Fix massive security bug with display names

Project-Unite/Controllers/AccountController.cs

@@ -179,6 +179,16 @@ The addressed used to send this message is not a no-reply address. In fact, my n
         {
             if (ModelState.IsValid)
             {
+                using(var temp = new ApplicationDbContext())
+                {
+                    if(temp.Users.FirstOrDefault(x=>x.UserName==model.Username) != null)
+                    {
+                        ModelState.AddModelError("Your display name is already taken.");
+                        return View(model);
+                    }
+                }
+
+
                 var user = new ApplicationUser { UserName = model.Email, Email = model.Email, DisplayName = model.Username, Codepoints = 0, JoinedAt = DateTime.Now, MutedAt = DateTime.Now, BannedAt = DateTime.Now, LastLogin = DateTime.Now };
                 var result = await UserManager.CreateAsync(user, model.Password);
                 if (result.Succeeded)

Project-Unite/Views/Shared/_Layout.cshtml

@@ -11,6 +11,12 @@
 <head>
     <meta charset="utf-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
+
+    @if(ViewBag.PageDescription != null)
+    {
+        <meta name="description" content="@ViewBag.PageDescription" />
+    }
+
     <title>@ViewBag.Title &bull; Project: Unite</title>
     @Styles.Render("~/Content/css")
     @Styles.Render("~/Content/bootstrap-theme.css")