# Theory questions

1.  What is a RESTful API?
  - A RESTful API is a web service that follows REST principles, enabling communication between systems using HTTP methods like GET, POST, PUT, and DELETE. Resources are identified by unique URLs, and data is exchanged in formats like JSON. RESTful APIs are stateless and scalable.



2.  Explain the concept of API specification.
  - An API specification is a detailed blueprint that outlines how an API functions and how developers can interact with it. It defines the endpoints, request methods (like GET, POST), parameters, authentication requirements, data formats (e.g., JSON or XML), and expected responses.

  - Think of it as a contract between the API provider and the client, ensuring they can communicate seamlessly. Standards like OpenAPI (formerly Swagger) are commonly used to create such specifications.



3.  What is Flask, and why is it popular for building APIs?
  - Flask is a lightweight, flexible web framework for Python. It provides the tools and features needed to build web applications and APIs without unnecessary complexity. Flask is often described as a "micro-framework" because it doesn't require extensive setup or dependencies, allowing developers to start small and scale up as needed.

  1. **Simplicity**: Flask is easy to learn and use, making it great for beginners and small projects.
  2. **Flexibility**: It provides the freedom to choose your tools, libraries, and structure.
  3. **Built-in Development Server**: Flask includes a built-in server, making it easy to test APIs during development.
  4. **Extensibility**: It supports various extensions for features like authentication, database integration, and more.
  5. **RESTful API Support**: Flask is particularly well-suited for creating RESTful APIs due to its route handling and response customization.
  6. **Community Support**: A large, active community and extensive documentation make problem-solving easier.




4.  What is routing in Flask?
  - Routing in Flask maps URLs to functions. Use the @app.route() decorator to define routes, handle dynamic URLs, and support HTTP methods like GET and POST.

  @app.route('/')
  def home():
    return "Hello"



5.  How do you create a simple Flask application?
  - Creating a simple Flask application involves just a few steps. Here's how:
  install flask:

  pip install flask

  Create a python file: save a file named, for example, app.py.

  Write Basic Code:

  from flask import Flask
  app = Flask(__name__)
  @app.route('/')
  def home():
    return "Welcome to flask"

  if __name__ == '__main__':
    app.run(debug=True)


  run your application: in terminal
  python app.py


  View in Browser: open http://127.0.0.1:5000/ to see app.


  This app displays "Welcome to flask" on the homepage, its the foundation to build more advanced features like additional routes or templates.



6.  What are HTTP methods used in RESTful APIs?
  - RESTful APIs use standard HTTP methods to perform actions on resources. The main methods are:

  GET: Retrieves data from the server (e.g., fetch a list of users).

  POST: Creates new resources (e.g., add a new user).

  PUT: Updates an existing resource entirely (e.g., update user details).

  PATCH: Partially updates a resource (e.g., change a user's email only).

  DELETE: Removes a resource (e.g., delete a user account).

  OPTIONS: Describes the communication options for a resource.

  HEAD: Fetches headers for a resource without the body (used to check metadata).

  These methods ensure uniformity and clarity when interacting with RESTful APIs.



7.  What is the purpose of the @app.route() decorator in Flask?
  - The @app.route decorator in flask is used to define routes, which map specific URLs to corresponding functionc in your application. Essentially, it tells flask which function should handle a given URL.

  PURPOSE:
  1. URL Mapping: it binds a URL (like /) to a specific function.
  2. Dynamic Routing: it supports dynamic URLs with parameters, such as /user/<username>.
  3. HTTP Method Handling: you can specify HTTP methods ( GET, POST ) for each route.

  @pp.route('/')
  def home():
    return "Welcome"

  @app.route('/user/<username>')
  def greet(username):
    return f"Hello, {username}"


  in this example, visiting / displays "Welcome", and /user/abhinay greets the user "abhinay".


8.  What is the difference between GET and POST HTTP methods?
  - **GET**: Retrieves data, sends information in the URL, can be cached/bookmarked, and is less secure.

  - **POST**: Sends data to the server (e.g., forms), keeps data hidden in the request body, is more secure, and modifies resources.  

  GET is for fetching data; POST is for creating or updating.



9.  How do you handle errors in Flask APIs?
  - Handling errors in flask apls involves providing clear error responses to users while maintaining proper debugging practices.
  1. Use http status codes: Return appropriate status codes for errors( 404 for not found, 400 for bad request).

  @app.route('/example')
  def example():
    return {"error": "Resource not found"}, 404

  2. Flask's abort() function: Use abort() to generate standard HTTP error responses.

  from flask import abort
  @app.route('/secure')
  def secure():
    abort(403) #forbidden


  3. Error Handlers: Define custom error handlers for specific status codes.

  @app.errorhandler(404)
  def not_found(error):
    return {"error": "page not found"}, 404

  4. Validation: validate user inputs to prevent errors from occuring due to invalid data.
  5. Debugging: During developement, enable debug=True in app.run() to see detailed error messages.



