In [None]:
#1.  What is a RESTful API?
#A RESTful API (Representational State Transfer API) is a type of web service that follows REST
principles to facilitate communication between systems over HTTP. It allows clients to request 
and manipulate resources using standard methods like GET, POST, PUT, and DELETE.

In [None]:
#2.  Explain the concept of API specification.

#Aspects of API Specification:
Standardization: Ensures consistency in how APIs are designed and used.

Data Exchange Rules: Defines request and response formats, including supported data types (e.g., JSON, XML).

Endpoints & Methods: Specifies available API endpoints and HTTP methods (GET, POST, PUT, DELETE).

Authentication & Security: Details authentication mechanisms like OAuth, API keys, or JWT tokens.

Error Handling: Lists possible error codes and responses for different scenarios.

Versioning: Helps manage API updates without breaking existing integrations.

In [None]:
#3.  What is Flask, and why is it popular for building APIs?
#Flask is a lightweight and flexible web framework for Python, often 
referred to as a micro-framework because it provides essential tools
for web development without unnecessary complexity.

#Flask Popular for Building APIs

Minimalistic & Lightweight: Unlike Django, Flask doesn’t enforce a rigid structure, allowing developers to build APIs with only the necessary components.

Easy to Learn & Use: Its simple syntax and intuitive routing make it beginner-friendly.

Extensible: Developers can integrate Flask with various extensions like Flask-RESTful for API development.

Built-in Development Server: Comes with a built-in debugger and development server for testing.

Supports RESTful APIs: Flask is widely used for creating RESTful APIs due to its flexibility and ease of handling HTTP methods.

Integration with Databases: Works seamlessly with SQLAlchemy and other database tools.

In [None]:
#4. What is routing in Flask?
#In Flask, routing refers to the process of mapping URLs to specific functions that handle
requests. It allows developers to define how different URLs should be processed and what
responses should be returned.

In [None]:
#5. How do you create a simple Flask application?

In [None]:
1. Install Flask
First, install Flask using pip:

bash
pip install Flask
2. Create a Python File
Create a new Python file, e.g., app.py, and write the following code:

python
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)
3. Run the Flask Application
Execute the script:

bash
python app.py
This will start a local development server, and you can access your Flask app by visiting http://127.0.0.1:5000/ in your browser.

4. Expand Your Application
You can add more routes, templates, and database connections to make your Flask app more dynamic.

In [None]:
#6.What are HTTP methods used in RESTful APIs?
#In RESTful APIs, HTTP methods define the type of action performed on a resource. Here are the most commonly used methods:

GET: Retrieves data from the server without modifying it.

POST: Sends data to the server to create a new resource.

PUT: Updates an existing resource or creates one if it doesn’t exist.

PATCH: Partially updates an existing resource.

DELETE: Removes a resource from the server.

OPTIONS: Provides information about the communication options available for a resource.

HEAD: Similar to GET but only retrieves headers, not the response body.

In [None]:
#7. What is the purpose of the @app.route() decorator in Flask?

In [None]:
Purpose of @app.route()
URL Mapping: Associates a function with a specific URL, allowing users to access different pages.

Request Handling: Defines how the application responds to requests at a given route.

Dynamic Routing: Supports variable paths like /user/<username>, where <username> is passed as an argument.

HTTP Method Specification: Allows specifying methods like GET, POST, PUT, etc.

In [1]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to Flask!"

@app.route('/user/<username>')
def greet_user(username):
    return f"Hello, {username}!"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
Press CTRL+C to quit
 * Restarting with watchdog (windowsapi)


SystemExit: 1

  warn("To exit: use 'exit', 'quit', or Ctrl-D.", stacklevel=1)


In [None]:
#8. What is the difference between GET and POST HTTP methods?
# GET Method
Used to retrieve data from a server.

Parameters are appended to the URL, making them visible in the browser.

Can be cached by browsers.

Suitable for non-sensitive data since the request is exposed in the URL.

