diff --git a/Authorization/Authorization.API/Controllers/TokenController.cs b/Authorization/Authorization.API/Controllers/TokenController.cs
new file mode 100644
index 0000000..e6e247b
--- /dev/null
+++ b/Authorization/Authorization.API/Controllers/TokenController.cs
@@ -0,0 +1,54 @@
+using System.IdentityModel.Tokens.Jwt;
+using System.Security.Claims;
+using System.Text;
+using Authorization.DTO.Token;
+using Microsoft.AspNetCore.Identity;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.IdentityModel.Tokens;
+
+namespace Authorization.API.Controllers;
+
+[ApiController]
+[Route("/[controller]")]
+public class TokenController : ControllerBase
+{
+    private UserManager<IdentityUser> _userManager;
+
+    public TokenController(UserManager<IdentityUser> userManager)
+    {
+        _userManager = userManager;
+    }
+
+    [HttpPost]
+    public async Task<ActionResult> Post(TokenPostReq req)
+    {
+        var user = await _userManager.FindByNameAsync(req.Username);
+        if (user == null || !(await _userManager.CheckPasswordAsync(user, req.Password)))
+            return BadRequest("User or password is incorrect.");
+
+        var claims = await _userManager.GetClaimsAsync(user);
+        var roles = await _userManager.GetRolesAsync(user);
+
+        var key = Encoding.ASCII.GetBytes(
+            "QWERTYUIOPASDFGHJKLZXCVBNMqwertyuiopasdfghjklzxcvbnm,1234567890AOkopvdnsioHGYUASGVBI");
+        var tokenDescriptor = new SecurityTokenDescriptor
+        {
+            Subject = new ClaimsIdentity(new Claim[]
+            {
+                new Claim(ClaimTypes.Email, user.Email),
+            }),
+            SigningCredentials =
+                new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature),
+            Audience = "eCommerce",
+            Issuer = "Issuer"
+        };
+
+        var tokenHandler = new JwtSecurityTokenHandler();
+        var token = tokenHandler.CreateToken(tokenDescriptor);
+
+        return Ok(new
+        {
+            token = tokenHandler.WriteToken(token)
+        });
+    }
+}
\ No newline at end of file
diff --git a/Authorization/Authorization.Core/DTO/Token/TokenPostReq.cs b/Authorization/Authorization.Core/DTO/Token/TokenPostReq.cs
new file mode 100644
index 0000000..bb8ec68
--- /dev/null
+++ b/Authorization/Authorization.Core/DTO/Token/TokenPostReq.cs
@@ -0,0 +1,7 @@
+namespace Authorization.DTO.Token;
+
+public class TokenPostReq
+{
+    public string Username { get; set; }
+    public string Password { get; set; }
+}
\ No newline at end of file