from datetime import timedelta from typing import Any from fastapi import APIRouter, Depends, HTTPException, status from fastapi.security import OAuth2PasswordRequestForm from sqlalchemy.orm import Session from app.core import security from app.core.config import settings from app.core.deps import get_db from app.models.user import User from app.schemas.token import Token from app.schemas.user import UserCreate, User as UserSchema router = APIRouter() @router.post("/login", response_model=Token) def login_access_token( db: Session = Depends(get_db), form_data: OAuth2PasswordRequestForm = Depends() ) -> Any: user = db.query(User).filter(User.email == form_data.username).first() if not user or not security.verify_password(form_data.password, user.hashed_password): raise HTTPException( status_code=status.HTTP_401_UNAUTHORIZED, detail="Incorrect email or password", headers={"WWW-Authenticate": "Bearer"}, ) elif not user.is_active: raise HTTPException(status_code=400, detail="Inactive user") access_token_expires = timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES) return { "access_token": security.create_access_token( user.id, expires_delta=access_token_expires ), "token_type": "bearer", } @router.post("/register", response_model=UserSchema) def register( *, db: Session = Depends(get_db), user_in: UserCreate, ) -> Any: user = db.query(User).filter(User.email == user_in.email).first() if user: raise HTTPException( status_code=400, detail="The user with this email already exists in the system.", ) user = db.query(User).filter(User.username == user_in.username).first() if user: raise HTTPException( status_code=400, detail="The user with this username already exists in the system.", ) user = User( email=user_in.email, username=user_in.username, hashed_password=security.get_password_hash(user_in.password), is_active=True, ) db.add(user) db.commit() db.refresh(user) return user