public IHttpActionResult PutRiskLevel(int id, RiskLevel riskLevel)
        {
            if (!ModelState.IsValid)
            {
                return BadRequest(ModelState);
            }

            if (id != riskLevel.RiskLevelId)
            {
                return BadRequest();
            }

            db.Entry(riskLevel).State = EntityState.Modified;

            try
            {
                db.SaveChanges();
            }
            catch (DbUpdateConcurrencyException)
            {
                if (!RiskLevelExists(id))
                {
                    return NotFound();
                }
                else
                {
                    throw;
                }
            }

            return StatusCode(HttpStatusCode.NoContent);
        }
        public IHttpActionResult PostRiskLevel(RiskLevel riskLevel)
        {
            if (!ModelState.IsValid)
            {
                return BadRequest(ModelState);
            }

            db.RiskLevels.Add(riskLevel);
            db.SaveChanges();

            return CreatedAtRoute("DefaultApi", new { id = riskLevel.RiskLevelId }, riskLevel);
        }