Update main.py

main.py

@@ -36,16 +36,31 @@ async def landing(request: Request):
 async def login(request: Request):
     return templates.TemplateResponse("login.html", {"request": request})
 
+
 @app.post("/login", response_class=HTMLResponse)
-async def register_post(
+async def login_post(
     request: Request,
     email: str = Form(...),
     password: str = Form(...),
     db: Session = Depends(get_db)
 ):
-
-    return RedirectResponse("/protected")
-
+    # Validate the email and password
+    if not email or not password:
+        raise HTTPException(status_code=400, detail="Invalid email or password")
+
+    # Check user authentication (You should implement this function)
+    user = authenticate_user(db, email, password)
+
+    if user:
+        # Authentication succeeded
+        # Generate an access token (You should implement this function)
+        access_token = create_access_token(user.email)
+        # Redirect to a protected route with the access token
+        return RedirectResponse("/protected?token=" + access_token)
+    else:
+        # Authentication failed
+        # You can redirect back to the login page with an error message
+        return RedirectResponse("/login?error=Authentication failed")
 
 @app.get("/register", response_class=HTMLResponse)
 async def register_get(request: Request):
@@ -83,7 +98,7 @@ async def verify_email(verification_token: str, request: Request, db: Session =
     return HTTPException(status_code=400, detail="Verification failed")
 
 # User authentication (protected route)
-@app.get("/protected", response_model=str)
+@app.post("/protected", response_model=str)
 async def protected_route(request: Request, token: str = Depends(oauth2_scheme), db: Session = Depends(get_db)):
     # Verify the access token
     user = verify_token(token, my_secret_key, "HS256")