""" Authentication endpoints """ from datetime import timedelta from typing import Any from fastapi import APIRouter, Depends, HTTPException from fastapi.security import OAuth2PasswordRequestForm from sqlalchemy.orm import Session from app import models, schemas, services from app.core import security from app.core.config import settings from app.core.deps import get_current_user from app.db.session import get_db router = APIRouter() @router.post("/login", response_model=schemas.Token) def login_access_token( db: Session = Depends(get_db), form_data: OAuth2PasswordRequestForm = Depends() ) -> Any: """ OAuth2 compatible token login, get an access token for future requests """ user = services.user.authenticate( db, email_or_username=form_data.username, password=form_data.password ) if not user: raise HTTPException(status_code=400, detail="Incorrect email/username or password") elif not services.user.is_active(user): raise HTTPException(status_code=400, detail="Inactive user") access_token_expires = timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES) return { "access_token": security.create_access_token( user.id, expires_delta=access_token_expires ), "token_type": "bearer", } @router.post("/test-token", response_model=schemas.User) def test_token(current_user: models.User = Depends(get_current_user)) -> Any: """ Test access token """ return current_user @router.post("/register", response_model=schemas.User) def register_user( *, db: Session = Depends(get_db), user_in: schemas.UserCreate, ) -> Any: """ Register a new user """ user = services.user.get_by_email(db, email=user_in.email) if user: raise HTTPException( status_code=400, detail="A user with this email already exists", ) user = services.user.get_by_username(db, username=user_in.username) if user: raise HTTPException( status_code=400, detail="A user with this username already exists", ) user = services.user.create(db, obj_in=user_in) return user