Update app.py

app.py

@@ -2,54 +2,54 @@ from fastapi import FastAPI, HTTPException, Depends
 from fastapi.middleware.cors import CORSMiddleware
 from fastapi.security import OAuth2PasswordRequestForm
 from pydantic import BaseModel, EmailStr
-from jose import JWTError, jwt
+from jose import jwt, JWTError
 from passlib.context import CryptContext
 from motor.motor_asyncio import AsyncIOMotorClient
 import certifi
-import os
 import datetime
+import os
 
-# === Environment and config ===
+# Environment variables
 SECRET_KEY = os.getenv("SECRET_KEY", "your-secret-key")
 ALGORITHM = "HS256"
 ACCESS_TOKEN_EXPIRE_MINUTES = 30
-
 MONGO_URI = os.getenv("MONGO_URI")
+
 if not MONGO_URI:
-    raise RuntimeError("MONGO_URI not set")
+    raise RuntimeError("MONGO_URI not set!")
 
-# === MongoDB client ===
+# Database connection
 client = AsyncIOMotorClient(MONGO_URI, tls=True, tlsCAFile=certifi.where())
 db = client["cps_db"]
 users_collection = db["users"]
 
-# === App setup ===
+# App setup
 app = FastAPI()
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["*"],  # Replace with frontend origin in prod
+    allow_origins=["*"],  # 🔐 Replace with frontend domain in prod
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
 )
 
-# === Password hashing ===
+# Hashing setup
 pwd_context = CryptContext(schemes=["bcrypt"], deprecated="auto")
 
-def verify_password(plain: str, hashed: str) -> bool:
-    return pwd_context.verify(plain, hashed)
-
 def hash_password(password: str) -> str:
     return pwd_context.hash(password)
 
-# === JWT ===
+def verify_password(plain: str, hashed: str) -> bool:
+    return pwd_context.verify(plain, hashed)
+
+# JWT generation
 def create_access_token(data: dict, expires_delta: datetime.timedelta = None):
     to_encode = data.copy()
     expire = datetime.datetime.utcnow() + (expires_delta or datetime.timedelta(minutes=ACCESS_TOKEN_EXPIRE_MINUTES))
     to_encode.update({"exp": expire})
     return jwt.encode(to_encode, SECRET_KEY, algorithm=ALGORITHM)
 
-# === Schemas ===
+# Pydantic models
 class SignupForm(BaseModel):
     email: EmailStr
     password: str
@@ -58,16 +58,22 @@ class TokenResponse(BaseModel):
     access_token: str
     token_type: str
 
-# === Routes ===
+# Routes
 @app.post("/signup")
 async def signup(data: SignupForm):
     email = data.email.lower().strip()
     existing = await users_collection.find_one({"email": email})
     if existing:
         raise HTTPException(status_code=409, detail="Email already exists")
+    
     hashed_pw = hash_password(data.password)
-    await users_collection.insert_one({"email": email, "password": hashed_pw})
-    return {"success": True, "message": "Account created successfully"}
+    user_doc = {
+        "email": email,
+        "password": hashed_pw,
+        "created_at": datetime.datetime.utcnow()
+    }
+    await users_collection.insert_one(user_doc)
+    return {"success": True, "message": "Account created"}
 
 @app.post("/login", response_model=TokenResponse)
 async def login(form_data: OAuth2PasswordRequestForm = Depends()):
@@ -81,4 +87,4 @@ async def login(form_data: OAuth2PasswordRequestForm = Depends()):
 
 @app.get("/")
 def root():
-    return {"message": "✅ Auth-secured FastAPI + MongoDB backend is running"}
+    return {"message": "🚀 FastAPI MongoDB with JWT & timestamps is running"}