Has length restrictions due to URL limitations.

#POST Method
Used to send data to the server to create or update a resource.

Data is sent in the request body, making it more secure.

Cannot be cached by browsers.

Suitable for sensitive data like passwords or form submissions.

No length restrictions, allowing large amounts of data to be sent.

In [None]:
#9.How do you handle errors in Flask APIs?

In [2]:
#Using Error Handlers
from flask import Flask, jsonify

app = Flask(__name__)

@app.errorhandler(404)
def not_found(error):
    return jsonify({"error": "Resource not found"}), 404

@app.errorhandler(500)
def server_error(error):
    return jsonify({"error": "Internal Server Error"}), 500

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
Press CTRL+C to quit
 * Restarting with watchdog (windowsapi)


SystemExit: 1

In [None]:
#10. How do you connect Flask to a SQL database?
#To connect Flask to a SQL database, you typically use Flask-SQLAlchemy, which provides an easy-to-use ORM
(Object Relational Mapper) for handling database interactions.


 Steps to Connect Flask to a SQL Database
1. Install Flask-SQLAlchemy
First, install Flask and Flask-SQLAlchemy using pip:

bash
pip install flask flask-sqlalchemy
2. Set Up Flask and Configure the Database
Create a app.py file and configure the database connection:

python
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)

# Configure SQLite database
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///site.db'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False  # Avoids a warning

# Create SQLAlchemy instance
db = SQLAlchemy(app)
3. Define a Database Model
Create a model to represent a table in the database:

python
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(80), unique=True, nullable=False)
    email = db.Column(db.String(120), unique=True, nullable=False)

    def __repr__(self):
        return f"User('{self.username}', '{self.email}')"
4. Create the Database
Run the following command to create the database:

python
with app.app_context():
    db.create_all()  # Creates the database and tables
5. Insert and Query Data
You can add and retrieve data using SQLAlchemy:

python
# Adding a new user
new_user = User(username="Abhishek", email="abhishek@example.com")
db.session.add(new_user)
db.session.commit()

# Querying users
users = User.query.all()
print(users)

In [None]:
#11. What is the role of Flask-SQLAlchemy?

#Roles of Flask-SQLAlchemy
Simplifies Database Management: Provides an easy way to define and manipulate database models.

Supports Multiple Databases: Works with SQLite, PostgreSQL, MySQL, and other relational databases.

Enhances Security: Helps prevent SQL injection and other vulnerabilities.

Provides ORM Capabilities: Allows developers to interact with databases using Python objects instead of SQL queries.

Integrates Seamlessly with Flask: Offers built-in support for Flask applications, making database operations more efficient.

In [None]:
#12. What are Flask blueprints, and how are they useful?
#Flask Blueprints are a way to organize a Flask application into modular components, making it easier to manage and scale. Instead of keeping all routes and logic in a single file, Blueprints allow developers to separate different features into distinct modules.
#Use Flask Blueprints?
Modular Structure: Helps break large applications into smaller, manageable parts.

Code Reusability: Blueprints can be reused across multiple projects.

Better Organization: Keeps related routes, templates, and static files grouped together.

Easier Maintenance: Makes debugging and updating specific features simpler.

In [None]:
#13.What is the purpose of Flask's request object?
#Purposes of Flask's Request Object
Accessing Query Parameters: Retrieve data sent via the URL, e.g., request.args.get('param').

Handling Form Data: Extract data from submitted forms using request.form.get('field_name').

Reading JSON Data: Parse JSON payloads from requests using request.get_json().

Managing Cookies: Access user session cookies via request.cookies.get('cookie_name').

Handling File Uploads: Process uploaded files using request.files['file_name'].

Checking Request Method: Determine if the request is GET, POST, etc., using request.method.

