Update main.py

main.py

@@ -34,12 +34,33 @@ oauth.register(
     api_base_url='https://www.googleapis.com/oauth2/v1/',
     client_kwargs={'scope': 'openid email profile'}
 )
-@app.get("/login/oauth")
-async def login_oauth(request: Request):
-    # Redirect to OAuth provider (e.g., Google)
-    redirect_uri = request.url_for('auth_callback')
-    return await oauth.google.authorize_redirect(request, redirect_uri)
+@app.get("/auth/callback")
+async def auth_callback(request: Request, db: Session = Depends(get_db)):
+    # Exchange code for token
+    token = await oauth.google.authorize_access_token(request)
+
+    # Use token to get user info
+    user_info = await oauth.google.parse_id_token(request, token)
+
+    # Retrieve or create a user in your database
+    db_user = db.query(User).filter(User.email == user_info['email']).first()
+    if not db_user:
+        # Create a new user if they don't exist
+        db_user = User(email=user_info['email'], username=user_info.get('name', ''))
+        db.add(db_user)
+        db.commit()
+        db.refresh(db_user)
 
+    # Create an access token for the user
+    access_token = auth_views.create_access_token(
+        data={"sub": db_user.email},
+        expires_delta=timedelta(minutes=auth_views.ACCESS_TOKEN_EXPIRE_MINUTES)
+    )
+
+    # Redirect the user to the protected route
+    response = RedirectResponse(url="/protected")
+    response.set_cookie(key="access_token", value=f"Bearer {access_token}", httponly=True)
+    return response
 @app.get("/auth/callback")
 async def auth_callback(request: Request, db: Session = Depends(get_db)):
     # Exchange code for token