public HttpResponseMessage Authenticate(HttpRequestMessage request, [FromBody] string login, [FromBody] string password) { IGenerateToken credentials = new GenerateToken(); User user = credentials.GetCredentials(login, password); if (user != null) { string token = credentials.CreateToken(user); return(request.CreateResponse(HttpStatusCode.OK, token)); } else { return(request.CreateErrorResponse(HttpStatusCode.Unauthorized, "Não autorizado")); } }