def user_login():
# Get the posted body as a dictionary
body = request.get_json()
if body is None:
return jsonify({'message': 'Invalid request.'}), 400 # Bad request
try:
username = body['username']
except KeyError:
return jsonify({'message': 'The username parameter is missing.'}), 400 # Bad request
try:
password = body['password']
except KeyError:
return jsonify({'message': 'The password parameter is missing.'}), 400 # Bad request
try:
u = UserController.login(username, password)
except UserNotFoundException:
return jsonify({'message': 'The username or password is incorrect.'}), 401 # Unauthorized
session['user_id'] = u.user.id
return jsonify({'user': {'firstName': u.user.first_name, 'lastName': u.user.last_name}})
