19 lines
713 B
Python
19 lines
713 B
Python
"""Authentication routes."""
|
|
import os
|
|
from fastapi import APIRouter, HTTPException, status
|
|
from app.schemas import LoginRequest, TokenResponse
|
|
from app.auth import create_access_token
|
|
|
|
router = APIRouter(prefix="/api/auth", tags=["auth"])
|
|
|
|
ADMIN_USERNAME = os.getenv("ADMIN_USERNAME", "admin")
|
|
ADMIN_PASSWORD = os.getenv("ADMIN_PASSWORD", "admin")
|
|
|
|
|
|
@router.post("/login", response_model=TokenResponse)
|
|
async def login(req: LoginRequest):
|
|
if req.username != ADMIN_USERNAME or req.password != ADMIN_PASSWORD:
|
|
raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED, detail="Invalid credentials")
|
|
token = create_access_token({"sub": req.username})
|
|
return TokenResponse(access_token=token)
|