# Restful API & Flask
1. What is a RESTful API?
- A RESTful API (Representational State Transfer API) is a way for different software systems to communicate over the internet using the HTTP protocol. It's widely used in web development to allow client applications (like web browsers or mobile apps) to interact with servers.

2. Explain the concept of API specification?
- An API specification is a detailed blueprint or contract that defines how an API behaves. It tells developers what endpoints are available, what requests can be made to those endpoints, what data should be sent or received, and what responses to expect.

3. What is Flask, and why is it popular for building APIs?
- Flask is a lightweight web framework written in Python. It is used to build web applications, including APIs. It is popular because it is simple to use, easy to learn, and does not require a lot of setup. With Flask, developers can quickly create and test small projects or APIs. It supports creating RESTful APIs using simple route definitions. Flask is also flexible, meaning you can choose which tools and libraries to add based on your project’s needs. Its large community and many available extensions make it a good choice for beginners and professionals.

4. What is routing in Flask?
- Routing in Flask means connecting a URL with a function. When someone visits a specific URL in a web browser, Flask checks the route and runs the function linked to it. That function returns something, like text or a webpage, which is then shown in the browser. For example, if someone visits /hello, and you have set up a route for that, Flask will call the function linked to /hello and show its result. Routing helps organize and handle different pages or actions in a web application.

5. How do you create a simple Flask application?
- To create a simple Flask application:

First, install Flask by running pip install Flask in your terminal.

Then, create a Python file (for example, app.py) and write the following code:

python code:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)
Now, run the file using the command python app.py.

Open your web browser and go to http://127.0.0.1:5000/. You will see the message "Hello, Flask!"

6. What are HTTP methods used in RESTful APIs?
- ChatGPT said:
HTTP methods used in RESTful APIs are actions that define what the API should do with the resource. The main methods are:

GET: Used to read or retrieve data from the server.

POST: Used to create a new resource on the server.

PUT: Used to update an existing resource completely.

PATCH: Used to update part of a resource.

DELETE: Used to remove a resource from the server.

Each method is used depending on the operation needed, and they help keep the API organized and clear.

7. What is the purpose of the @app.route() decorator in Flask?

The @app.route() decorator in Flask is used to bind a specific URL path to a function. This means when a user visits that URL in the browser, the associated function will run and return a response. It helps define routes or endpoints in the web application. For example, @app.route("/") is used to define what happens when someone visits the home page of the website.

8. What is the difference between GET and POST HTTP methods?
- The GET method is used to request data from a server. It sends data through the URL and is mainly used for retrieving information. It is visible in the address bar and should not be used for sending sensitive data.

The POST method is used to send data to the server, usually when creating or submitting something like a form. It sends data in the body of the request, so it is not visible in the URL and is safer for sending sensitive or large amounts of data.

9. How do you handle errors in Flask APIs?
- In Flask APIs, errors can be handled using error handlers and try-except blocks. You can use the @app.errorhandler() decorator to define custom responses for specific error codes like 404 (Not Found) or 500 (Internal Server Error). This helps in showing a clear message when something goes wrong. You can also use try and except blocks in your routes to catch specific errors during code execution and return proper messages with status codes using return statements. This makes your API more user-friendly and easier to debug.

10. How do you connect Flask to a SQL database?
- To connect Flask to a SQL database, you typically use an extension like Flask-SQLAlchemy. First, install it using pip install flask-sqlalchemy. Then, in your Flask app, you import and configure it with the database URI (like for SQLite or MySQL). For example:

python code:
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///mydatabase.db'
db = SQLAlchemy(app)
After setting it up, you can define models (tables) as Python classes and use db.session to add, update, or delete records in the database.

11. What is the role of Flask-SQLAlchemy?
- Flask-SQLAlchemy is an extension for Flask that makes it easier to work with SQL databases. It provides a simple way to define tables using Python classes, handle database connections, and perform operations like inserting, updating, and deleting records. It combines Flask with SQLAlchemy, a powerful database toolkit, allowing developers to use an object-oriented approach for database interactions instead of writing raw SQL queries. This helps in writing cleaner and more maintainable code.

12. What are Flask blueprints, and how are they useful?
- Flask blueprints are a way to organize a Flask application into smaller, reusable modules. Instead of writing all your routes and logic in a single file, you can group related parts of the application (like user routes, admin routes, etc.) into separate blueprints. This makes the code more organized, easier to maintain, and allows developers to work on different parts of the application independently. Blueprints also help in scaling the application by keeping the structure clean and modular.

13. What is the purpose of Flask's request object?
- Flask's request object is used to access data sent by the client to the server. It allows you to get information like form data, JSON data, URL parameters, headers, cookies, and the HTTP method (GET, POST, etc.). This object helps the server understand what the client is asking for and respond accordingly. For example, if a user submits a form, you can use request.form to get the submitted data.

