Login done

2024-12-06 00:52:33 +01:00
parent 0a2d1c94fe
commit 331f33286d
1 changed files with 8 additions and 8 deletions
--- a/app/codes/user.py
+++ b/app/codes/user.py
@@ -13,13 +13,13 @@ def login():
    username = data.get('username')
    password = data.get('password')

-    # Aquí se validan las credenciales (en este caso un ejemplo simple)
-    if username == 'admin' and password == 'password':
-        # Generar token
+    if username and password:
+        user = User.query.filter_by(username=username).first()
+        if user and user.check_password(password):
            token = jwt.encode({
                'username': username,
                'exp': datetime.datetime.now(datetime.timezone.utc) + datetime.timedelta(hours=1)
-        }, current_app.config['SECRET_KEY'], algorithm='HS256')  # Usamos current_app para acceder a la configuración
+            }, current_app.config['SECRET_KEY'], algorithm='HS256')
            return jsonify({'token': token})

    return jsonify({'message': 'Credenciales inválidas'}), 401