Update utils/database_handler.py

utils/database_handler.py

@@ -29,8 +29,10 @@ def get_salesforce_access_token():
 
 # Save user to Salesforce
 def save_user(name, phone, email, password):
+    """Save user details to Salesforce."""
     access_token, instance_url = get_salesforce_access_token()
     if not access_token:
+        print("Failed to authenticate with Salesforce.")
         return False
 
     # Check if email already exists
@@ -40,23 +42,31 @@ def save_user(name, phone, email, password):
     }
     query = f"SELECT Email__c FROM User_Login__c WHERE Email__c = '{email}'"
     query_response = requests.get(f"{instance_url}/services/data/v53.0/query", headers=headers, params={"q": query})
+    print("Query Response:", query_response.json())  # Log the query response
+
     if query_response.status_code == 200 and query_response.json()["records"]:
+        print("Email already exists in Salesforce.")
         return False  # User already exists
 
-    # Save new user
+    # Save new user with hashed password
+    hashed_password = hashpw(password.encode(), gensalt()).decode()
     data = {
         "Name__c": name,
         "Phone__c": phone,
         "Email__c": email,
-        "Password__c": password,
+        "Password__c": hashed_password,
     }
     response = requests.post(f"{instance_url}/services/data/v53.0/sobjects/User_Login__c", headers=headers, json=data)
+    print("Save Response:", response.status_code, response.json())  # Log the save response
     return response.status_code == 201
 
+
 # Check user credentials
 def check_credentials(email, password):
+    """Check user credentials during login."""
     access_token, instance_url = get_salesforce_access_token()
     if not access_token:
+        print("Failed to authenticate with Salesforce.")
         return False
 
     headers = {
@@ -65,7 +75,11 @@ def check_credentials(email, password):
     }
     query = f"SELECT Password__c FROM User_Login__c WHERE Email__c = '{email}'"
     query_response = requests.get(f"{instance_url}/services/data/v53.0/query", headers=headers, params={"q": query})
+    print("Query Response:", query_response.json())  # Log the query response
+
     if query_response.status_code == 200 and query_response.json()["records"]:
         stored_password = query_response.json()["records"][0]["Password__c"]
-        return stored_password == password
+        return checkpw(password.encode(), stored_password.encode())
+    print("No matching email found in Salesforce.")
     return False
+