Update api/routes.py

api/routes.py

@@ -69,7 +69,6 @@ async def list_doctors():
         })
     return doctors
 
-
 # --- LOGIN ---
 @router.post("/login", response_model=TokenResponse)
 async def login(form_data: OAuth2PasswordRequestForm = Depends()):
@@ -96,7 +95,6 @@ async def get_me(current_user: dict = Depends(get_current_user)):
         "created_at": user.get("created_at", "")
     }
 
-
 # --- ADD NEW PATIENT ---
 @router.post("/patients")
 async def add_patient(data: PatientCreate, current_user: dict = Depends(get_current_user)):
@@ -139,18 +137,20 @@ async def count_patients(current_user: dict = Depends(get_current_user)):
     count = await patients_collection.count_documents({"created_by": current_user["email"]})
     return {"count": count}
 
-# =========================
-#    APPOINTMENT ROUTES
-# =========================
-
-# --- CREATE APPOINTMENT (doctor only) ---
+# --- CREATE APPOINTMENT ---
 @router.post("/appointments")
 async def create_appointment(data: AppointmentCreate, current_user: dict = Depends(get_current_user)):
-    if current_user.get("role") != "doctor":
-        raise HTTPException(status_code=403, detail="Only doctors can create appointments")
+    if current_user.get("role") != "patient":
+        raise HTTPException(status_code=403, detail="Only patients can book appointments")
 
+    # Get patient user info
+    patient_user = await users_collection.find_one({"email": current_user["email"]})
+    if not patient_user:
+        raise HTTPException(status_code=404, detail="Patient user not found")
+
+    # Insert appointment
     appointment_doc = {
-        "patient_id": ObjectId(data.patient_id),
+        "patient_id": patient_user["_id"],
         "doctor_id": ObjectId(data.doctor_id),
         "date": data.date,
         "time": data.time,
@@ -159,7 +159,30 @@ async def create_appointment(data: AppointmentCreate, current_user: dict = Depen
         "created_at": datetime.utcnow()
     }
     await appointments_collection.insert_one(appointment_doc)
-    return {"message": "Appointment created successfully"}
+
+    # Auto-add to doctor's patient list if not already
+    existing = await patients_collection.find_one({
+        "user_email": current_user["email"],
+        "created_by": await get_doctor_email_by_id(data.doctor_id)
+    })
+    if not existing:
+        await patients_collection.insert_one({
+            "full_name": patient_user.get("full_name", ""),
+            "user_email": patient_user["email"],
+            "gender": "",
+            "created_by": await get_doctor_email_by_id(data.doctor_id),
+            "created_at": datetime.utcnow()
+        })
+
+    return {"message": "Appointment booked successfully"}
+
+# --- Helper function ---
+async def get_doctor_email_by_id(doctor_id: str) -> Optional[str]:
+    try:
+        doc = await users_collection.find_one({"_id": ObjectId(doctor_id), "role": "doctor"})
+        return doc["email"] if doc else None
+    except Exception:
+        return None
 
 # --- LIST DOCTOR'S APPOINTMENTS ---
 @router.get("/appointments/doctor")