public UserDto Authenticate(UserDto user) { bool isAuthenticated = CheckAuthentication(_appSettings.Domain, user.Username, user.Password); if (!isAuthenticated) { return(null); } /// TODO: Get user info from Repository pattern var _user = new UserDto() { Id = "00112233", FirsName = "Barış", LastName = "Usanmaz", Username = "******", Token = "secret token" }; //var user = _users.SingleOrDefault(x => x.Username == username && x.Password == password); // return null if user not found if (_user == null) { return(null); } _user.Token = _jsonService.GetToken( _appSettings.Secret, new Claim[] { new Claim(ClaimTypes.NameIdentifier, _user.Id), new Claim(ClaimTypes.Name, _user.Username) }); // remove password before returning _user.Password = null; return(_user); }