public IHttpActionResult Post(LoginModel loginModel) { LoginResult loginResult = Authenticate.AttemptLogin(Request.GetOwinContext(), loginModel.User, loginModel.Password); if (loginResult.Success) { return(Ok()); } else { return(StatusCode(HttpStatusCode.Forbidden)); } }