33 lines
1.1 KiB
Python
33 lines
1.1 KiB
Python
|
|
from fastapi import APIRouter, Depends, HTTPException, status
|
|
from fastapi.security import OAuth2PasswordRequestForm
|
|
from sqlalchemy.orm import Session
|
|
from core.database import get_db
|
|
from core.security import verify_password, create_access_token
|
|
from models.user import User
|
|
from schemas.user import UserSchema, TokenResponse
|
|
|
|
router = APIRouter()
|
|
|
|
@router.post("/login", response_model=TokenResponse, status_code=status.HTTP_200_OK)
|
|
async def login(
|
|
form_data: OAuth2PasswordRequestForm = Depends(),
|
|
db: Session = Depends(get_db)
|
|
):
|
|
user = db.query(User).filter(User.email == form_data.username).first()
|
|
|
|
if not user or not verify_password(form_data.password, user.hashed_password):
|
|
raise HTTPException(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
detail="Incorrect email or password",
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
)
|
|
|
|
access_token = create_access_token(data={"sub": user.email})
|
|
|
|
return {
|
|
"access_token": access_token,
|
|
"token_type": "bearer",
|
|
"user": user
|
|
}
|