# Virtual Enviroment

## Create VE:

in **terminal**:
<pre>
- python -m venv (directory name).
</pre>
directory name is usually **.venv**

In [None]:
!python -m venv .venv

## Activate it:

#### in Windows:

In [None]:
!.\".venv"\Scripts\activate

#### in Linux:

In [None]:
!source .venv/bin/activate

## Deactivating it:

In [None]:
!deactivate

## Saving & Loading Environment Dependencies:

#### Saving:

In [None]:
!pip freeze > requirements.txt

#### Installing from a file:

In [None]:
!pip freeze -r requirements.txt

## Deleting VE:

In [None]:
!rm -rf ".venv"

## Set Enviroment Variables:
#### **In Comand Prompt:**
we use **set** command.<pre>
- **FLASK_APP**:which directs to our python files.
- **FLASK_RUN_PORT**:to change the **port**,default is 5000.
- **FLASK_DEBUG**: to turn on(1) or off(0) debug mode which is used in development only.

# Flask Project Structure:

Structure<pre>
_**your_app/**
_    app.py     : the **app main** file.
_    **templates/** : containts **Templates files** (eg:HTML).
_    **static/**    : containts **Styling files** (eg:PNG).
_       **css/** : contains **CSS files**.
_       **img/** : contains **Images**.
_       **js/** : contains **Javascript files**.

# Flask Tutorial

## Create Flask App:
you can **run it in terminal** using **flask run** command.

In [None]:
from flask import Flask
app = Flask(__name__,template_folder='html_files',static_folder='static')


- You can specify the templates folder and static folder.
- **\_\_name\_\_**  is magical variable which points to our local file.

#### Configuration:
**app.config** is a dictionary in Flask where you can store configuration variables for the app.<br>
Flask extenstions like SQLAlchemy look for specific keys in this dictionary to configure themselves.

We can save configuration in separated file :

In [None]:
# config.py
SECRET_KEY = 'as48#%^8~+~09d8as8@)#@d4asd56@#^&*as45d)_#%49)((a'
SQLALCHEMY_DATABASE_URI = 'sqlite:///./usersdb.db'
RECAPTCHA_PUBLIC_KEY = '6LevelUqAAAAACcUUls4-j2BYltwNj6O06N41NUH'
RECAPTCHA_PRIVATE_KEY = '6LevelUqAAAAAATW589QQhU8V4cGzUV4zPWiZhN5'

In [None]:
import config
app = Flask(__name__)
# Load configurations from config.py
app.config.from_object(config)

## Routes & URLs:

### Routes:
are the pages in the webapp.<br>
We specify the **url** of page using the decorator **app.route** for a **function** which it will handle the all requests that are ariving to that url.
#### **Notes:**<pre>
- All URLs must start with **/**.
- Home URL is **/**.

In [None]:
# Add the Home Page
@app.route("/")
def home():
    return 'Welcome To Our Simple Webapp'

### Dynamic Routes:
for example in facebook, each user profile has its unique page<br>
so the developers of facebook ,when a new user sign up, they create new route ? of course no.<br>
The dynamic route is used, which **takes input** using **\<type:input\>** and new page is directly used for it.<br>
-**Default Type** is string.
#### **Note**:<pre>
- if the input value type is not same as specific type, no url will appear.

In [None]:
# Add Dynamic About Page
@app.route("/about/<username>")
def about(username):
    return f"<h1>Hello {username}<h1>"

### URL Parameters:
in some websites in the url we see for example: **?username=dsa&password=dasda**,which is insecure and used for only unimportant data.<br>
here username & password are called **url parameters**<br>
-We handle them using **flask request package**

In [None]:
from flask import request
@app.route("/login")
def login():
    # Get the parameters
    username = request.args.get('username')
    password = request.args['password']
    
    # Just priting parameters
    return f"<h1>username = {username}\npassword = {password}<h1>"

The parameters are saved in dictionary.<br>
In last example the dict should be:
**{"username":"dsa","password":"dasda"}**

If you miss or ignore a param you face **BadRequestKeyError**.