10.  How do you connect Flask to a SQL database?
  - To connect flask to a sql database, you typically use an ORM (object-relational mapping) like sqlalchemy or a database connector. Here's how to do it with flask and sqlalchemy:

  1. install dependencies:
  pip install flask sqlalchemy flask-sqlalchemy

  2. configure your database: set up the database url in your flask app.
  app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite://mydatabase.db'
  app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False


  3. Initialize SQLAlchemy: create a database instance and models:
  from flask_sqlalchemy import SQLAlchemy

  db = SQLAlchemy(app)

  class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(50), nullable=False)

  db.create_all()


  4. Perform database operations: Use SQLAlchemy commands to interact with the database:

  new_user = User(name="Abhinay")
  db.session.add(new_user)
  db.session.commit()


  This connects flask to the database, lets you define models, and allows CRUD operations.



11.  What is the role of Flask-SQLAlchemy?
  - Flask-SQLAlchemy simplifies database management in Flask apps. It integrates SQLAlchemy, allowing you to define models, handle queries, manage sessions, and streamline database interactions efficiently.



12.  What are Flask blueprints, and how are they useful?
  - Flask Blueprints are a way to structure and organize a Flask application into smaller, modular components. They allow you to group routes, templates, static files, and other application features into separate modules while still working as part of the main app.

  Why are Blueprints Useful?
  1. Code Organization: They help keep your codebase clean and modular by dividing large applications into manageable sections.
  2. Reusability: Blueprints can be reused across multiple applications or projects.
  3. Scalability: Ideal for large applications as they allow independent developement of features or components.

  4. Simplified collaboration: teams can work on separate blueprints without conflicts.



13.  What is the purpose of Flask's request object?
  - Flask's `request` object provides access to data sent by the client in HTTP requests, such as form data, JSON payloads, query parameters, headers, and cookies. It helps handle incoming data and user inputs effectively within your application.



14.  How do you create a RESTful API endpoint using Flask?
  - To create a RESTful API enpoint in flask:
  1. install flask:

  pip install flask

  2. Write code:

  from flask import flask, jsonify

  app = Flask(__name__)

  @app.route('/api/resource', methods=['GET'])
  def get_resource():
    return jsonify({"message": "This is a RESTful API endpoint"})

  if __name__ == '__main__':
    app.run(debug=True)


  3. Run the app: Execute python app.py and access /api/resource on your browser or API client.



15.  What is the purpose of Flask's jsonify() function?
  - Flask's `jsonify()` function converts Python dictionaries or lists into JSON format and sets the appropriate `Content-Type` header for the response. It simplifies sending JSON responses in APIs.


16.  Explain Flask’s url_for() function.
  - flask's url_for() function is used to dynamically build URLs for routes defined in your application. instead of hardcoding URLs, url_for() generates them based on the name of the view function and any arguments passed to it.

  Purpose:
  1. Dynamic URL Generation: if routed or parameters change, url_for() automatically adjusts.

  2. Ease of Maintenance: Reduces the rist of errors compared to hardcoding URLs.

  3. Parameter Passing: Allows passing arguments for dynamic routes.




17.  How does Flask handle static files (CSS, JavaScript, etc.)?
  - Flask handles static files like CSS, JavaScript, and images through a folder named static in the project's directory. By default, Flask serves files in this folder automatically.

  Key Points:
  Static Folder: Place all static files inside the static directory, e.g., static/style.css.

  Accessing Files: Reference static files in templates using url_for():
  <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">

  Default URL: Static files are served at /static/filename.


18.  What is an API specification, and how does it help in building a Flask API?
  - An API specification is a detailed blueprint that outlines the functionality and structure of an API. It includes information such as endpoints, HTTP methods (e.g., GET, POST), request and response formats, authentication requirements, and error handling.

  1. **Standardization**: Ensures consistency across endpoints and makes the API easier to use.
  2. **Collaboration**: Developers and teams can work efficiently with a shared understanding of the API's structure.
  3. **Automation**: Tools like OpenAPI generate documentation and code based on the specification.
  4. **Ease of Development**: Acts as a guide during the implementation process, reducing errors and confusion.

  It's like having a roadmap for designing and building the API effectively.



19.  What are HTTP status codes, and why are they important in a Flask API?
  - HTTP status codes indicate the result of an HTTP request. They help Flask APIs communicate the outcome of requests, such as success (`200 OK`), resource creation (`201 Created`), client errors (`400 Bad Request`), or server errors (`500 Internal Server Error`). These codes ensure clear communication between the client and server.