14. How do you create a RESTful API endpoint using Flask?
- To create a RESTful API endpoint using Flask, you first need to set up a Flask app and define routes that respond to specific HTTP methods like GET or POST. Each route acts as an endpoint.

15.  What is the purpose of Flask's jsonify() function?
- The purpose of Flask's jsonify() function is to convert Python data (like dictionaries or lists) into JSON format and send it as a response to the client. It also automatically sets the correct content type (application/json) in the HTTP response header. This makes it easier to return structured data in a format that web or mobile apps can easily understand and use.

16.  Explain Flask’s url_for() function
- Flask’s url_for() function is used to build a URL for a specific function (route) in your app. Instead of writing the URL path manually, you pass the name of the function, and url_for() returns the correct URL. This is helpful because if you ever change the route later, you won’t need to update the URL everywhere—just the function name stays the same.

17. How does Flask handle static files (CSS, JavaScript, etc.)
- Flask handles static files like CSS, JavaScript, and images using a folder named static. By default, Flask looks for a folder called static in the root directory of your project. You place all your static files inside this folder.

18.  What is an API specification, and how does it help in building a Flask API
- An API specification is a detailed document or format that describes how an API should work. It defines the available endpoints (URLs), what data they accept (like JSON or form data), what HTTP methods they use (GET, POST, etc.), and what responses they return. It may also include error messages and authentication rules.

In building a Flask API, an API specification acts like a plan or guide. It helps developers clearly understand what needs to be built, keeps the team on the same page, and makes it easier to test and document the API. Tools like Swagger or OpenAPI are often used to write these specifications.

19.  What are HTTP status codes, and why are they important in a Flask API?
- HTTP status codes are numbers returned by a web server to show the result of a request made by a client (like a browser or mobile app). These codes help the client know whether the request was successful, failed, or needs correction.

In a Flask API, they are important because they give clear information about what happened with the request. For example:

200 OK means the request was successful.

201 Created means something was successfully created (like a new user).

400 Bad Request means the client sent something wrong.

404 Not Found means the requested resource doesn’t exist.

500 Internal Server Error means something went wrong on the server.

20.  How do you handle POST requests in Flask?
- In Flask, you handle POST requests by defining a route that accepts the POST method using the methods argument in the @app.route() decorator. Inside the function, you can use the request object to get the data sent by the client.

21. How would you secure a Flask API?
- To secure a Flask API, you can follow several important steps:

Use Authentication: Require users to log in or provide tokens (like API keys or JWT tokens) to access certain routes. This prevents unauthorized access.

Authorization: Make sure only users with the right permissions can access specific resources (e.g., admin-only routes).

Input Validation: Always validate and sanitize input data to prevent attacks like SQL injection or cross-site scripting (XSS).

Use HTTPS: Ensure data is sent securely by enabling HTTPS on your server.

Limit Request Rates: Use rate limiting to prevent abuse or denial-of-service attacks.

Hide Sensitive Information: Don’t expose error details, passwords, or secret keys in responses.

Use Flask Extensions: Tools like Flask-JWT-Extended, Flask-Limiter, and Flask-Login help manage security features easily.

22. What is the significance of the Flask-RESTful extension?
- The Flask-RESTful extension is used to simplify the process of building RESTful APIs with Flask. It provides tools that help organize code better and handle common tasks easily.

The main benefits of Flask-RESTful are:

Cleaner Code Structure: It lets you create resources using classes instead of functions, making code easier to manage.

Automatic Handling of HTTP Methods: You can define methods like get(), post(), put(), and delete() inside a class to handle API requests.

Better Error Handling: It provides helpful tools to return proper error messages and status codes.

Support for Request Parsing: It includes tools to validate and parse incoming request data easily.

23.  What is the role of Flask’s session object?
- Flask’s session object is used to store information about a user across multiple requests, like when they log in and move from one page to another. It keeps user-specific data temporarily, such as usernames, login status, or preferences.

This data is stored on the server side but sent to the user in the form of a secure cookie, which is encrypted using a secret key so that users can't modify it.

For example, you can do:

python code:
from flask import session

# Set a value in session
session['username'] = 'john'

# Get a value from session
name = session.get('username')

The session helps in creating personalized and secure user experiences in web applications.

#Practical

In [2]:
# How do you create a basic Flask application?
'''Install Flask (if not already installed):

bash
Copy code
pip install Flask
Create a file named app.py (or any name you like)

Write the following code in app.py:'''
from flask import Flask

# Create a Flask application
app = Flask(__name__)

# Define a route
@app.route('/')
def home():
    return "Hello, Flask! This is your first Flask app."

# Run the application
if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [4]:
# How do you serve static files like images or CSS in Flask
'''To serve static files like images, CSS, or JavaScript in Flask, you need to use a folder named static. Flask automatically looks for static files in this folder.