### Request Methods:
Flask supports several **HTTP request methods**, allowing you to handle **different types** of request:<br><pre>
- **GET**: 
    - **Purpose**: Retreives data from the server.
    - **Usage**: The most common request often used for fetching data(eg:visiting a web page).
- **POST**:
    - **Purpose**: Sends data to the server,often used for creating or updating resources.
    - **Usage**: Common for submitting forms or uploading files.
- **PUT**:
    - **Purpose**: Updates an existing resource on the server.
    - **Usage**: Used for updating data, often with APIs.
- **DELETE**:
    - **Purpose**: Delete a resource from the server.
    - **Usage**: Used to delete records or resources.
- **PATCH**:
    - **Purpose**: Partially updates a resource.
    - **Usage**: Useful for making small changes without replacing the entire resource.

We specify the methods in the **methods** argument of the **@app.route** decorator.<br>
The default method is **GET**.

In [None]:
@app.route('hello',methods=['GET','POST'])
def hello():
    if request.method == 'GET':
        # Do something
        pass
    else: # Which is here POST method
        # Do something
        pass

### Status Codes:
HTTP status code indicate the **result of HTTP request**. Flask allows you to set custom status codes to indicate the success, failure, or type of response.
</pre>
#### **Summary**:<pre>
- **1xx**: Informational.
- **2xx**: Success.
- **3xx**: Redirection required.
- **4xx**: Client-side error.
- **5xx**: Server-side error.
##### **Custom Status Codes:**<pre>
- **200 OK**: Request was succeful(default for GET).
- **201 Created**: The request was succeful, and a new resource was created.
- **400 Bad Request**: The request was invalid or cannot be processed.
- **401 Unauthorized**: Authenticatoin is required ir has failed.
- **404 Not Found**: The requested resource could not be found.
- **500 Internal Server Error**: A generic server error occured.

In [None]:
@app.route('/success')
def success():
    return 'Success',200 # Custom Status Code for OK

### Custome Responses:
We can create custom responses by returning more than just a **string or JSON**. You can return a **response object** that includes a **custom status code**, **headers** , or other details.<br>
This allows you to customize how the server responds to specific requests.

**jsonify** is a Flask Utility that converts **Python data structure** into **valid JSON response**.

In [None]:
from flask import jsonify,make_response

@app.route('/custom')
def custom():
    # Creating a Custom JSON response with 201 (Created) Status Code
    response = make_response(jsonify('Hello','What\'s up'))
    response.status_code = 201
    # Custom Headers
    response.headers['Custom-Header'] = 'CustomValue'
    return response

### Custom Response Structure:<pre>
- **Response Body:** You can return custom content (like JSON or HTML).
- **Custom Headers:** Add custom headers to the response.
- **Custom Status Code:** Set an appropriate HTTP status code.

## Templates:

We **save** templates in folder usually called **templates** or specify the directory:

In [None]:
app = Flask(__name__,template_folder='html_files')

### Rendering HTML Templates:


using **render_template**<br>
##### Params:<pre>
- **Template Name**: the name of  HTML or JSON file.
- **Context**: the Dynamic Variables to make avaible in template.

In [None]:
from flask import render_template
# Add the Home Page
@app.route("/")
def home():
    name = 'JOHN'
    ages = [10,5,40,31,26,12]
    return render_template('home.html',name=name,ages=ages)

We use jinja2 engine in the template file to accept inputs.

### Jinja2 Templating Language:<pre>

#### Syntax:
- **Expressing Statement**: {{ variable_name }}
- **Control Structures(if,for,while,..)**: {% for item in my_list %} --> do something --> {% endfor %}
- **Block**: {% block 'block_name' %} default value {% endblock %}.
- **Extends**: {% extends "base.html" %}
- **Filters**: {{ variable_name|filter1|filter2|... }}.
- **Define Temporarily Variable**: {% with %}
</pre>

**Example:**<br>
the HTML code for last python code:<pre>

In [None]:
<body\>
    <ul\>
        {% for age in ages %}
         <li\>{{ age }}</li\>
        {\% endfor %}
    </ul\>
 </body\>

#### Extending(Inhereting) Templates:
for example all the templates in the app have the same navigation or same head section, we dont wanna rewrite it everytime.<br>
So we **keep only** the **unique content** and **everything else is same** as other files.<br>


##### **Steps:**
1- We first **create** the **base template** which other files inherent from it.<br>
2- Write in it the **constant content**.<br>
3- Specify int it the **dynamic parts** using **block statement**.<br>
4- In other files which will inheret from the base file,use **extends statement**.<br>
5- Then use **block statement** to specify the values of the **blocks** are specific in base template. 

