def issue_token(): data = request.get_json() User.validate_user_login(data) user = User.find_or_404(email=data['email']) is_valid = user.check_password(data['password']) # Wrong if not is_valid: message = {"Error": "Invalid login credentials."} return make_response(jsonify(message), status.HTTP_401_UNAUTHORIZED) token = Token.find_by_user_id(user.id) if token: token.delete() token = Token(user.id) token.save() return token.generate_jwt_token()