def post(self): body = request.get_json() user = User.objects.get(email=body.get('email')) authorized = User.check_password(body.get('password')) if not authorized: return {'error': 'Email or password invalid'}, 401 expires = datetime.timedelta(days=7) access_token = create_access_token(identity=str(user.id), expires_delta=expires) return {'token': access_token}, 200