1. Create a project folder structure like this:
cpp
Copy code
your_project/
│
├── app.py
├── static/
│   ├── style.css
│   └── logo.png
└── templates/
    └── index.html
2. Use the static files in your HTML (inside templates/index.html):
<!DOCTYPE html>
<html>
<head>
    <title>Static Example</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Hello from Flask!</h1>
    <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">
</body>
</html>

3. Flask app.py code:

from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)



SyntaxError: incomplete input (ipython-input-4-680485263.py, line 2)

In [7]:
#  How do you define different routes with different HTTP methods in Flask?
'''In Flask, you can define different routes for different URLs and assign specific HTTP methods like GET, POST, PUT, or DELETE to each route using the @app.route() decorator.'''
from flask import Flask, request

app = Flask(__name__)

@app.route('/', methods=['GET'])
def home():
    return "This is a GET request"

@app.route('/submit', methods=['POST'])
def submit():
    return "This is a POST request"

@app.route('/update', methods=['PUT'])
def update():
    return "This is a PUT request"

@app.route('/delete', methods=['DELETE'])
def delete():
    return "This is a DELETE request"

if __name__ == '__main__':
    app.run(debug=True)

'''
/ responds only to GET requests.

/submit handles POST requests.

/update handles PUT requests.

/delete handles DELETE requests.'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


'\n/ responds only to GET requests.\n\n/submit handles POST requests.\n\n/update handles PUT requests.\n\n/delete handles DELETE requests.'

In [8]:
#  How do you render HTML templates in Flask?
'''To render HTML templates in Flask, you use the render_template() function and store your HTML files inside a folder named templates. Flask looks for HTML templates in this folder by default.
1. Project Structure:
pgsql
Copy code
your_project/
│
├── app.py
└── templates/
    └── index.html'''

# 2. Create templates/index.html:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Template</title>
</head>
<body>
    <h1>Welcome to My Website</h1>
    <p>This page is rendered using Flask and HTML template.</p>
</body>
</html>

# 3. app.py Code:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

SyntaxError: invalid syntax (ipython-input-8-79768137.py, line 13)

In [10]:
#  How can you generate URLs for routes in Flask using url_for?
'''In Flask, you can use the url_for() function to generate URLs dynamically for your routes based on the function names. This is useful because it avoids hardcoding URLs and helps keep your code flexible and clean
Example Usage of url_for()
Step 1: Basic Flask App'''
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'This is the Home Page'

@app.route('/about')
def about():
    return 'This is the About Page'

@app.route('/link')
def link():
    return f'<a href="{url_for("about")}">Go to About Page</a>'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [11]:
# How do you handle forms in Flask?
'''To handle forms in Flask, you typically use HTML forms in your templates and handle the submitted data in your Flask route using the request object.

1. Project Structure
css
your_project/
├── app.py
└── templates/
    └── form.html
2. Create form.html
'''
<!DOCTYPE html>
<html>
<head>
    <title>Form Example</title>
</head>
<body>
    <h2>Enter Your Name</h2>
    <form method="POST" action="/submit">
        <input type="text" name="username" placeholder="Your Name">
        <button type="submit">Submit</button>
    </form>
</body>
</html>
# app.py Code
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/')
def index():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form['username']
    return f"Hello, {name}!"

if __name__ == '__main__':
    app.run(debug=True)

SyntaxError: invalid syntax (ipython-input-11-2353379597.py, line 12)

In [13]:
#  How can you validate form data in Flask?
'''In Flask, you can validate form data in two ways:

1. Manual Validation (Basic Method)
You directly check form values using request.form and write simple Python conditions.

Example:
'''
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/')
def form():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form['username']
    if not name:
        return "Name is required!"
    return f"Hello, {name}!"

if __name__ == '__main__':
    app.run(debug=True)
Here, we simply check if the user has entered a name or not.

'''2. Using Flask-WTF (Advanced & Recommended for Larger Forms)
Flask-WTF provides built-in form validation and CSRF protection.

Steps:
Install Flask-WTF:
'''
pip install flask-wtf

#Example:

from flask import Flask, render_template, redirect
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired

app = Flask(__name__)
app.secret_key = 'secretkey'

class NameForm(FlaskForm):
    name = StringField('Enter your name', validators=[DataRequired()])
    submit = SubmitField('Submit')

@app.route('/', methods=['GET', 'POST'])
def index():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)

# form.html Template:

<form method="POST">
    {{ form.hidden_tag() }}
    {{ form.name.label }} {{ form.name }}
    {{ form.submit }}
</form>


SyntaxError: expected 'else' after 'if' expression (ipython-input-13-3424331036.py, line 26)

In [14]:
# How do you manage sessions in Flask?
'''In Flask, sessions are used to store information about a user across multiple requests (like login status, user ID, etc.). Flask stores session data on the server-side (by default using secure cookies).

