public HttpResponseMessage Login(Login login) { var user = _repository.GetAllUsers() .FirstOrDefault(u => u.UserName == login.UserName && u.Password == login.Password); if (user == null) { return(Request.CreateResponse(HttpStatusCode.Unauthorized, "Invalid User", Configuration.Formatters.JsonFormatter)); } else { AuthenticationModule authentication = new AuthenticationModule(); string token = authentication.GenerateTokenForUser(user.UserName, user.Id); return(Request.CreateResponse(HttpStatusCode.OK, token, Configuration.Formatters.JsonFormatter)); } }