public override void Validate(string username, string password) { if (!AuthWorker.IsValidCredentials(username, password)) { throw new AuthenticationException($"Invalid login details provided. Username [{username}]"); } }
public override void OnAuthorization(System.Web.Http.Controllers.HttpActionContext actionContext) { if (actionContext.Request.Headers.Authorization == null) { actionContext.Response = actionContext.Request.CreateResponse(HttpStatusCode.Unauthorized); } else { var authenticationString = actionContext.Request.Headers.Authorization.Parameter; var originalString = Encoding.UTF8.GetString(Convert.FromBase64String(authenticationString)); var username = originalString.Split(':')[0]; var password = originalString.Split(':')[1]; if (!AuthWorker.IsValidCredentials(username, password)) { actionContext.Response = actionContext.Request.CreateResponse(HttpStatusCode.Unauthorized); } } base.OnAuthorization(actionContext); }