##### **Example:**

<h5>Base Template:</h5>

In [None]:
<html>
    <head>
        <title>{% block title %}Home{% endblock %}</title>
    </head>
    <body>
        <h1> This is ALWAYS HERE</h1>
        {% block content%}{% endblock%} 
    </body>
</html>

<h5>Other Template:</h5>

In [None]:
{% extends "base_template.html" %}
{% block content %}
        <h1>Hello {{ name }}</h1>
        <ul>
            {% for item in my_list %}
            <li>{{item}}</li>
            {% endfor %}
        </ul>
{% endblock %}

In this Example,other files have inheret everything in the base temp except <title\>, <body\>.

#### Filters:
are used to **modify** the output of variables or expressions.<br>
They are applied using the **pipe** (|) symbol.<br>
**Some Common Filters:**<br>
- lower.<br>
- length.<br>
- replace('old','new')<br>
...

We can create custom filters to apply custom operators.

In [None]:
@app.template_filter('reverse_string')
def reverse_string(s):
    return s[::-1]

### Dynamic URLs:
**url_for** utility is used to **dynamically generate URLs** for routes defined in your application.It helps **avoid hardcoding URLs**,making the app more flexible and maintainable.

In [None]:
from flask import url_for
@app.route('/user/<username>')
def show_user(username):
    return f"{username}"

print(url_for('show_user',username='john'))

In Jinja2:

In [None]:
{{ url_for('show_user') }}

### Redirect:
**redirect** utility is used to redirect a client to a **different URL**.

In [None]:
from flask import redirect
@app.route('login',methods=['GET','POST'])
def login():
    if request.method == 'GET':
        return render_template('login.html')
    else: # POST method
        return redirect(url_for('welcome'))

## Forms & Json:

### Handling Forms:
**Two Methods:**<br>
- Plain Html Forms.
- Flask-WTF/WTForms.<br>

**When to Use Them:** <br>
<table>
    <tr>
        <th></th>
        <th>Plain HTML Forms</th>
        <th>Flask-WTF/WTForms</th>
    </tr>
    <tr>
        <th>Simplicity</th>
        <td>Form is extremely simple.</td>
        <td>Need more complex form handling.</td>
    </tr>
    <tr>
        <th>Validation</th>
        <td>Rely solely on client-side validation.</td>
        <td>Forms require server-side validation.</td>
    </tr>
    <tr>
        <th>Security</th>
        <td>Not dealing with sensitive data and security isn’t a concern.</td>
        <td>Reverse.</td>
    </tr>
    <tr>
        <th>Maintainess</th>
        <td>Reverse.</td>
        <td>Want to keep your codebase clean, modular, and easy to maintain as your application grows.</td>
    </tr>
</table>

**Conclusion:**
Flask-WTF and WTForms provide a higher level of convenience, security, and maintainability than plain HTML forms.

#### **First Method(Plain HTML Forms):**
we use **request.form** to accept inputs to server.<br>
HTML Code (Example):

In [None]:
<form method="POST" action = '{{ url_for("about") }}'>
    <label for="username">Username</label>
    <input type="text" name="username"><br>
    <label for="password">Password</label>
    <input required type="password" name="password"><br>
    <input type="submit" value='login'>
</form>

in **input tags**, the **name argument** specifys the key name in the request form args.

In [None]:
@app.route('/login',method = ['GET','POST'])
def login():
    if request.method == 'GET':
        return render_template('login.html')
    elif request.method == 'POST':
        # For optional inputs
        if 'username' in request.form.keys():
            username = request.form.get('username')
        # For required inputs
        password = request.form.get('password')

Or ,you can separate the process.<br>
Page for **GET** method and has the form inside it but **action argument** directed to the other page which only uses **POST** method to accept args.<br>


#### **Second Method(Flask-WTF/WTForms):**
required packages:
<pre>
- Flask-WTF</pre>
We use new python file we call it **forms.py** for handling forms only.<br><br>
Flask-WTF needs a **secret key** for **CSRF** protection

##### **Common Fields**:
##### Basic Fields:<pre>
- **StringField**: For text input.
- **TextAreaField**: For multi-line text input.
- **PasswordField**: For password input (masked).
- **IntegerField**: For integer input.
- **FloatField**: For floating-point input.
- **DecimalField**: For decimal numbers with a fixed precision.
- **BooleanField**: For a checkbox (True/False).
- **SelectField**: For dropdown selection.
- **SelectMultipleField**: For multiple selections from a dropdown.
- **FileField**: For file uploads.
- **DateField**: For date input.
- **TimeField**: For time input.
- **DateTimeField**: For date and time input.</pre>
##### Special Fields:<pre>
- **EmailField**: For email input.
- **URLField**: For URLs.
- **TelField**: For telephone numbers.
- **ColorField**: For color input.
- **HiddenField**: For hidden inputs.</pre><br>

