def post(self):
data = request.get_json(force=True)
user_schema = UserSchema()
result = user_schema.load(data)
if result.errors:
return response.error(result.errors, 400)
for user in User.get_all(): # check if user already exist
if user.email == data['email']:
return response.error('User already exist', 409)
# hash password and create a new user
hashed_password = generate_password_hash(data['password'],
method='sha256')
new_user_obj = User(data['name'], data['email'], hashed_password)
new_user_obj.save()
# format and display user information
user_schema = UserSchema(exclude=['password'])
new_user = user_schema.dump(data)
res, code = response.success('User created', new_user.data, 201)
res.update(
{'token': create_access_token(identity=new_user.data['email'])})
return res, code
def post(self):
data = request.get_json(force=True)
user_schema = UserSchema(only=['email', 'password'])
result = user_schema.load(data)
if result.errors:
return response.error(result.errors, 400)
current_user = None
for user in User.get_all():
if user.email == data['email']:
current_user = user
break
if not current_user:
return response.error('User not found, Login unsuccessful', 403)
if check_password_hash(current_user.password, data['password']):
user_schema = UserSchema(exclude=['password'])
active_user = user_schema.dump(current_user)
res, code = response.success('Login successful', active_user.data,
200)
res.update({
'token':
create_access_token(identity=active_user.data['email'])
})
return res, code
return response.error('Wrong credentials', 401)