20.  How do you handle POST requests in Flask?
  - Handling POST requests in Flask involves receiving data sent by the client (e.g., a form submission) and processing it. Here's how you can do it:

  1. **Define a Route with POST Method**:
   
   from flask import Flask, request

   app = Flask(__name__)

   @app.route('/submit', methods=['POST'])
   def submit():
       data = request.json  # Or use request.form for form data
       return {"message": f"Received data: {data}"}, 200
   

  2. **Access Data**: Use `request.json` for JSON payloads or `request.form` for form data.

  3. **Run the App**: Start the server with `python app.py` and send a POST request to `/submit`.

  


21.  How would you secure a Flask API?
  - To secure a Flask API:

    1. **Authentication**: Use tokens like JWT or OAuth2 for user authentication.
    2. **Validation**: Validate and sanitize user inputs to prevent injection attacks.
    3. **HTTPS**: Enforce secure connections to encrypt data in transit.
    4. **Rate Limiting**: Limit API requests to prevent abuse.
    5. **Error Handling**: Avoid exposing sensitive details in error messages.
    6. **CORS**: Configure Cross-Origin Resource Sharing (CORS) properly.
    7. **Environment Variables**: Store secrets like API keys securely using `.env`.

    These practices ensure robust API protection!



22.  What is the significance of the Flask-RESTful extension?
  - Flask-RESTful simplifies building RESTful APIs in Flask. It provides tools like resource routing, request parsing, and automatic error handling, streamlining API development and ensuring cleaner, more maintainable code.



23.  What is the role of Flask’s session object?
  - Flask's `session` object is used to store data on a per-user basis during their interaction with your application. It securely stores session data in cookies and allows you to track user-specific information across multiple requests.

  1. **Data Persistence**: It retains user data between requests, such as login status or preferences.
  2. **Security**: Flask encrypts session data using a secret key, ensuring it’s safe from tampering.
  3. **Simplified Access**: Access session data like a dictionary (`session['key'] = value`).

  This makes user-specific data management easy and efficient!

# Practical questions

In [1]:
# 1.  How do you create a basic Flask application
pip install flask

from flask import Flask
app = Flask(__name__)
@app.route('/')
def home():
  return "Welcome to flask"

if __name__ == '__main__':
  app.run(debug=True)

SyntaxError: invalid syntax (<ipython-input-1-b35154b9b65f>, line 2)

In [None]:
# 2.  How do you serve static files like images or CSS in Flask
# should make my_flask_app directory

# i am adding css code here but this code should be in different file with .css extension
body {
    font-family: Arial, sans-serif;
    text-align: center;
    background-color: #f4f4f4;
}

h1 {
    color: #333;
}

img {
    width: 200px;
    border-radius: 10px;
}

# here i am adding html code you should write in html file.
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Static Files in Flask</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Welcome to Flask!</h1>
    <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">
</body>
</html>


#make a app.py file and write this code in that file
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
  return render_template('index.html')

if __name__ == '__main__':
  app.run(debug=True)


#after this run the application in terminal with command
python app.py



In [None]:
# 3.  How do you define different routes with different HTTP methods in Flask?

from flask import Flask, request

app = Flask(__name__)

#route handling Get requests
@app.route('/get-route', methods=['GET'])
def handle_get():
  return "This is a GET request."

#route handling Post requests
@app.route('/post-route', methods=['POST'])
def handle_post():
  data = request.json #extract json data from the request body
  return {"message": f"Recieved: {data}"}

# Route handling both GET and POST requests
@app.route('/multi-route', methods=['GET', 'POST'])
def handle_both():
    if request.method == 'GET':
        return "This is a GET request."
    elif request.method == 'POST':
        data = request.json
        return {"message": f"Received via POST: {data}"}

if __name__ == '__main__':
  app.run(debug=True)

In [None]:
# 4.  How do you render HTML templates in Flask

#to render html in flask, use the render_template() function along with the templates folder to store html files

from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
  return render_template('index.html')

if __name__ == '__main__':
  app.run(debug=True)


#create a html file

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Flask Template</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>
</body>
</html>


In [None]:
# 5.  How can you generate URLs for routes in Flask using url_for?


