//[EnableCors(origins: "*", headers: "*", methods: "*")] public HttpResponseMessage Login(Credentials model) { var url = ""; model.Password = Cryptography.ToMD5(model.Password); if (model.User == null || model.Password == null) { url = "http://localhost:63724/Home/login"; return(Request.CreateResponse(HttpStatusCode.BadRequest, new { Success = true, RedirectUrl = url })); } if (_appUserService.CheckCredentialsFromWebSerice(model.User, model.Password)) { AppUser u = new AppUser(); u = _appUserService.FindByUserNameOrEmail(model.User); if (u.Role == Role.Admin || u.Role == Role.Member) { url = "http://localhost:63724/Home/Index/" + u.ID; return(Request.CreateResponse(HttpStatusCode.OK, new { Success = true, RedirectUrl = url })); } else { url = "http://localhost:63724/Home/Index"; return(Request.CreateResponse(HttpStatusCode.Unauthorized, new { Success = true, RedirectUrl = url })); } } url = "http://localhost:63724/Home/login"; return(Request.CreateResponse(HttpStatusCode.BadRequest, new { Success = true, RedirectUrl = url })); }