public JsonResult UserLogin(User user) { if (user == null) { return(null); } var validUser = _service.GetUser(user); if (validUser == null) { return(null); } var cookie = _security.Authorize(validUser); if (cookie == null) { return(null); } Response.Cookies.Clear(); Response.Cookies.Add(cookie); user.Password = string.Empty; user.RoleId = validUser.RoleId; user.Role = new Role { RoleId = validUser.Role.RoleId, Name = validUser.Role.Name }; return(new JsonResult { Data = user, JsonRequestBehavior = JsonRequestBehavior.AllowGet }); }