phillee007/gist:6197398

## gistfile1.cs
    public static class WebApiConfig
    {
        public static void Register(HttpConfiguration config)
        {
            config.Routes.MapHttpRoute(
                name: "DefaultApi",
                routeTemplate: "api/{controller}/{id}",
                defaults: new { id = RouteParameter.Optional }
            );

            var authConfig = new AuthenticationConfiguration
            {
                RequireSsl = false,
                EnableSessionToken = true,
                InheritHostClientIdentity = true,
                ClaimsAuthenticationManager = FederatedAuthentication.FederationConfiguration.IdentityConfiguration.ClaimsAuthenticationManager
            };

            // setup authentication against membership
            authConfig.AddBasicAuthentication(Verify);
            config.MessageHandlers.Add(new AuthenticationHandler(authConfig));
        }

        public static bool Verify(string user, string pass)
        {
            var accountService = ServiceLocator.Current
                .GetInstance<UserAccountService>();

            var authSvc = ServiceLocator.Current
                .GetInstance<AuthenticationService>();

            BrockAllen.MembershipReboot.UserAccount account;
            var isAuthenticated = accountService.AuthenticateWithUsernameOrEmail(user, pass, out account);
            if(isAuthenticated){
                authSvc.SignIn(account);
            }
            return isAuthenticated;
        }
    }


}
	public static class WebApiConfig
	{
	public static void Register(HttpConfiguration config)
	{
	config.Routes.MapHttpRoute(
	name: "DefaultApi",
	routeTemplate: "api/{controller}/{id}",
	defaults: new { id = RouteParameter.Optional }
	);

	var authConfig = new AuthenticationConfiguration
	{
	RequireSsl = false,
	EnableSessionToken = true,
	InheritHostClientIdentity = true,
	ClaimsAuthenticationManager = FederatedAuthentication.FederationConfiguration.IdentityConfiguration.ClaimsAuthenticationManager
	};

	// setup authentication against membership
	authConfig.AddBasicAuthentication(Verify);
	config.MessageHandlers.Add(new AuthenticationHandler(authConfig));
	}

	public static bool Verify(string user, string pass)
	{
	var accountService = ServiceLocator.Current
	.GetInstance<UserAccountService>();

	var authSvc = ServiceLocator.Current
	.GetInstance<AuthenticationService>();

	BrockAllen.MembershipReboot.UserAccount account;
	var isAuthenticated = accountService.AuthenticateWithUsernameOrEmail(user, pass, out account);
	if(isAuthenticated){
	authSvc.SignIn(account);
	}
	return isAuthenticated;
	}
	}




	}