2023-07-09 13:15:39 -07:00
|
|
|
from fastapi import APIRouter, Depends, HTTPException, status
|
|
|
|
from fastapi.security import OAuth2PasswordRequestForm
|
|
|
|
|
|
|
|
from api.core.users import Token
|
2023-07-09 16:42:44 -07:00
|
|
|
from api.auth.db_utils import authenticate_user
|
|
|
|
from api.auth.auth_utils import create_access_token
|
2023-07-09 13:15:39 -07:00
|
|
|
|
2023-07-09 16:42:44 -07:00
|
|
|
router = APIRouter(prefix="/token", tags=["token"])
|
2023-07-09 13:15:39 -07:00
|
|
|
|
|
|
|
|
|
|
|
@router.post("/", response_model=Token)
|
2023-07-10 20:07:19 -07:00
|
|
|
async def login_for_access_token(
|
|
|
|
form_data: OAuth2PasswordRequestForm = Depends(),
|
|
|
|
) -> Token:
|
|
|
|
"""
|
|
|
|
Authenticates a user and provides an access token.
|
|
|
|
:param form_data: OAuth2PasswordRequestForm object containing the user's credentials.
|
|
|
|
:raises HTTPException: If the user cannot be authenticated.
|
|
|
|
:return: A Token object containing the access token and the token type.
|
|
|
|
"""
|
2023-07-09 13:15:39 -07:00
|
|
|
user = authenticate_user(form_data.username, form_data.password)
|
2023-07-09 16:42:44 -07:00
|
|
|
if not user:
|
2023-07-09 13:15:39 -07:00
|
|
|
raise HTTPException(
|
|
|
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
|
|
|
detail="Incorrect username or password",
|
|
|
|
headers={"WWW-Authenticate": "Bearer"},
|
|
|
|
)
|
|
|
|
|
|
|
|
access_token = create_access_token(data={"sub": user.username})
|
2023-07-10 20:07:19 -07:00
|
|
|
return Token(access_token=access_token, token_type="bearer")
|