public static Session SignInUser(string email, string password) { var user = UsersDataAccess.FindUserByEmailAndPassword(email, password); if (user == null) { throw new WrongEmailOrPasswordException(); } return(CreateSession(user.Email, user.Handle, user.DisplayName, user.Bio)); }