Authorizes

damienmoulard · damienmoulard · commit 52095125ad5e · 2015-11-23T08:32:58.000+01:00
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/accessoriesController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/accessoriesController.cs
@@ -15,6 +15,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class accessoriesController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/activitiesController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/activitiesController.cs
@@ -61,6 +61,7 @@ public async Task<IHttpActionResult> findActivitiesByManagerId(int managerId)
 
         // PUT: api/activities/5
         [ResponseType(typeof(void))]
+        [Authorize(Roles = "Manager")]
         public IHttpActionResult Putactivity(int id, activity activity)
         {
             if (!ModelState.IsValid)
@@ -96,6 +97,7 @@ public IHttpActionResult Putactivity(int id, activity activity)
 
         // POST: api/activities
         [ResponseType(typeof(activity))]
+        [Authorize(Roles = "Manager")]
         public IHttpActionResult Postactivity(activity activity)
         {
             if (!ModelState.IsValid)
@@ -111,6 +113,7 @@ public IHttpActionResult Postactivity(activity activity)
 
         // DELETE: api/activities/5
         [ResponseType(typeof(activity))]
+        [Authorize(Roles = "Manager")]
         public IHttpActionResult Deleteactivity(int id)
         {
             activity activity = db.activity.Find(id);
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/adminsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/adminsController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class adminsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
@@ -32,6 +33,7 @@ public async Task<IHttpActionResult> Getadmin(int id)
 
         // POST: api/admins
         [ResponseType(typeof(admin))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> Postadmin(admin admin)
         {
             if (!ModelState.IsValid)
@@ -62,6 +64,7 @@ public async Task<IHttpActionResult> Postadmin(admin admin)
 
         // DELETE: api/admins/5
         [ResponseType(typeof(admin))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> Deleteadmin(int id)
         {
             admin admin = await db.admin.FindAsync(id);
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/categoriesController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/categoriesController.cs
@@ -12,6 +12,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class categoriesController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
@@ -36,6 +37,7 @@ public IHttpActionResult Getcategory(int id)
         }
 
         // PUT: api/categories/5
+        [Authorize(Roles = "Admin")]
         [ResponseType(typeof(void))]
         public IHttpActionResult Putcategory(int id, category category)
         {
@@ -72,6 +74,7 @@ public IHttpActionResult Putcategory(int id, category category)
 
         // POST: api/categories
         [ResponseType(typeof(category))]
+        [Authorize(Roles = "Admin")]
         public IHttpActionResult Postcategory(category category)
         {
             if (!ModelState.IsValid)
@@ -87,6 +90,7 @@ public IHttpActionResult Postcategory(category category)
 
         // DELETE: api/categories/5
         [ResponseType(typeof(category))]
+        [Authorize(Roles = "Admin")]
         public IHttpActionResult Deletecategory(int id)
         {
             category category = db.category.Find(id);
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/contributorsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/contributorsController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class contributorsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/eventRegistrationsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/eventRegistrationsController.cs
@@ -14,7 +14,8 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
-   // [RoutePrefix("api/events")]
+    // [RoutePrefix("api/events")]
+    [Authorize]
     public class eventRegistrationsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/managersController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/managersController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class managersController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
@@ -62,6 +63,7 @@ public async Task<IHttpActionResult> Postmanager(manager manager)
 
