "AnimeSearch\AnimeSearch.csproj", "{233FB6B9-81AB-4C9B-BF25-5B5B7051393B}"
+EndProject
+Project("{2150E333-8FDC-42A3-9474-1A3956D46DE8}") = "Solution Items", "Solution Items", "{3AF840B5-45F6-4859-B6B7-D57606F607C5}"
+	ProjectSection(SolutionItems) = preProject
+		.editorconfig = .editorconfig
+		.gitignore = .gitignore
+		README.md = README.md
+	EndProjectSection
 EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution

AnimeSearch/Attributes/LevelAuthorize.cs

@@ -0,0 +1,51 @@
+using AnimeSearch.Database;
+using Microsoft.AspNetCore.Authorization;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.Filters;
+using Microsoft.EntityFrameworkCore;
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+
+namespace AnimeSearch.Attributes
+{
+    [AttributeUsage(AttributeTargets.Class | AttributeTargets.Method, AllowMultiple = true, Inherited = true)]
+
+    public class LevelAuthorize : Attribute, IAsyncAuthorizationFilter
+    {
+        private readonly int niveauActuel;
+
+        public LevelAuthorize(int niveauActuel = 0) => this.niveauActuel = niveauActuel;
+
+        public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
+        {
+            if(!context.HttpContext.User.Identity.IsAuthenticated)
+            {
+                var accept = context.HttpContext.Request.Headers.Accept.ToString();
+
+                if (accept.Contains("html") || accept.Equals("*/*"))
+                    context.Result = new RedirectToActionResult("LoginGet", "Identity", new {returnUrl = context.HttpContext.Request.Path});
+                else
+                    context.Result = new UnauthorizedResult();
+
+                return;
+            }
+
+            var _userManager = (UserManager<Users>) context.HttpContext.RequestServices.GetService(typeof(UserManager<Users>));
+            var _roleManager = (RoleManager<Roles>) context.HttpContext.RequestServices.GetService(typeof(RoleManager<Roles>));
+
+            Users currentUser = await _userManager.FindByNameAsync(context.HttpContext.User.Identity.Name);
+            List<Roles> roles = (await _userManager.GetRolesAsync(currentUser)).Select(r => _roleManager.FindByNameAsync(r).GetAwaiter().GetResult()).ToList();
+
+            if (roles.Contains(Utilities.SUPER_ADMIN_ROLE))
+            {
+                return;
+            }
+
+            if (roles.Max(r => r.NiveauAutorisation) < niveauActuel)
+                context.Result = new UnauthorizedResult();
+        }
+    }
+}