# Flask

> Flask is a python library that can be used to build applications like APIs or websites.

A Flask app will be run on a computer (a remote server or your local machine) and listen for requests.

In a Flask application, we define "routes" which are functions that will run when a request is made to a certain path.

Flask is used in the same way, regardless of whether you want to use Flask to build an API that users will interact with programmatically, or you want to use it to build a web application like Twitter (or any other product that you log in to and use through a browser).

A few notes:
- there are other more common ways to build web apps than using Flask. For example React
- Flask APIs are very commonly used to serve machine learning models through an API in production

Let's look at an example.

In [None]:
from flask import Flask
import json

APP_NAME = 'my_api'
APP_HOST = '0.0.0.0'
APP_PORT = 5000

app = Flask(APP_NAME)

@app.route('/') # defines the function which is the response is returned from at / route 
def home():
    return 'hello world'

@app.route('/home') # defines the function which is the response is returned from at /home route 
def home():
    return '<html><h1>yo</h1><p>hi</p></html>'

@app.route('/with_status_code') # requests to localhost:5000/with_status_code call this function
def root():
    return json.dumps({
        'statusCode': 200,
        'body': 'yo'
    })

if __name__ == '__main__':
    app.run(host=APP_HOST, port=APP_PORT)

By default, routes will only accept GET requests. We can define other methods to accept as follows:

In [None]:

@app.route('/post_path', methods=['POST'])
def post_handler():
    return 'Just got posted to'


POST requests are usually used when we want to send some data to the API endpoint.

The following example shows a post request being made to the above route, along with some data.

In [None]:

r = requests.post('http://127.0.0.1:5000/post_path', data=json.dumps({'input': 3}))
print(r.content)


We can access the POSTed data using Flask's [`request` module](https://flask.palletsprojects.com/en/2.0.x/api/#flask.request)

In [None]:
from flask import Flask, request

@app.route('/post_path', methods=['POST'])
def post_handler():
    input_value = request.get_json()['input']
    return f'Just got posted some data with value: {input_value}'

## Headers

Extra information about requests can be sent as "Headers".

There are several different types of headers ([see here](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers)). We are mainly going to look at "request headers".

> A request header is an HTTP header that can be used in an HTTP request to provide information about the request context, so that the server can tailor the response. For example, the Accept-* headers indicate the allowed and preferred formats of the response. Other headers can be used to supply authentication credentials (e.g.  Authorization), to control caching, or to get information about the user agent or referrer, etc. ([see more](https://developer.mozilla.org/en-US/docs/Glossary/Request_header))

### Authorization
Authentication is often done by sending some access token to the server as a header. This is usually sent as the body of a header called "Authorization" (although the user may define it as some other header name).

### The "Content-Type" header

> At server side, an incoming request may have an entity attached to it. To determine it’s type, server uses the HTTP request header Content-Type. Some common examples of content types are “text/plain”, “application/xml”, “text/html”, “application/json”, “image/gif”, and “image/jpeg”. ([See more](https://restfulapi.net/content-negotiation/))




## Rate limiting

https://flask-limiter.readthedocs.io/en/stable/