         // DELETE: api/managers/5
         [ResponseType(typeof(manager))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> Deletemanager(int id)
         {
             manager manager = await db.manager.FindAsync(id);
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/ponctualEventsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/ponctualEventsController.cs
@@ -14,6 +14,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class ponctualEventsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/productsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/productsController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers
 {
+    [Authorize]
     public class productsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/regularEventsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/regularEventsController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class regularEventsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/roomContentsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/roomContentsController.cs
@@ -13,6 +13,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class roomContentsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
@@ -57,6 +58,7 @@ public async Task<IHttpActionResult> GetroomContent(int id)
         [HttpPut]
         [Route("api/roomContents")]
         [ResponseType(typeof(void))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> PutroomContent(int roomId,int accessoryId, roomContent roomContent)
         {
             if (!ModelState.IsValid)
@@ -98,6 +100,7 @@ public async Task<IHttpActionResult> PutroomContent(int roomId,int accessoryId,
         /// <returns></returns>
         // POST: api/roomContents
         [ResponseType(typeof(roomContent))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> PostroomContent(roomContent roomContent)
         {
             if (!ModelState.IsValid)
@@ -135,6 +138,7 @@ public async Task<IHttpActionResult> PostroomContent(roomContent roomContent)
         /// <returns></returns>
         // DELETE: api/roomContents?roomId=2&accessoryId=1
         [ResponseType(typeof(roomContent))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> DeleteroomContent(int roomId, int accessoryId)
         {
             roomContent roomContent = await db.roomContent.Where(rc => rc.roomId == roomId & rc.accessoryId == accessoryId).FirstAsync();
diff --git a/Zenergy/Zenergy/Controllers/ApiControllers/roomsController.cs b/Zenergy/Zenergy/Controllers/ApiControllers/roomsController.cs
@@ -15,6 +15,7 @@
 
 namespace Zenergy.Controllers.ApiControllers
 {
+    [Authorize]
     public class roomsController : ApiController
     {
         private ZenergyContext db = new ZenergyContext();
@@ -58,6 +59,7 @@ public async Task<IHttpActionResult> Getroom(int id)
         /// <returns></returns>
         // PUT: api/rooms/5
         [ResponseType(typeof(void))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> Putroom(int id, room room)
         {
             if (!ModelState.IsValid)
@@ -99,6 +101,7 @@ public async Task<IHttpActionResult> Putroom(int id, room room)
         /// <returns></returns>
         // POST: api/rooms
         [ResponseType(typeof(room))]
+        [Authorize(Roles = "Admin")]
         public async Task<IHttpActionResult> Postroom(room room)
         {
             if (!ModelState.IsValid)
@@ -119,6 +122,7 @@ public async Task<IHttpActionResult> Postroom(room room)
         /// <param name="id"></param>
         /// <returns></returns>
         // DELETE: api/rooms/5
+        [Authorize(Roles = "Admin")]
         [ResponseType(typeof(room))]
         public async Task<IHttpActionResult> Deleteroom(int id)
         {

Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,7 @@`
`15`	`15`
`16`	`16`	`namespace Zenergy.Controllers.ApiControllers`
`17`	`17`	`{`
	`18`	`+ [Authorize]`
`18`	`19`	`public class accessoriesController : ApiController`
`19`	`20`	`{`
`20`	`21`	`private ZenergyContext db = new ZenergyContext();`
Original file line number	Diff line number	Diff line change
`@@ -61,6 +61,7 @@ public async Task<IHttpActionResult> findActivitiesByManagerId(int managerId)`
`61`	`61`
`62`	`62`	`// PUT: api/activities/5`
`63`	`63`	`[ResponseType(typeof(void))]`
	`64`	`+ [Authorize(Roles = "Manager")]`
`64`	`65`	`public IHttpActionResult Putactivity(int id, activity activity)`
`65`	`66`	`{`
`66`	`67`	`if (!ModelState.IsValid)`
`@@ -96,6 +97,7 @@ public IHttpActionResult Putactivity(int id, activity activity)`
`96`	`97`
`97`	`98`	`// POST: api/activities`
`98`	`99`	`[ResponseType(typeof(activity))]`
	`100`	`+ [Authorize(Roles = "Manager")]`
`99`	`101`	`public IHttpActionResult Postactivity(activity activity)`
`100`	`102`	`{`
`101`	`103`	`if (!ModelState.IsValid)`
`@@ -111,6 +113,7 @@ public IHttpActionResult Postactivity(activity activity)`
`111`	`113`
`112`	`114`	`// DELETE: api/activities/5`
`113`	`115`	`[ResponseType(typeof(activity))]`
	`116`	`+ [Authorize(Roles = "Manager")]`
`114`	`117`	`public IHttpActionResult Deleteactivity(int id)`
`115`	`118`	`{`
`116`	`119`	`activity activity = db.activity.Find(id);`
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@`
`13`	`13`
`14`	`14`	`namespace Zenergy.Controllers.ApiControllers`
`15`	`15`	`{`
	`16`	`+ [Authorize]`
`16`	`17`	`public class adminsController : ApiController`
`17`	`18`	`{`
`18`	`19`	`private ZenergyContext db = new ZenergyContext();`
`@@ -32,6 +33,7 @@ public async Task<IHttpActionResult> Getadmin(int id)`
`32`	`33`
`33`	`34`	`// POST: api/admins`
`34`	`35`	`[ResponseType(typeof(admin))]`
	`36`	`+ [Authorize(Roles = "Admin")]`
`35`	`37`	`public async Task<IHttpActionResult> Postadmin(admin admin)`
`36`	`38`	`{`
`37`	`39`	`if (!ModelState.IsValid)`
`@@ -62,6 +64,7 @@ public async Task<IHttpActionResult> Postadmin(admin admin)`
`62`	`64`
`63`	`65`	`// DELETE: api/admins/5`
`64`	`66`	`[ResponseType(typeof(admin))]`
	`67`	`+ [Authorize(Roles = "Admin")]`
`65`	`68`	`public async Task<IHttpActionResult> Deleteadmin(int id)`
`66`	`69`	`{`
`67`	`70`	`admin admin = await db.admin.FindAsync(id);`
Original file line number	Diff line number	Diff line change
`@@ -12,6 +12,7 @@`
`12`	`12`
`13`	`13`	`namespace Zenergy.Controllers.ApiControllers`
`14`	`14`	`{`
	`15`	`+ [Authorize]`
`15`	`16`	`public class categoriesController : ApiController`
`16`	`17`	`{`
`17`	`18`	`private ZenergyContext db = new ZenergyContext();`
`@@ -36,6 +37,7 @@ public IHttpActionResult Getcategory(int id)`
`36`	`37`	`}`
`37`	`38`
`38`	`39`	`// PUT: api/categories/5`
	`40`	`+ [Authorize(Roles = "Admin")]`
`39`	`41`	`[ResponseType(typeof(void))]`
`40`	`42`	`public IHttpActionResult Putcategory(int id, category category)`
`41`	`43`	`{`
`@@ -72,6 +74,7 @@ public IHttpActionResult Putcategory(int id, category category)`
`72`	`74`
`73`	`75`	`// POST: api/categories`
`74`	`76`	`[ResponseType(typeof(category))]`
	`77`	`+ [Authorize(Roles = "Admin")]`
`75`	`78`	`public IHttpActionResult Postcategory(category category)`
`76`	`79`	`{`
`77`	`80`	`if (!ModelState.IsValid)`
`@@ -87,6 +90,7 @@ public IHttpActionResult Postcategory(category category)`
`87`	`90`
`88`	`91`	`// DELETE: api/categories/5`
`89`	`92`	`[ResponseType(typeof(category))]`
	`93`	`+ [Authorize(Roles = "Admin")]`
`90`	`94`	`public IHttpActionResult Deletecategory(int id)`
`91`	`95`	`{`
`92`	`96`	`category category = db.category.Find(id);`
Original file line number	Diff line number	Diff line change
`@@ -14,7 +14,8 @@`
`14`	`14`
`15`	`15`	`namespace Zenergy.Controllers.ApiControllers`
`16`	`16`	`{`
`17`		`- // [RoutePrefix("api/events")]`
	`17`	`+ // [RoutePrefix("api/events")]`
	`18`	`+ [Authorize]`
`18`	`19`	`public class eventRegistrationsController : ApiController`
`19`	`20`	`{`
`20`	`21`	`private ZenergyContext db = new ZenergyContext();`
Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,7 @@`
`14`	`14`
`15`	`15`	`namespace Zenergy.Controllers.ApiControllers`
`16`	`16`	`{`
	`17`	`+ [Authorize]`
`17`	`18`	`public class ponctualEventsController : ApiController`
`18`	`19`	`{`
`19`	`20`	`private ZenergyContext db = new ZenergyContext();`