##### **Common Validators:**
##### Data Validators:<pre>
- **DataRequired**: Ensures the field is not empty.
- **Length**: Validates the length of the input (min and max).
- **Email**: Validates that the input is a valid email address.
- **URL**: Validates that the input is a valid URL.
- **NumberRange**: Validates that the input is within a specified range.
- **Optional**: Marks the field as optional.</pre>
##### Type Validators:<pre>
- **AnyOf**: Validates that the input matches one of the specified values.
- **NoneOf**: Validates that the input does not match any of the specified values.
- **EqualTo**: Validates that the input matches another field's value (commonly used for password confirmation).</pre>
##### Custom Validators:
You can create custom validators by defining a **function** and raising **ValidationError** for invalid input.

**1-Create a Form Class:**<br> In **forms.py**, define your forms using WTForms. Each **form class** corresponds to a form on the frontend, and each **form field** corresponds to an input in the HTML form.

In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, PasswordField, SubmitField
from wtforms.validators import DataRequired, Length, Email, EqualTo

class RegistrationForm(FlaskForm):
    username = StringField('Username', validators=[DataRequired(), Length(min=2, max=20)])
    email = StringField('Email', validators=[DataRequired(), Email()])
    password = PasswordField('Password', validators=[DataRequired()])
    confirm_password = PasswordField('Confirm Password', validators=[DataRequired(), EqualTo('password')])
    submit = SubmitField('Sign Up')


**2-Render the Form in HTML:**<br> Now, create the **HTML template** that will **render the form**.

In [None]:
<form method="POST" action="">
    {{ form.hidden_tag() }}
    
    <p>
        {{ form.username.label }}<br>
        {{ form.username(size=20) }}<br>
        {% for error in form.username.errors %}
            <span style="color: red;">[{{ error }}]</span>
        {% endfor %}
    </p>

    <p>
        {{ form.email.label }}<br>
        {{ form.email(size=20) }}<br>
        {% for error in form.email.errors %}
            <span style="color: red;">[{{ error }}]</span>
        {% endfor %}
    </p>

    <p>
        {{ form.password.label }}<br>
        {{ form.password(size=20) }}<br>
        {% for error in form.password.errors %}
            <span style="color: red;">[{{ error }}]</span>
        {% endfor %}
    </p>

    <p>
        {{ form.confirm_password.label }}<br>
        {{ form.confirm_password(size=20) }}<br>
        {% for error in form.confirm_password.errors %}
            <span style="color: red;">[{{ error }}]</span>
        {% endfor %}
    </p>

    <p>{{ form.submit() }}</p>
</form>


**size** parameter specifies the width of the input field.

**3-Handling Form Submission and Validation**<br>
In **app.py**, update your route to handle both **GET** (to show the form) and **POST** (to handle the form submission) requests.

In [None]:
from forms import RegistrationForm

@app.route('/register', methods=['GET', 'POST'])
def register():
    form = RegistrationForm()
    if form.validate_on_submit():
        flash(f'Account created for {form.username.data}!', 'success')
        return redirect(url_for('index'))
    return render_template('form.html', form=form)

**form.validate_on_submit()**: This will check if the form was submitted (**POST request**) and **validate** the input fields based on the validators specified in the **form class**.

### Handling Files:

#### File Upload:
we use **request.files** to accept files to server.
HTML Code (Example):

In [None]:
<form method='POST' action="{{ url_for('upload') }}" enctype='multipart/form-data'>
    <input type='file' name='file' accept='text/plain'>
    <input type='submit' value='upload file'>
</form>

-the **enctype arg** in form tag specifys that we need only files.<br>
-to accept only specific file types use **accept arg** in input tag, in this example it acceps only plain text files. 

