internal static FormsAuthenticationTicket ExtractTicketFromHeader(HttpRequestMessage request)
{
var authorizationHeader = request.Headers.Authorization;
if (authorizationHeader != null && authorizationHeader.Scheme.Equals("Membership", StringComparison.OrdinalIgnoreCase))
{
var ticket = FormsAuthentication.Decrypt(authorizationHeader.Parameter);
if (ticket != null && !ticket.Expired)
{
return ticket;
}
}
return null;
}