public IActionResult Authenticate([FromBody] LoginParams data) { string token = ""; var user = staffService.Authenticate(data.Username, data.Password, out token); if (user == null) { return(BadRequest(new { message = "Username or password is incorrect" })); } var response = new LoginParams { Username = user.Staffuserid, Token = token, Id = user.Id }; return(Ok(response)); }