Add POST endpoint for /login

2025-03-26 16:23:37 +00:00 · 2025-03-26 16:23:37 +00:00 · 83140043a1
commit 83140043a1
parent c4562386a6
1 changed files with 8 additions and 9 deletions
--- a/endpoints/login.post.py
+++ b/endpoints/login.post.py
@ -16,22 +16,21 @@ async def login(
    db: Session = Depends(get_db)
 ):
    user = db.query(User).filter(User.email == login_data.email).first()
-    if not user:
+    if not user or not verify_password(login_data.password, user.hashed_password):
        raise HTTPException(
            status_code=status.HTTP_401_UNAUTHORIZED,
-            detail="Incorrect email or password"
-        )
-    
-    if not verify_password(login_data.password, user.hashed_password):
-        raise HTTPException(
-            status_code=status.HTTP_401_UNAUTHORIZED,
-            detail="Incorrect email or password"
+            detail="Incorrect email or password",
+            headers={"WWW-Authenticate": "Bearer"},
        )
    
    access_token = create_access_token(data={"sub": user.email})
    return {
        "access_token": access_token,
        "token_type": "bearer",
-        "user": UserSchema.from_orm(user)
+        "user": {
+            "id": user.id,
+            "email": user.email,
+            "role": user.role
+        }
    }
 ```