from datetime import timedelta from typing import Any from fastapi import APIRouter, Depends, HTTPException, status from fastapi.security import OAuth2PasswordRequestForm from sqlalchemy.orm import Session from app import crud, models, schemas from app.api.deps import get_current_active_user, get_db from app.core.config import settings from app.core.security import create_access_token router = APIRouter() @router.post("/token", response_model=schemas.Token) def login_access_token( db: Session = Depends(get_db), form_data: OAuth2PasswordRequestForm = Depends() ) -> Any: """ OAuth2 compatible token login, get an access token for future requests """ user = crud.user.authenticate( db, email=form_data.username, password=form_data.password ) if not user: raise HTTPException( status_code=status.HTTP_401_UNAUTHORIZED, detail="Incorrect email or password", ) elif not crud.user.is_active(user): raise HTTPException( status_code=status.HTTP_400_BAD_REQUEST, detail="Inactive user" ) access_token_expires = timedelta(minutes=settings.ACCESS_TOKEN_EXPIRE_MINUTES) return { "access_token": create_access_token( user.id, expires_delta=access_token_expires ), "token_type": "bearer", } @router.post("/register", response_model=schemas.User, status_code=status.HTTP_201_CREATED) def register_user( *, db: Session = Depends(get_db), user_in: schemas.UserCreate, ) -> Any: """ Register a new user. """ user = crud.user.get_by_email(db, email=user_in.email) if user: raise HTTPException( status_code=status.HTTP_400_BAD_REQUEST, detail="A user with this email already exists in the system.", ) user = crud.user.create(db, obj_in=user_in) return user @router.get("/me", response_model=schemas.User) def read_users_me( current_user: models.User = Depends(get_current_active_user), ) -> Any: """ Get current user. """ return current_user