from fastapi import APIRouter, Depends, HTTPException, status from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials from sqlalchemy.orm import Session from app.db.session import get_db from app.models.user import User from app.schemas.user import UserCreate, UserLogin, User as UserSchema, Token from app.auth.password import verify_password, get_password_hash from app.auth.jwt import create_access_token, verify_token router = APIRouter() security = HTTPBearer() @router.post("/register", response_model=UserSchema) def register(user: UserCreate, db: Session = Depends(get_db)): db_user = db.query(User).filter(User.email == user.email).first() if db_user: raise HTTPException( status_code=status.HTTP_400_BAD_REQUEST, detail="Email already registered" ) hashed_password = get_password_hash(user.password) db_user = User( email=user.email, hashed_password=hashed_password ) db.add(db_user) db.commit() db.refresh(db_user) return db_user @router.post("/login", response_model=Token) def login(user: UserLogin, db: Session = Depends(get_db)): db_user = db.query(User).filter(User.email == user.email).first() if not db_user or not verify_password(user.password, db_user.hashed_password): raise HTTPException( status_code=status.HTTP_401_UNAUTHORIZED, detail="Incorrect email or password", headers={"WWW-Authenticate": "Bearer"}, ) access_token = create_access_token(data={"sub": db_user.email}) return {"access_token": access_token, "token_type": "bearer"} @router.get("/me", response_model=UserSchema) def get_current_user(credentials: HTTPAuthorizationCredentials = Depends(security), db: Session = Depends(get_db)): email = verify_token(credentials.credentials) db_user = db.query(User).filter(User.email == email).first() if db_user is None: raise HTTPException( status_code=status.HTTP_404_NOT_FOUND, detail="User not found" ) return db_user