uv migration

author: l3wdfut4pwr <l3wdfut4pwr@gmail.com> 2026-04-21 13:32:24 +0300
committer: l3wdfut4pwr <l3wdfut4pwr@gmail.com> 2026-04-21 13:32:24 +0300
commit: f1842be3bfabe7850d33662da2da377676144c48 (patch)
tree: 95e1f5d6a72a2fc99847f0331907139b6b750dcb /app/routes/auth.py
parent: 70b0706973d9d856ca9f136df23a6fbec0901aea (diff)
1 files changed, 8 insertions, 2 deletions
diff --git a/app/routes/auth.py b/app/routes/auth.py
index a2de6db..6e0d410 100644
--- a/app/routes/auth.py
+++ b/app/routes/auth.py
@@ -19,9 +19,15 @@ async def login(
 ):
     user = await User.get_user_by_email(form_data.username, session=session)
     if not user:
-        user = await User.get_user_by_username(form_data.username, session=session)
+        user = await User.get_user_by_username(
+            form_data.username, session=session
+        )
 
-    if not user or not verify_password(form_data.password, user.password):
+    if not user or not user.password:
+        logger.warning("Login failed | username/email={}", form_data.username)
+        raise HTTPException(status_code=401, detail="Invalid credentials")
+
+    if not verify_password(form_data.password, user.password):
         logger.warning("Login failed | username/email={}", form_data.username)
         raise HTTPException(status_code=401, detail="Invalid credentials")
author	l3wdfut4pwr <l3wdfut4pwr@gmail.com>	2026-04-21 13:32:24 +0300
committer	l3wdfut4pwr <l3wdfut4pwr@gmail.com>	2026-04-21 13:32:24 +0300
commit	f1842be3bfabe7850d33662da2da377676144c48 (patch)
tree	95e1f5d6a72a2fc99847f0331907139b6b750dcb /app/routes/auth.py
parent	70b0706973d9d856ca9f136df23a6fbec0901aea (diff)