#13 Made login page that actually send request to backend. CORS stuff.

backend/app/routes.py

@@ -1,6 +1,6 @@
-from flask_login import login_user, logout_user
+from flask_login import login_required, login_user, logout_user
 from app.bp import bp
-from flask import Response, jsonify, request
+from flask import jsonify, request
 from app.errors import error_response
 from flask_login import current_user
 
@@ -20,10 +20,10 @@ def login_route():
     if current_user.is_authenticated:
         return error_response(400, "A user is already logged in!")
 
-    if not data.get("user_id") or not data.get("password"):
-        return error_response(400, "Must supply user_id and password")
+    if not data.get("username") or not data.get("password"):
+        return error_response(400, "Must supply username and password")
 
-    user = User.query.get(data.get("user_id"))
+    user = User.query.filter_by(username=data["username"]).first()
     if not user:
         return error_response(400, "User not found")
 
@@ -36,10 +36,8 @@ def login_route():
 
 
 @bp.route("/logout", methods=["POST"])
+@login_required
 def logout_route():
-    if not current_user.is_authenticated:
-        return error_response(400, "No users are logged in!")
-
     resp = jsonify(current_user.to_dict())
     logout_user()
     return resp