From 97e6734fdeeb7c3c17058f1a1689c2ad40bfc388 Mon Sep 17 00:00:00 2001
From: Backend IM Bot <bot@backend.im>
Date: Sun, 30 Mar 2025 12:23:06 +0000
Subject: [PATCH] Update code in endpoints/login.post.py

---
 endpoints/login.post.py | 42 +++++++++++++++++------------------------
 1 file changed, 17 insertions(+), 25 deletions(-)

diff --git a/endpoints/login.post.py b/endpoints/login.post.py
index a8ab4aa..43bcab3 100644
--- a/endpoints/login.post.py
+++ b/endpoints/login.post.py
@@ -1,37 +1,29 @@
-from fastapi import APIRouter, Depends, HTTPException
-from pydantic import BaseModel
-from datetime import timedelta
-from core.database import get_db
+from fastapi import APIRouter, Depends, HTTPException, status
 from sqlalchemy.orm import Session
-from core.auth import verify_password, create_access_token
+from core.database import get_db
 from models.user import User
+from schemas.user import UserLogin, UserResponse
+from helpers.user_helpers import authenticate_user
+from core.security import create_access_token
 
 router = APIRouter()
 
-class UserAuth(BaseModel):
-    username: str
-    password: str
-
-@router.post("/login")
+@router.post("/login", response_model=UserResponse)
 async def login(
-    user_data: UserAuth,
+    user_credentials: UserLogin,
     db: Session = Depends(get_db)
 ):
-    """User authentication endpoint"""
-    user = db.query(User).filter(User.username == user_data.username).first()
-    
-    if not user or not verify_password(user_data.password, user.hashed_password):
-        raise HTTPException(status_code=400, detail="Invalid credentials")
-    
-    # Generate token with expiration
-    access_token = create_access_token(
-        data={"sub": user.id},
-        expires_delta=timedelta(hours=1)
-    )
+    user = authenticate_user(db, user_credentials.email, user_credentials.password)
+    if not user:
+        raise HTTPException(
+            status_code=status.HTTP_401_UNAUTHORIZED,
+            detail="Incorrect email or password",
+            headers={"WWW-Authenticate": "Bearer"},
+        )
     
+    access_token = create_access_token(data={"sub": user.email})
     return {
         "access_token": access_token,
         "token_type": "bearer",
-        "user_id": user.id,
-        "username": user.username
-    }
+        "user": user
+    }
\ No newline at end of file