In [None]:
@app.route('/upload',methods=['POST'])
def upload():
    file = request.files['file']
    # Show content of this txt file
    return jsonify(file.read().decode())

#### File Download:
we use **send_file** & **send_from_directory** utilities for downloading files.<br>
##### **Comparison**:
<table>
    <tr>
        <th></th>
        <th>send_file</th>
        <th>send_from_directory</th>
    </tr>
    <tr>
        <th>Purpose</th>
        <td>Sends a specific file to the client from a givent file path</td>
        <td>Sends a file from a specified directory on the server.</td>
    </tr>
    <tr>
        <th>Use</th>
        <td>Used when you want to send a single file, such as an image,PDF,...</td>
        <td>Useful when serving files from a fixed directory</td>
    </tr>
    <tr>
        <th>Key Differences</th>
        <td>Used to send a specific file that you provide via its full path</td>
        <td>Used to serve files from within a directory and is generally safer for serving multiple files by just specifying the file name (without hardcoding paths)</td>
    </tr>
<table>


In [None]:
# Using send_file
from flask import send_file

@app.route('/download')
def download_link():
    file_path = 'path/to/file.txt'
    return send_file(file_path,as_attachment=True)

**as_attachment=True** tells the browser to prompt the user to download the file rather than display it inline.

In [None]:
# Using send_from_directory
from flask import send_from_directory

@app.route('/download/<filename>')
def download(filename):
    dir_path = 'path/to/directory'
    return send_from_directory(dir_path,filename)

### JavaScript JSON Requests:
using **request.json**.

## Static Files:


We **save** static file in folder usually called **static** or specify the directory & its url path:

In [None]:
app = Flask(__name__,static_folder='s_files',static_url_path='/')

You can also Integrate Bootstrap easily the same way.

## Sessions & Cookies:
<table>
    <tr>
        <th></th>
        <th>Cookies</th>
        <th>Sessions</th>
    </tr>
    <tr>
        <th>Storage</th>
        <td>Stored on the client's browser.</td>
        <td>Stored on the server(session ID in a cookie)</td>
    </tr>
    <tr>
        <th>Security</th>
        <td>Less Secure (data is client-side).</td>
        <td>More Secure (data is server-side).</td>
    </tr>
    <tr>
        <th>Size</th>
        <td>Limited by browser cookie size (~4KB).</td>
        <td>Can store more data, as it's stored on the server side.</td>
    </tr>
    <tr>
        <th>Usage</th>
        <td>Typically used for simple data (eg:preferences).</td>
        <td>Used for more complex user state management (eg:login sessions).</td>
    </tr>
    <tr>
        <th>Expiration</th>
        <td>Can be set manually using expiration time.</td>
        <td>Can be configured to expire after a period of inactivity.</td>
    </tr>
</table>

In [None]:
# Sessions
from flask import session

@app.route('/sessions')
def sessions():
    # Set Session
    session['username'] = 'JohnDoe'
    session['age'] = 10
    # Get Session
    if 'username' in session.keys(): # Cause the session ID is a cookie which can be deleted, so we need to handle it to avoid error
        username = session['username']
    # Pop Session
    session.pop('age')
    # Clear Session
    session.clear()
    
    return 'Handling Sessions -Done'


In [None]:
# Cookies
@app.route('/cookies')
def cookies():
    # Set Cookie
    response = make_response('Handling Cookies -Done')
    response.set_cookie('username','JognDoe')
    
    # Get Cookie
    cookie = request.cookies['username']
    
    # Remove Cookie
    response = make_response('Handling Cookies -Done')
    response.set_cookie('username',expires=0)
    
    return response

### Message Flashing:
is a way to **send one-time messages** from the server to the client, usually used for **notifications** such as "successfully logged in".<br>
We use **flash** to flash messages and **get_flashed_messages** to retrieve those messages in your templates.


In [None]:
from flask import flash
@app.route('/login')
def login():
    flash("Successfully logged in")
    return redirect('/')

#### Displaying the message in a template with jinja2:

In [None]:
{% with messages = get_flashed_messages() %}
    {% if messages %}
        <ul>
        {% for message in messages %}
            <li>{{ message }}</li>
        {% endfor %}   
        </ul>
    {% endif %}
{% endwith %}

**with categories=True** arg tells **get_flashed_messages** to return the messages as pairs of (category,messages) to **distinguish** between messages for example for styling.

## Databases:

**install**  two new packages:
- flask-sqlalchemy.
- flask-migrate.

To avoid **Circular Imports**,we use **Factory Patter**:<pre>
- app.py : Contains the **application factory function**.Which is responsible for creating and configuring the flask app instance.
- routes.py : This has the routes inside register_routes func, and then imported in app.py
- run.py : This is the entry point of the application, where the Flask app is actually run. 

