public IHttpActionResult ConfirmEmail(Guid confirmationId) { using (var userStore = new UserStore()) { if (!userStore.ConfirmNewEmail(confirmationId)) { return(BadRequest("Either this link expired or the email does not need to be confirmed")); } } return(Ok()); }