update

server/app/controller/user/login_controller.py

@@ -0,0 +1,90 @@
+from fastapi import APIRouter, Depends, HTTPException
+from fastapi_babel import _
+from sqlmodel import Session
+from app.component import code
+from app.component.auth import Auth
+from app.component.database import session
+from app.component.encrypt import password_verify
+from app.component.stack_auth import StackAuth
+from app.exception.exception import UserException
+from app.model.user.user import LoginByPasswordIn, LoginResponse, Status, User, RegisterIn
+from loguru import logger
+from app.component.environment import env
+
+
+router = APIRouter(tags=["Login/Registration"])
+
+
+@router.post("/login", name="login by email or password")
+async def by_password(data: LoginByPasswordIn, session: Session = Depends(session)) -> LoginResponse:
+    """
+    User login with email and password
+    """
+    user = User.by(User.email == data.email, s=session).one_or_none()
+    if not user or not password_verify(data.password, user.password):
+        raise UserException(code.password, _("Account or password error"))
+    return LoginResponse(token=Auth.create_access_token(user.id), email=user.email)
+
+
+@router.post("/login-by_stack", name="login by stack")
+async def by_stack_auth(
+    token: str,
+    type: str = "signup",
+    invite_code: str | None = None,
+    session: Session = Depends(session),
+):
+    try:
+        stack_id = await StackAuth.user_id(token)
+        info = await StackAuth.user_info(token)
+    except Exception as e:
+        logger.error(e)
+        raise HTTPException(500, detail=_(f"{e}"))
+    user = User.by(User.stack_id == stack_id, s=session).one_or_none()
+
+    if not user:
+        # Only signup can create user
+        if type != "signup":
+            raise UserException(code.error, _("User not found"))
+        with session as s:
+            try:
+                user = User(
+                    username=info["username"] if "username" in info else None,
+                    nickname=info["display_name"],
+                    email=info["primary_email"],
+                    avatar=info["profile_image_url"],
+                    stack_id=stack_id,
+                )
+                s.add(user)
+                s.commit()
+                session.refresh(user)
+                return LoginResponse(token=Auth.create_access_token(user.id), email=user.email)
+            except Exception as e:
+                s.rollback()
+                logger.error(f"Failed to register: {e}")
+                raise UserException(code.error, _("Failed to register"))
+    else:
+        if user.status == Status.Block:
+            raise UserException(code.error, _("Your account has been blocked."))
+        return LoginResponse(token=Auth.create_access_token(user.id), email=user.email)
+
+
+@router.post("/register", name="register by email/password")
+async def register(data: RegisterIn, session: Session = Depends(session)):
+    # Check if email is already registered
+    if User.by(User.email == data.email, s=session).one_or_none():
+        raise UserException(code.error, _("Email already registered"))
+
+    with session as s:
+        try:
+            user = User(
+                email=data.email,
+                password=data.password,
+            )
+            s.add(user)
+            s.commit()
+            s.refresh(user)
+        except Exception as e:
+            s.rollback()
+            logger.error(f"Failed to register: {e}")
+            raise UserException(code.error, _("Failed to register"))
+    return {"status": "success"}