35 lines
1.2 KiB
Python
35 lines
1.2 KiB
Python
|
from datetime import timedelta
|
||
|
from typing import Annotated
|
||
|
|
||
|
from fastapi import APIRouter, Depends, HTTPException
|
||
|
from fastapi.security import OAuth2PasswordRequestForm
|
||
|
from starlette import status
|
||
|
|
||
|
from authentication import authenticate_user, create_access_token, get_current_active_user
|
||
|
from config import ACCESS_TOKEN_EXPIRE_MINUTES, fake_users_db
|
||
|
from models import Token, User
|
||
|
|
||
|
router = APIRouter()
|
||
|
|
||
|
@router.post("/token/")
|
||
|
async def login_for_access_token(
|
||
|
form_data: Annotated[OAuth2PasswordRequestForm, Depends()],
|
||
|
) -> Token:
|
||
|
user = authenticate_user(fake_users_db, form_data.username, form_data.password)
|
||
|
if not user:
|
||
|
raise HTTPException(
|
||
|
status_code=status.HTTP_401_UNAUTHORIZED,
|
||
|
detail="Incorrect username or password",
|
||
|
headers={"WWW-Authenticate": "Bearer"},
|
||
|
)
|
||
|
access_token_expires = timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES)
|
||
|
access_token = create_access_token(
|
||
|
data={"sub": user.username}, expires_delta=access_token_expires
|
||
|
)
|
||
|
return Token(access_token=access_token, token_type="bearer")
|
||
|
|
||
|
@router.get("/users/me")
|
||
|
async def read_users_me(
|
||
|
current_user: Annotated[User, Depends(get_current_active_user)],
|
||
|
):
|
||
|
return current_user
|