private void login(HttpServletRequest request, HttpServletResponse response) {
loadCredentials(request);
SecurityContext securityContext = Beans.getReference(SecurityContext.class);
try {
securityContext.login();
if (securityContext.isLoggedIn()) {
response.setStatus(SC_OK);
} else {
response.setStatus(SC_FORBIDDEN);