Merge pull request #80 from hotosm/feat/refresh-token

feat(auth/profile): solve refresh token access and update profile with with PATCH method

src/backend/app/users/oauth_routes.py

@@ -49,10 +49,12 @@ async def callback(request: Request, google_auth=Depends(init_google_auth)):
 
 
 @router.get("/refresh-token", response_model=Token)
-def update_token(user_data: AuthUser = Depends(login_required)):
+async def update_token(user_data: AuthUser = Depends(login_required)):
     """Refresh access token"""
 
-    access_token, refresh_token = user_crud.create_access_token(user_data.model_dump())
+    access_token, refresh_token = await user_crud.create_access_token(
+        user_data.model_dump()
+    )
     return Token(access_token=access_token, refresh_token=refresh_token)
 
 

src/backend/app/users/user_routes.py

@@ -43,6 +43,7 @@ async def login_access_token(
     return Token(access_token=access_token, refresh_token=refresh_token)
 
 
+@router.patch("/{user_id}/profile")
 @router.post("/{user_id}/profile")
 async def update_user_profile(
     user_id: str,

src/backend/app/users/user_schemas.py

@@ -86,7 +86,7 @@ class ProfileUpdate(BaseModel):
     drone_you_own: Optional[str] = None
     experience_years: Optional[int] = None
     certified_drone_operator: Optional[bool] = False
-    role: Optional[UserRole] = UserRole.DRONE_PILOT
+    role: Optional[UserRole] = None
     password: Optional[str] = None
 
     @field_validator("role", mode="after")