Add POST endpoint for /login
This commit is contained in:
Backend IM Bot
parent
9c88c034ac
commit
fd1ba0f5b3
@ -1,37 +1,39 @@
|
|||||||
from fastapi import APIRouter, Depends, HTTPException
|
# Entity: User
|
||||||
from pydantic import BaseModel
|
|
||||||
from datetime import timedelta
|
```python
|
||||||
from core.database import get_db
|
from fastapi import APIRouter, Depends, HTTPException, status
|
||||||
from sqlalchemy.orm import Session
|
from sqlalchemy.orm import Session
|
||||||
from core.auth import verify_password, create_access_token
|
from core.database import get_db
|
||||||
from models.user import User
|
from models.user import User
|
||||||
|
from schemas.user import UserSchema, UserLogin
|
||||||
|
from core.security import verify_password, create_access_token
|
||||||
|
|
||||||
router = APIRouter()
|
router = APIRouter()
|
||||||
|
|
||||||
class UserAuth(BaseModel):
|
@router.post("/login", status_code=200)
|
||||||
username: str
|
|
||||||
password: str
|
|
||||||
|
|
||||||
@router.post("/login")
|
|
||||||
async def login(
|
async def login(
|
||||||
user_data: UserAuth,
|
login_data: UserLogin,
|
||||||
db: Session = Depends(get_db)
|
db: Session = Depends(get_db)
|
||||||
):
|
):
|
||||||
"""User authentication endpoint"""
|
"""Authenticate user and return token"""
|
||||||
user = db.query(User).filter(User.username == user_data.username).first()
|
user = db.query(User).filter(User.email == login_data.email).first()
|
||||||
|
|
||||||
if not user or not verify_password(user_data.password, user.hashed_password):
|
if not user or not verify_password(login_data.password, user.hashed_password):
|
||||||
raise HTTPException(status_code=400, detail="Invalid credentials")
|
raise HTTPException(
|
||||||
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
||||||
# Generate token with expiration
|
detail="Incorrect email or password",
|
||||||
access_token = create_access_token(
|
headers={"WWW-Authenticate": "Bearer"},
|
||||||
data={"sub": user.id},
|
|
||||||
expires_delta=timedelta(hours=1)
|
|
||||||
)
|
)
|
||||||
|
|
||||||
|
access_token = create_access_token(data={"sub": user.email})
|
||||||
|
|
||||||
return {
|
return {
|
||||||
"access_token": access_token,
|
"access_token": access_token,
|
||||||
"token_type": "bearer",
|
"token_type": "bearer",
|
||||||
"user_id": user.id,
|
"user": {
|
||||||
"username": user.username
|
"id": user.id,
|
||||||
|
"email": user.email,
|
||||||
|
"full_name": user.full_name
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
```
|
||||||
Loading…
x
Reference in New Issue
Block a user