In [None]:
#14. How do you create a RESTful API endpoint using Flask?
#Creating a RESTful API endpoint using Flask is straightforward! Here’s a step-by-step guide:

1. Install Flask
First, install Flask using pip:

bash
pip install Flask
2. Create a Flask Application
Create a new Python file, e.g., app.py, and set up Flask:

python
from flask import Flask, jsonify, request

app = Flask(__name__)

@app.route('/api/greet', methods=['GET'])
def greet():
    return jsonify({"message": "Hello, Flask API!"})

if __name__ == '__main__':
    app.run(debug=True)
This defines a simple GET endpoint at /api/greet that returns a JSON response.

3. Handling Different HTTP Methods
You can extend the API to handle POST, PUT, DELETE requests:

python
@app.route('/api/user', methods=['POST'])
def create_user():
    data = request.get_json()
    return jsonify({"message": "User created", "data": data}), 201
This allows clients to send JSON data to create a user.

4. Running the API
Execute the script:

bash
python app.py
Your API will be accessible at http://127.0.0.1:5000/api/greet.

5. Testing the API
Use Postman or curl to test:

bash
curl http://127.0.0.1:5000/api/greet

In [None]:
#15. What is the purpose of Flask's jsonify() function?
#Purposes of jsonify()
Automatic JSON Formatting: Converts Python dictionaries, lists, and other serializable objects into JSON format.

Sets Correct Headers: Automatically sets the Content-Type to application/json, ensuring proper API responses.

Simplifies API Development: Eliminates the need for manually using json.dumps() and setting response headers.

Handles Complex Data: Supports nested dictionaries and lists, making it ideal for structured API responses.

In [None]:
#16. Explain Flask’s url_for() function.
#Flask's url_for() function is a URL helper that dynamically generates URLs for routes based on their function names. Instead of hardcoding URLs, url_for() ensures that links remain consistent even if the route structure changes.
#Use url_for()?
Avoids Hardcoding URLs: If a route changes, you don’t need to update every link manually.

Handles Dynamic URLs: Supports variable paths like /user/<username>.

Ensures Consistency: Generates absolute URLs, preventing broken links.

Works in Templates: Used in Jinja2 templates for cleaner HTML.


In [3]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to Flask!"

@app.route('/user/<username>')
def profile(username):
    return f"Profile of {username}"

with app.test_request_context():
    print(url_for('home'))  # Outputs: '/'
    print(url_for('profile', username='Abhishek'))  # Outputs: '/user/Abhishek'


/
/user/Abhishek


In [None]:
#17.How does Flask handle static files (CSS, JavaScript, etc.)?
#Flask provides a built-in way to serve static files like CSS, JavaScript, images, and other assets using the /static directory. Here's how it works:

Static Folder: Flask automatically looks for a folder named static in your project directory. Any files placed inside this folder can be accessed via the /static/ route.

Referencing Static Files: In your HTML templates, you can use Flask’s url_for() function to generate URLs for static files dynamically:

In [7]:
from flask import Flask, send_from_directory

app = Flask(__name__)

@app.route('/custom_static/<path:filename>')
def custom_static(filename):
    return send_from_directory('static', filename)


In [None]:
#18.What is an API specification, and how does it help in building a Flask API?
#An API specification is a structured document that defines how an API should behave, including its endpoints, request and response formats, authentication methods, and error handling. It serves as a blueprint for developers to build and interact with an API consistently.

#It Helps in Building a Flask API:
Standardization: Ensures that all API endpoints follow a consistent structure, making it easier for developers to understand and use.

Documentation: Provides clear guidelines for API consumers, reducing confusion and improving usability.

Automation: Tools like OpenAPI (formerly Swagger) can generate API documentation and client libraries automatically.

Validation: Helps enforce data formats and request structures, reducing errors in API interactions.

Interoperability: Allows different systems to communicate seamlessly by following a common specification.

In [None]:
#19. What are HTTP status codes, and why are they important in a Flask API?
#HTTP status codes are standardized responses that indicate the outcome of an HTTP request. They help both clients and servers understand whether a request was successful, redirected, or encountered an error.
#Importance in a Flask API
Clear Communication: Helps clients understand the result of their request.