- models.py : Contains the **database models**, typically using an ORM like SQLALchemy. The models represent the structure of the database tables, and any relationship between them.

In [None]:
from flask_sqlalchemy import SQLAlchemy
from flask_migrate import flask_migrate

### SQLAlchemy Initialization
**db = SQLAlchemy(app)** creates a **database object** (an Object Relational Mapper 'ORM') that will manage all the interactions with the database, including:<pre>
- Defining **models** (database tables),
- Executing **queries**,
- Managing **sessions**(transactions),
- Handling **relationships** between tables(foreign keys,one-to-many,...)</pre>
This object is a central point that **connects** the **database** with your Flask **app**.

#### Lazy Initialization:
- At the time of writing **db = SQLAlchemy()**, no Flask app instance is passed to it.This is imporant for the **Factory Pattern** because the app may not yet exist at this point.
- Later,inside the **create_app()** function, the database object is bound to the actual Flask app using **db.init_app(app)**.

#### Configuration:
**SQLALCHEMY_DATABASE_URI** is the specific key that SQLAlchemy uses to determine the **location** and **type** of the **database** to connect to. This key tells SQLAlchemy which database engine to use(e.g:SQLite,MySQL,PostgreSQL) and where the database is located.

In [None]:
# Example: Using SQLite and In Current Directory
engine = 'sqlite'
location = './db_name.db'
app.config['SQLALCHEMY_DATABASE_URI'] = f'{engine}:///{location}'

### Migrate:
**migrate** a tool that helps manage database schema changes overtime.<br>
##### Key Features:<pre>
- Automatically generate migration scripts based on changes in your SQLAlchemy Models.
- Apply Migrations to your database,keeping the schema in sync with your models.
- Rollback changes if something goes wrong during a migration.

#### Common Commands:

**1.Initialize migrations:** This sets up a directory for migration files.  

In [None]:
!flask db init

**2.Generate a new migration script:** This creates a migration script based on the changes in your models.

In [None]:
!flask db migrate -m "Megration Message"

message is optional

**3.Apply migrations:** This applies the generated migrations to the database.

In [None]:
!flask db upgrade

**3.Rollback migrations:** This rolls back the last migration.

In [None]:
!flask db downgrade

#### How Migrate Works:
- Migrate keeps track of changes in your **SQLAlchemy** models and compares them with the current database schema.
- When a migration is generated using **flask db migrate**, it creates a Python script in the **migrations/** folder. This script contains SQL commands to alter the database schema.
- The **flask db upgrade** command applies these changes to the database.

### Putting all together:

**In app.py**

In [None]:
# Putting all together

from flask import Flask
from flask_sqlalchemy import SQLAlchemy
from flask_migrate import Migrate

db = SQLAlchemy()

def create_app():
    app = Flask(__name__,template_folder='html_files',static_folder='static')
    app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///./testdb.db'
    
    db.init_app(app)
    
    from routes import register_routes
    register_routes(app,db)
    
    # Integrating Flask-Migrate with the app and db  
    migrate = Migrate(app,db)
    
    return app

**In routes.py**

In [None]:
from flask import render_template,jsonify,request,flash,url_for,redirect
from models import Person

def register_routes(app,db):
    
    @app.route('/')
    def home():
        if request.method == 'GET':
            people = Person.query.all()
            return render_template('home.html',people=people)


**In run.py**

In [None]:
from app import create_app

flask_app = create_app()

### Models & ORM Functionality:
- Once the db object is created and initialized with the app, it can be used to define models, which are python classes that represent tables in the database.

**In models.py**

In [None]:
from app import db

class Person(db.model):
    # Table Name
    __tablename__ = 'people'
    
    # Fields (Columns)
    pid = db.Column(db.Interger,primary_key=True)
    name = db.Column(db.Text,nullable=False)
    age = db.Column(db.Float)

### Database Operations:
Assume **User** is a model in your database.

- **1-Creating Records  (Insert):** you can add new rows to your database using SQLAlchemy's ORM by creating instances of your model and adding them to the session.

