hngprojects
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/ci.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.idea/.gitignore‎
Lines changed: 3 additions & 0 deletions b/‎.idea/.gitignore‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎.idea/hng_boilerplate_python_fastapi.iml‎
Lines changed: 10 additions & 0 deletions b/‎.idea/hng_boilerplate_python_fastapi.iml‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎.idea/inspectionProfiles/Project_Default.xml‎
Lines changed: 48 additions & 0 deletions b/‎.idea/inspectionProfiles/Project_Default.xml‎
Lines changed: 48 additions & 0 deletions
diff --git a/‎.idea/inspectionProfiles/profiles_settings.xml‎
Lines changed: 6 additions & 0 deletions b/‎.idea/inspectionProfiles/profiles_settings.xml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎.idea/material_theme_project_new.xml‎
Lines changed: 12 additions & 0 deletions b/‎.idea/material_theme_project_new.xml‎
Lines changed: 12 additions & 0 deletions
diff --git a/‎.idea/misc.xml‎
Lines changed: 7 additions & 0 deletions b/‎.idea/misc.xml‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎.idea/vcs.xml‎
Lines changed: 6 additions & 0 deletions b/‎.idea/vcs.xml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎api/core/dependencies/email/templates/login-notification.html‎
Lines changed: 35 additions & 0 deletions b/‎api/core/dependencies/email/templates/login-notification.html‎
Lines changed: 35 additions & 0 deletions
diff --git a/‎api/v1/routes/auth.py‎
Lines changed: 12 additions & 1 deletion b/‎api/v1/routes/auth.py‎
Lines changed: 12 additions & 1 deletion
@@ -65,4 +65,4 @@ jobs:
 
       - name: Run tests
         run: |
-          PYTHONPATH=. pytest
+          PYTHONPATH=. pytest
@@ -0,0 +1,35 @@
+{% extends 'base.html' %}
+
+{% block title %}Account Login Detected{% endblock %}
+
+{% block content %}
+<div style="max-width: 600px; margin: 0 auto; font-family: Arial, sans-serif;">
+  <h2 style="text-align: left; margin-bottom: 20px;">Account Login Detected</h2>
+
+  <p style="margin-bottom: 15px;"><strong>Hi {{ first_name }} {{ last_name }},</strong></p>
+
+  <p style="margin-bottom: 25px;">We detected a new login to your account. If this was you, no action is needed. If you didn't log in, please take action immediately.</p>
+
+  <div style="margin-bottom: 25px;">
+    <p style="margin-bottom: 5px;"><strong>Date & Time: </strong>{{ login_time }}</p>
+    <p style="margin-bottom: 5px;"><strong>IP Address: </strong>{{ ip_address }}</p>
+    <p style="margin-bottom: 5px;"><strong>Location: </strong>{{ location }}</p>
+    <p style="margin-bottom: 15px;"><strong>Device: </strong>{{ device }}</p>
+  </div>
+
+  <div style="margin-top: 30px; margin-bottom: 30px; padding-left: 10px; border-left: 4px solid #ffc107; background-color: #fff8e1; padding: 15px;">
+    <h3 style="margin-top: 0; margin-bottom: 15px;">Was this not you?</h3>
+
+    <p>If you didn't log in to your account at this time, someone else may have access to your account. Please take the following steps immediately:</p>
+
+    <ol style="padding-left: 25px; margin-bottom: 20px;">
+      <li style="margin-bottom: 8px;">Change your password immediately</li>
+      <li style="margin-bottom: 8px;">Enable two-factor authentication if available</li>
+      <li style="margin-bottom: 8px;">Contact our customer support at <a href="{{ help_center_link }}" style="color: blue; text-decoration: underline;">Help Center</a></li>
+    </ol>
+
+    <a href="{{ change_password_link }}" style="display: inline-block; background-color: #F97414; color: white; padding: 12px 25px; text-decoration: none; border-radius: 4px; font-weight: bold;">Change Password</a>
+  </div>
+
+</div>
+{% endblock %}
@@ -1,3 +1,4 @@
+import logging
 from datetime import timedelta
 from slowapi import Limiter
 from slowapi.util import get_remote_address
@@ -23,6 +24,7 @@
 from api.v1.schemas.user import (MagicLinkRequest,
                                  ChangePasswordSchema,
                                  AuthMeResponse)
+from api.v1.services.login_notification import send_login_notification
 from api.v1.services.organisation import organisation_service
 from api.v1.schemas.organisation import CreateUpdateOrganisation
 from api.db.database import get_db
@@ -37,6 +39,10 @@
 
 # Initialize rate limiter
 limiter = Limiter(key_func=get_remote_address)
+
+# Setup logging
+logging.basicConfig(level=logging.INFO)
+logger = logging.getLogger(__name__)
 
 @auth.post("/register", status_code=status.HTTP_201_CREATED, response_model=auth_response)
 @limiter.limit("5/minute")  # Limit to 5 requests per minute per IP
@@ -140,7 +146,8 @@ def register_as_super_admin(request: Request, user: UserCreate, db: Session = De
 
 @auth.post("/login", status_code=status.HTTP_200_OK, response_model=auth_response)
 @limiter.limit("5/minute")  # Limit to 5 requests per minute per IP
-def login(request: Request, login_request: LoginRequest, db: Session = Depends(get_db)):
+def login(request: Request, login_request: LoginRequest, background_tasks: BackgroundTasks, db: Session = Depends(get_db)):
+
     """Endpoint to log in a user"""
 
     # Authenticate the user
@@ -154,6 +161,10 @@ def login(request: Request, login_request: LoginRequest, db: Session = Depends(g
     access_token = user_service.create_access_token(user_id=user.id)
     refresh_token = user_service.create_refresh_token(user_id=user.id)
 
+    # Background task for email notification
+    logger.info(f"Queueing login notification for {user.email} in the background...")
+    background_tasks.add_task(send_login_notification, user, request)
+
     response = auth_response(
         status_code=200,
         message="Login successful",