Error Handling: Allows developers to define meaningful responses for failures.

Standardization: Ensures consistency across different APIs.

Debugging: Makes troubleshooting easier by identifying issues quickly.

In [8]:
#20. How do you handle POST requests in Flask?
#1. Basic Handling of POST Requests
#You define a route that accepts POST requests using the methods parameter:

from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def handle_post():
    data = request.json  # Get JSON data from the request body
    return jsonify({"message": "Data received", "data": data}), 201

#2. Handling Form Data
# If you're receiving form data (instead of JSON), use request.form:
@app.route('/form_submit', methods=['POST'])
def handle_form():
    name = request.form.get('name')
    email = request.form.get('email')
    return jsonify({"name": name, "email": email}), 200

In [None]:
#21. How would you secure a Flask API?
#Securing a Flask API is crucial to protect sensitive data and prevent unauthorized access. Here are some key security measures:

1. Authentication & Authorization
Use JWT (JSON Web Tokens) for secure token-based authentication.

Implement OAuth2 for third-party authentication (e.g., Google, Facebook).

Use Flask-Security or Flask-Login for user authentication.

2. HTTPS & Secure Headers
Enforce HTTPS to encrypt data in transit.

Use Flask-Talisman to set security headers like Content-Security-Policy and Strict-Transport-Security.

3. Input Validation & Sanitization
Validate user input to prevent SQL Injection and XSS attacks.

Use Flask-WTF for form validation and bleach to sanitize input.

4. Rate Limiting & Throttling
Prevent abuse by limiting requests using Flask-Limiter.

5. Secure API Endpoints
Restrict access to sensitive endpoints using role-based access control (RBAC).

Implement CORS (Cross-Origin Resource Sharing) properly to prevent unauthorized cross-site requests.

6. Logging & Monitoring
Enable Flask-Logging to track API activity.

Use Flask-Sentry for real-time error monitoring.

7. Secure Data Storage
Hash passwords using bcrypt or Argon2.

Store API keys securely using environment variables.



In [None]:
#22.What is the significance of the Flask-RESTful extension?
#Benefits of Flask-RESTful
Simplifies API Development – Provides a cleaner and more structured approach to defining API resources.

Automatic Request Parsing – Built-in support for handling request arguments efficiently.

Better Resource Management – Uses classes to define API resources, making code more modular.

Response Formatting – Automatically formats responses in JSON, reducing manual processing.

Integrated Error Handling – Provides built-in exception handling for common errors.

In [None]:
#23. What is the role of Flask’s session object??
#Roles of Flask’s Session Object
User Authentication – Keeps track of logged-in users without requiring them to authenticate on every request.

State Persistence – Stores temporary data like shopping cart items or user preferences.

Security – Uses a secret key to sign session data, preventing tampering.

Server-Side Storage – Can be configured to store session data in files, databases, or Redis using Flask-Session.

Automatic Expiry – Sessions can be set to expire when the browser closes or after a specific duration.

In [None]:
           #####################practical question and answers#####################

In [None]:
#1.How do you create a basic Flask application?
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)


In [9]:
#2. How do you serve static files like images or CSS in Flask?
from flask import Flask, send_from_directory

app = Flask(__name__)

@app.route('/custom_static/<path:filename>')
def custom_static(filename):
    return send_from_directory('static', filename)


In [10]:
#3.How do you define different routes with different HTTP methods in Flask?
from flask import Flask, request

app = Flask(__name__)

@app.route('/example', methods=['GET', 'POST'])
def example():
    if request.method == 'GET':
        return "This is a GET request"
    elif request.method == 'POST':
        return "This is a POST request"

@app.route('/update', methods=['PUT'])
def update():
    return "This is a PUT request"

@app.route('/delete', methods=['DELETE'])
def delete():
    return "This is a DELETE request"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
Press CTRL+C to quit
 * Restarting with watchdog (windowsapi)


SystemExit: 1

In [11]:
#4. How do you render HTML templates in Flask?
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def index():
    return render_template("index.html")

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
Press CTRL+C to quit
 * Restarting with watchdog (windowsapi)


SystemExit: 1

In [None]:
#5. How can you generate URLs for routes in Flask using url_for?
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to Flask!"

