public HttpResponseMessage Validate(string token, string username)
{
bool exists = new UserReposotiry().GetUser(username) != null;
if (!exists)
{
return(Request.CreateResponse(HttpStatusCode.NotFound, "The user was not found."));
}
string tokenUsername = TokenManager.ValidateToken(token);
if (username.Equals(tokenUsername))
{
return(Request.CreateResponse(HttpStatusCode.OK));
}
return(Request.CreateResponse(HttpStatusCode.BadRequest));
}
public HttpResponseMessage Login(User user)
{
User u = new UserReposotiry().GetUser(user.Username);
if (u == null)
{
return(Request.CreateResponse(HttpStatusCode.NotFound, "The user was not found."));
}
bool credentials = u.Password.Equals(user.Password);
if (!credentials)
{
return(Request.CreateResponse(HttpStatusCode.Forbidden,
"The username/password combination was wrong."));
}
return(Request.CreateResponse(HttpStatusCode.OK, TokenManager.GenerateToken(user.Username)));
}