Basic Usage of Sessions in Flask
 Step 1: Import and Set Secret Key
 '''
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required to use sessions
'''Step 2: Set and Get Session Data
'''
@app.route('/')
def index():
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in'

@app.route('/login', methods=['POST', 'GET'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']
        return redirect(url_for('index'))
    return '''
        <form method="post">
            <p><input type=text name=username>
            <p><input type=submit value=Login>
        </form>
    '''

@app.route('/logout')
def logout():
    session.pop('username', None)  # Remove data from session
    return redirect(url_for('index'))

In [15]:
# How do you redirect to a different route in Flask?
'''In Flask, you can redirect to a different route using the redirect() and url_for() functions.

Example: Redirecting from one route to another
'''
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "This is the home page."

@app.route('/login')
def login():
    return "Please login here."

@app.route('/go-to-login')
def go_to_login():
    return redirect(url_for('login'))  # Redirects to /login

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [16]:
#  How do you handle errors in Flask (e.g., 404)?
'''In Flask, you can handle errors like 404 Not Found, 500 Internal Server Error, etc., using error handlers. This helps you show a custom message or HTML page when an error occurs.

Example: Handling 404 Error
'''
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the home page."

# Error handler for 404
@app.errorhandler(404)
def page_not_found(e):
    return "Oops! Page not found (404)", 404

if __name__ == '__main__':
    app.run(debug=True)

In [17]:
# How do you structure a Flask app using Blueprints?
'''To structure a Flask app using Blueprints, you divide your application into smaller, organized modules. Each Blueprint handles a set of related routes, views, and templates. This makes your code cleaner, reusable, and easier to manage, especially for larger apps.

Step-by-Step: How to Use Blueprints in Flask
Folder Structure:

myapp/
│
├── app.py
├── home/
│   ├── __init__.py
│   └── routes.py
1. Create the Blueprint in home/routes.py
'''
from flask import Blueprint

home_bp = Blueprint('home', __name__)

@home_bp.route('/')
def home():
    return "This is the Home Page"

'''
Register the Blueprint in app.py
'''
from flask import Flask
from home.routes import home_bp

app = Flask(__name__)
app.register_blueprint(home_bp)

if __name__ == '__main__':
    app.run(debug=True)

'''
3. (Optional) Use a URL prefix
If you want all routes inside the blueprint to start with /home, do this:
'''
app.register_blueprint(home_bp, url_prefix='/home')

# Then visiting /home/ will show the home page.

ModuleNotFoundError: No module named 'home'

In [20]:
# How do you define a custom Jinja filter in Flask?
'''
In Flask, you can define a custom Jinja filter to add your own functionality inside HTML templates. A Jinja filter is a function that modifies data before it's displayed in the template.

Steps to define a custom Jinja filter:
Create the function in your Python code.

Register it with Flask using app.template_filter() or app.add_template_filter().

Example:
'''
from flask import Flask, render_template

app = Flask(__name__)

# Step 1: Create the filter function
def reverse_string(s):
    return s[::-1]

# Step 2: Register the filter
app.add_template_filter(reverse_string, 'reverse')

# Route using a template
@app.route('/')
def home():
    return render_template('index.html', name="Flask")

if __name__ == '__main__':
    app.run(debug=True)

# Usage in index.html:

# <!-- templates/index.html -->
<!DOCTYPE html>
<html>
<body>
  <h1>Original: {{ name }}</h1>
  <h2>Reversed: {{ name | reverse }}</h2>
</body>
</html>



SyntaxError: invalid syntax (ipython-input-20-1237921009.py, line 35)

In [21]:
# How can you redirect with query parameters in Flask?
'''
In Flask, you can redirect with query parameters by using the redirect() and url_for() functions together, and passing the query parameters as keyword arguments.

Example:
'''
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('greet', name='Paresh', age=25))

@app.route('/greet')
def greet():
    name = request.args.get('name')
    age = request.args.get('age')
    return f"Hello, {name}! You are {age} years old."

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [22]:
# How do you return JSON responses in Flask
'''In Flask, you can return JSON responses using the jsonify() function. This function automatically converts Python dictionaries (or lists) into a proper JSON response with the correct content type.

Example:
'''
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/data')
def data():
    info = {
        'name': 'Paresh',
        'age': 25,
        'location': 'India'
    }
    return jsonify(info)

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [None]:
# How do you capture URL parameters in Flask?
'''
In Flask, you can capture URL parameters by defining them inside angle brackets (< >) in your route. These parameters are passed to your view function as arguments.

Example:
'''
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f"Hello, {username}!"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat
