Create auth_controller.py

auth_controller.py

@@ -0,0 +1,45 @@
+from fastapi import APIRouter, HTTPException, Request
+import bcrypt
+from service_config import ServiceConfig
+
+router = APIRouter()
+service_config = ServiceConfig()
+service_config.load()
+
+@router.post("/login")
+async def login(request: Request):
+    data = await request.json()
+    username = data.get("username")
+    password = data.get("password")
+    user = next((u for u in service_config.users if u["username"] == username), None)
+    if not user:
+        raise HTTPException(status_code=401, detail="Invalid username or password")
+
+    hashed = user["password_hash"].encode()
+    if not bcrypt.checkpw(password.encode(), hashed):
+        raise HTTPException(status_code=401, detail="Invalid username or password")
+
+    return {"message": "Login successful"}
+
+@router.post("/change_password")
+async def change_password(request: Request):
+    data = await request.json()
+    username = data.get("username")
+    old_password = data.get("old_password")
+    new_password = data.get("new_password")
+    user = next((u for u in service_config.users if u["username"] == username), None)
+    if not user:
+        raise HTTPException(status_code=404, detail="User not found")
+
+    if not bcrypt.checkpw(old_password.encode(), user["password_hash"].encode()):
+        raise HTTPException(status_code=401, detail="Old password is incorrect")
+
+    new_hash = bcrypt.hashpw(new_password.encode(), bcrypt.gensalt()).decode()
+    user["password_hash"] = new_hash
+
+    # Config'i kaydet (burada basitçe dosyaya yazılması gerekir)
+    with open(service_config.config_path, "w", encoding="utf-8") as f:
+        import json
+        json.dump(service_config, f, indent=2)
+
+    return {"message": "Password updated successfully"}