@app.route('/user/<username>')
def profile(username):
    return f"Profile of {username}"

with app.test_request_context():
    print(url_for('home'))  # Outputs: '/'
    print(url_for('profile', username='Abhishek'))  # Outputs: '/user/Abhishek'


In [None]:
#6. How do you handle forms in Flask?
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form.get('name')
        return f"Hello, {name}!"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#7. How can you validate form data in Flask?
from flask import Flask, render_template, request
from flask_wtf import FlaskForm
from wtforms import StringField, EmailField, PasswordField, SubmitField
from wtforms.validators import DataRequired, Email, Length

app = Flask(__name__)
app.secret_key = 'your_secret_key'

class RegistrationForm(FlaskForm):
    username = StringField('Username', validators=[DataRequired(), Length(min=4, max=25)])
    email = EmailField('Email', validators=[DataRequired(), Email()])
    password = PasswordField('Password', validators=[DataRequired(), Length(min=6)])
    submit = SubmitField('Register')

@app.route('/register', methods=['GET', 'POST'])
def register():
    form = RegistrationForm()
    if form.validate_on_submit():
        return f"Welcome, {form.username.data}!"
    return render_template('register.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#8. How do you manage sessions in Flask?
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required for session security

@app.route('/set_session')
def set_session():
    session['username'] = 'Abhishek'
    return "Session data set!"

@app.route('/get_session')
def get_session():
    return f"Logged in as {session.get('username', 'Guest')}"

@app.route('/logout')
def logout():
    session.pop('username', None)
    return "Logged out!"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#9. How do you redirect to a different route in Flask?
from flask import Flask, redirect

app = Flask(__name__)

@app.route('/')
def home():
    return redirect('/welcome')

@app.route('/welcome')
def welcome():
    return "Welcome to Flask!"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/admin')
def admin():
    return "Admin Page"

@app.route('/user/<name>')
def user(name):
    return f"Hello, {name}!"

@app.route('/login/<name>')
def login(name):
    if name == "admin":
        return redirect(url_for('admin'))
    else:
        return redirect(url_for('user', name=name))

if __name__ == '__main__':
    app.run(debug=True)


In [12]:
#10.How do you handle errors in Flask (e.g., 404)?
from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def not_found(e):
    return render_template("404.html"), 404


In [None]:
#11.How do you structure a Flask app using Blueprints?
/flask_app
│── /app
│   │── /routes
│   │   │── __init__.py
│   │   │── user_routes.py
│   │── __init__.py
│── run.py


from flask import Blueprint

user_bp = Blueprint('user', __name__)

@user_bp.route('/users')
def get_users():
    return {"message": "List of users"}


In [None]:
#12. How do you define a custom Jinja filter in Flask?
from flask import Flask

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]  # Reverse a string

@app.route('/')
def index():
    return f"Reversed: {{ 'Flask' | reverse }}"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#13. How can you redirect with query parameters in Flask?
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q', 'default')
    return f"Search results for: {query}"

@app.route('/redirect_example')
def redirect_example():
    return redirect(url_for('search', q='Flask'))

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#14. How do you return JSON responses in Flask?
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/data')
def get_data():
    return jsonify({"message": "Hello, Flask!", "status": "success"})

if __name__ == '__main__':
    app.run(debug=True)




@app.route('/auto_json')
def auto_json():
    return {"message": "This is auto-converted to JSON"}


In [None]:
#15.How do you capture URL parameters in Flask?

from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def profile(username):
    return f"Hello, {username}!"

if __name__ == '__main__':
    app.run(debug=True)
