Update auth_controller.py

auth_controller.py

@@ -1,24 +1,29 @@
-from fastapi import APIRouter, HTTPException, Request, Depends
+from fastapi import APIRouter, Depends, HTTPException
 from config_provider import get_config, ServiceConfig
-from service_config import ServiceConfig
-import bcrypt
+from pydantic import BaseModel
+import hashlib
 
 router = APIRouter()
 
-@router.post("/login")
-async def login(request: Request, config: ServiceConfig = Depends(get_config)):
-    data = await request.json()
-    username = data.get("username")
-    password = data.get("password")
-    user = next((u for u in config.users if u["username"] == username), None)
+class LoginRequest(BaseModel):
+    username: str
+    password: str
+
+def verify_password(stored_hash, input_password):
+    # Basit SHA256 hash kontrolü (salt + hash mekanizması uygulanabilir)
+    input_hash = hashlib.sha256(input_password.encode()).hexdigest()
+    return stored_hash == input_hash
+
+@router.post("/auth/login")
+def login(request: LoginRequest, config: ServiceConfig = Depends(get_config)):
+    user = next((u for u in config.data.get('users', []) if u['username'] == request.username), None)
     if not user:
         raise HTTPException(status_code=401, detail="Invalid username or password")
 
-    hashed = user["password_hash"].encode()
-    if not bcrypt.checkpw(password.encode(), hashed):
+    if not verify_password(user['password_hash'], request.password):
         raise HTTPException(status_code=401, detail="Invalid username or password")
 
-    return {"message": "Login successful"}
+    return { "status": "success" }
 
 @router.post("/change_password")
 async def change_password(request: Request):