protected virtual BasicAuthenticationIdentity FetchAuthHeader(HttpActionContext filterContext) { string Token = null; var authRequest = filterContext.Request.Headers.Authorization; if (authRequest != null && !String.IsNullOrEmpty(authRequest.Scheme) && authRequest.Scheme == "Basic") { Token = authRequest.Parameter; } if (string.IsNullOrEmpty(Token)) { return(null); } var user = AuthenticationBL.IsTokenValid(Token); if (user != null) { var credentials = new BasicAuthenticationIdentity(user.UserName, Token, user.Id); return(credentials); } return(null); }