public async Task <TokenResponse> CreateAccessTokenAsync(string email, string password) { var user = await _userService.FindByEmailAsync(email); if (user == null || !_passwordHasher.PasswordMatches(password, user.Password)) { return(new TokenResponse(false, "Invalid credentials.", null)); } var token = await _tokenHandler.CreateAccessTokenAsync(user); if (token == null) { return(new TokenResponse(false, "error creating token", null)); } return(new TokenResponse(true, null, token)); }