#python file
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/home')
def home():
  return "Home Page"

with app.test_request_context():
  print(url_for('home'))

@app.route('/user/<username>')
def user_profile(username):
    return f"Profile: {username}"

with app.test_request_context():
    print(url_for('user_profile', username='abhinay'))


print(url_for('home', page=2))  # Output: /home?page=2



In [None]:
# 6.  How do you handle forms in Flask

# creating form in html file

<!DOCTYPE html>
<html lang="en">
<head>
    <title>Form Example</title>
</head>
<body>
    <form action="/submit" method="POST">
        <label for="name">Name:</label>
        <input type="text" id="name" name="name">
        <button type="submit">Submit</button>
    </form>
</body>
</html>


# not writing python file
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/form')
def display_form():
    return render_template('form.html')  # Serve the form

@app.route('/submit', methods=['POST'])
def handle_form():
    name = request.form['name']  # Get input from the form
    return f"Hello, {name}!"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# 7. How can you validate form data in Flask?

#step 1. install flask-wtf
pip install flask-wtf

#step 2. create a form class
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Length

class MyForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired(), Length(min=2, max=30)])
    submit = SubmitField('Submit')

#step 3. use the form in a route
from flask import Flask, render_template
app = Flask(__name__)
app.secret_key = 'your_secret_key'

@app.route('/form', methods=['GET', 'POST'])
def form():
    form = MyForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

#step 4. html file
<form method="POST">
    {{ form.hidden_tag() }}
    {{ form.name.label }} {{ form.name }}
    {% for error in form.name.errors %}
        <span style="color:red;">{{ error }}</span>
    {% endfor %}
    {{ form.submit }}
</form>



In [None]:
# 8.  How do you manage sessions in Flask

# set a secret key
app.secret_key = 'secret_key'

# access and modify session data
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'

@app.route('/set')
def set_session():
    session['username'] = 'Abhinay'
    return 'Session data set!'

@app.route('/get')
def get_session():
    username = session.get('username', 'Guest')
    return f'Logged in as {username}'

@app.route('/clear')
def clear_session():
    session.clear()
    return 'Session cleared!'
# run the app in terminal

In [None]:
# 9.  How do you redirect to a different route in Flask


from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return redirect(url_for('welcome'))  # Redirects to the 'welcome' route

@app.route('/welcome')
def welcome():
    return "Welcome to Flask!"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# 10.  How do you handle errors in Flask (e.g., 404)
#in flask, you can handle errors like 404 not found by defining custom error handlers using the @app.errorhandler() decorator.

from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def handle_404(error):
    return render_template('404.html'), 404  # Custom HTML page for 404 error

@app.errorhandler(500)
def handle_500(error):
    return "Internal Server Error", 500

@app.route('/')
def home():
    return "Welcome to Flask!"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# 11.  How do you structure a Flask app using Blueprints

# step1. create the blueprint
from flask import Blueprint

auth_bp = Blueprint('auth', __name__)

@auth_bp.route('/login')
def login():
    return "Login"

@auth_bp.route('/register')
def register():
    return "Register Page"

#organize files structure your project directory for modularity


from flask import Flask
from auth.routes import auth_bp
from main.routes import main_bp

app = Flask(__name__)
app.register_blueprint(auth_bp, url_prefix='/auth')
app.register_blueprint(main_bp)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# 12.  How do you define a custom Jinja filter in Flask
#step 1 create the flask application define the custom jinja filter in app.py file

from flask import Flask, render_template

# Define the custom filter
def reverse_string(s):
    return s[::-1]

app = Flask(__name__)

# Register the filter
app.jinja_env.filters['reverse'] = reverse_string

@app.route('/')
def home():
    return render_template('example.html')

if __name__ == '__main__':
    app.run(debug=True)


#step 2. ceate the template file
<!DOCTYPE html>
<html lang="en">
<head>
    <title>Custom Jinja Filter</title>
</head>
<body>
    <p>{{ "Flask Custom Filter" | reverse }}</p>
</body>
</html>


In [None]:
# 13.  How can you redirect with query parameters in Flask

from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page!"

@app.route('/redirect-with-params')
def redirect_with_params():
    # Redirect to the 'target' route with query parameters
    return redirect(url_for('target', param1='value1', param2='value2'))

@app.route('/target')
def target():
    # Access query parameters using `request.args`
    param1 = request.args.get('param1')
    param2 = request.args.get('param2')
    return f"Received query parameters: param1={param1}, param2={param2}"

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#14.  How do you return JSON responses in Flask
from flask import Flask, jsonify

app = Flask(__name__)

# Using jsonify()
@app.route('/jsonify-example')
def jsonify_example():
    response = {"message": "Hello, Flask!", "status": "success"}
    return jsonify(response)

# Returning JSON directly
@app.route('/manual-json')
def manual_json():
    response = {"message": "Hello, Flask!", "status": "success"}
    return response, 200  # Include status code if needed

if __name__ == '__main__':
    app.run(debug=True)


In [2]:
# 15.  How do you capture URL parameters in Flask?
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def user_profile(username):
    return f"Welcome, {username}!"

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f"Post ID: {post_id}"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat
