Add POST endpoint for /login
This commit is contained in:
Backend IM Bot
parent
627064def1
commit
d08b6f90a1
@ -1,37 +1,37 @@
|
|||||||
from fastapi import APIRouter, Depends, HTTPException
|
# Entity: User
|
||||||
from pydantic import BaseModel
|
|
||||||
from datetime import timedelta
|
```python
|
||||||
from core.database import get_db
|
from fastapi import APIRouter, Depends, HTTPException, status
|
||||||
from sqlalchemy.orm import Session
|
from sqlalchemy.orm import Session
|
||||||
from core.auth import verify_password, create_access_token
|
from core.database import get_db
|
||||||
from models.user import User
|
from core.models.user import User
|
||||||
|
from core.schemas.user import UserSchema, UserLogin
|
||||||
|
from core.security import verify_password, create_access_token
|
||||||
|
|
||||||
router = APIRouter()
|
router = APIRouter()
|
||||||
|
|
||||||
class UserAuth(BaseModel):
|
@router.post("/login", status_code=200)
|
||||||
username: str
|
|
||||||
password: str
|
|
||||||
|
|
||||||
@router.post("/login")
|
|
||||||
async def login(
|
async def login(
|
||||||
user_data: UserAuth,
|
login_data: UserLogin,
|
||||||
db: Session = Depends(get_db)
|
db: Session = Depends(get_db)
|
||||||
):
|
):
|
||||||
"""User authentication endpoint"""
|
user = db.query(User).filter(User.email == login_data.email).first()
|
||||||
user = db.query(User).filter(User.username == user_data.username).first()
|
if not user:
|
||||||
|
raise HTTPException(
|
||||||
if not user or not verify_password(user_data.password, user.hashed_password):
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
||||||
raise HTTPException(status_code=400, detail="Invalid credentials")
|
detail="Incorrect email or password"
|
||||||
|
|
||||||
# Generate token with expiration
|
|
||||||
access_token = create_access_token(
|
|
||||||
data={"sub": user.id},
|
|
||||||
expires_delta=timedelta(hours=1)
|
|
||||||
)
|
)
|
||||||
|
|
||||||
|
if not verify_password(login_data.password, user.hashed_password):
|
||||||
|
raise HTTPException(
|
||||||
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
||||||
|
detail="Incorrect email or password"
|
||||||
|
)
|
||||||
|
|
||||||
|
access_token = create_access_token(data={"sub": user.email})
|
||||||
return {
|
return {
|
||||||
"access_token": access_token,
|
"access_token": access_token,
|
||||||
"token_type": "bearer",
|
"token_type": "bearer",
|
||||||
"user_id": user.id,
|
"user": UserSchema.from_orm(user)
|
||||||
"username": user.username
|
|
||||||
}
|
}
|
||||||
|
```
|
||||||
Loading…
x
Reference in New Issue
Block a user