26 lines
943 B
Python
26 lines
943 B
Python
# Entity: User
|
|
|
|
from fastapi import APIRouter, Depends, HTTPException, status
|
|
from sqlalchemy.orm import Session
|
|
from core.database import get_db
|
|
from core.models.user import User
|
|
from core.schemas.user import UserSchema, UserLogin
|
|
from core.security import verify_password, create_access_token
|
|
|
|
router = APIRouter()
|
|
|
|
@router.post("/login", status_code=200)
|
|
async def login(
|
|
user_credentials: UserLogin,
|
|
db: Session = Depends(get_db)
|
|
):
|
|
user = db.query(User).filter(User.email == user_credentials.email).first()
|
|
if not user or not verify_password(user_credentials.password, user.hashed_password):
|
|
raise HTTPException(
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
detail="Incorrect email or password",
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
)
|
|
|
|
access_token = create_access_token(data={"sub": user.email})
|
|
return {"access_token": access_token, "token_type": "bearer"} |