protected virtual long?ParseAuthorizationHeader(HttpActionContext actionContext) { string authHeader = null; var auth = actionContext.Request.Headers.Authorization; if (auth != null && auth.Scheme == "Token") { authHeader = auth.Parameter; } if (string.IsNullOrEmpty(authHeader)) { return(null); } var blUser = new BlUser(); var userId = blUser.Authorize(authHeader, actionContext.Request.RequestUri.ToString()); return(userId); }