diff options
Diffstat (limited to 'app/routes/auth.py')
| -rw-r--r-- | app/routes/auth.py | 10 |
1 files changed, 8 insertions, 2 deletions
diff --git a/app/routes/auth.py b/app/routes/auth.py index a2de6db..6e0d410 100644 --- a/app/routes/auth.py +++ b/app/routes/auth.py @@ -19,9 +19,15 @@ async def login( ): user = await User.get_user_by_email(form_data.username, session=session) if not user: - user = await User.get_user_by_username(form_data.username, session=session) + user = await User.get_user_by_username( + form_data.username, session=session + ) - if not user or not verify_password(form_data.password, user.password): + if not user or not user.password: + logger.warning("Login failed | username/email={}", form_data.username) + raise HTTPException(status_code=401, detail="Invalid credentials") + + if not verify_password(form_data.password, user.password): logger.warning("Login failed | username/email={}", form_data.username) raise HTTPException(status_code=401, detail="Invalid credentials") |