def user_login(): # Get the posted body as a dictionary body = request.get_json() if body is None: return jsonify({'message': 'Invalid request.'}), 400 # Bad request try: username = body['username'] except KeyError: return jsonify({'message': 'The username parameter is missing.'}), 400 # Bad request try: password = body['password'] except KeyError: return jsonify({'message': 'The password parameter is missing.'}), 400 # Bad request try: u = UserController.login(username, password) except UserNotFoundException: return jsonify({'message': 'The username or password is incorrect.'}), 401 # Unauthorized session['user_id'] = u.user.id return jsonify({'user': {'firstName': u.user.first_name, 'lastName': u.user.last_name}})