In [None]:
# Creating a new user
new_user = User(username='Ameur',email='hello@gmail.com')

# Add the new user to the session
db.session.add(new_user)

# Commit the session to write the changes to the database
db.session.commit()

- **2-Reading Records (Select):** you can query the database to retrieve records using the db.session.query()

In [None]:
# Query all users
users = User.query.all()

# Query by filter
user = User.query.filter_by(username='Agmed').first()

# Query by Primary Key
user = User.query.get(1)

- **3-Updating Records (Update):** you can update records by retrieving them from the database, modifying their fields, and then committing the session

In [None]:
# Get a user
user = User.query.filter_by(username='Agmed').first()

# Update the user's email
user.username = 'Ahmed'

# Commit the changes to the database
db.session.commit()

- **4-Deleting Records (Delete):** you can delete records by retreiving them and then calling session.delete()

In [None]:
# Get a user
user = User.query.filter_by(username='Ahmed').first()

# Delete the user
db.session.delete(user)

# Commit the changes ...
db.session.commit()

- **5-Querying with Filters and Conditions:**

In [None]:
# Get users where the username contains 'agmed' and email ends with 'example.com'
users = User.query.filter(
    User.username.like('%agmed%'),
    User.email.endswith('example.com')
)

- **6-Querying with Limit and Offset:**

In [None]:
# Get the first 10 users
users = User.query.limit(10).all()

# Get 10 users, starting from the 5th user
users = User.query.offset(5).limit(10).all()

- **7-Ordering Results:**

In [None]:
# Get users ordered bu username in ascending order
users = User.query.order_by(User.username).all()

# In Descending
users = User.query.order_by(User.username.desc()).all()

- **8-Counting Records:**

In [None]:
# Count the number of users
user_count = User.query.count()

- **9-Joins (Multiple Table Queries):**
Assume you have two models, User and Post, where a User has manu Posts.

In [None]:
# Query users along with thier posts
results = db.session.query(User,Post).join(Post,User.id == Post.user_id).all()

# Accessing data
for user, post in results:
    print(f"{user.username} wrote {post.title}")

- **10-Relationships (One-to-Many, Many-to-One, Many-to-Many):**

In [None]:
########

- **11-Transactions and Rollbacks:**

In [None]:
try:
    # Add a new user
    new_user = User(username='Gamdi',email='gamdi@example.com')
    db.session.add(new_user)
    
    # Commit the transaction
    db.session.commit()
except Exception as e:
    # If something goes wrong, roll back the transaction
    db.session.rollback()

- **12-Querying with Aggregates(SUM,AVG,MAX,MIN):**

In [None]:
from sqlalchemy import func

# Get the Total number of Posts
post_count = db.session.query(func.count(Post.id))
scalar()

# Get the average lenght of post titles
avg_title_length = db.session.query(func.avg(func.length(Post.title))).scalar()


- **13-Executing Raw SQL:**

In [None]:
query = 'SELECT * FROM user'
result = db.session.execute(query)

## User Authentication:
login,signin,...

see **UserAuthen Project**

## BluePrints:
Blueprints allow you to **organize** your **application** into reusable components, making it **easier to manage** large projects

### Project Structure:
flask_app<br>
- run.py
-    blueprintapp/<br>
-    │<br>
-    ├── app.py<br>
-    ├── __init__.py<br>
-    └── core/<br>
-    -    ├── __init__.py<br>
-    -    ├── templates<br>
-    -    ├── static<br>
-    -    └── routes.py<br>
-    └── blueprint1/<br>
-    -    ├── __init__.py<br>
-    -    ├── templates/blueprint1<br>
-    -    ├── static/blueprint1<br>
-    -    ├── forms.py<br>
-    -    ├── models.py<br>
-    -    └── routes.py<br>

each blue print has its own forms,models,routes,templates and static files,then we register them in app.py

### Create Blueprint:
inside **blueprint1/routes.py**

In [None]:
from flask import Blueprint

# For example Todos Section in the app
todos = Blueprint('totods',__name__)

@todos.route('/')
def index():
    render_template('blueprint1/index.html')

We handle calling route like that, 
Example:<br>
**url_for('blueprint1.index')**

### Register Blueprint:
inside the **app.py**

In [None]:
from blueprintapp.blueprint1.routes import todos
app.register_blueprint(todos,url_prefix='/todos')

**url_prefix** is the main path for this blueprint.<br>
so to go to index of this blueprint,the url must be **/todos** not just **/**,and for routes in it(eg:create) the url should be **/todos/create**.

see **BluePrint Project**.

## Flask Extentions:
there are more useful tools and utilities. 

### Flask-CORS:
Enables **Cross-Origin Resource Sharing**, which allows your **Flask App** to be accessed by web applications hosted on **different domains**.

In [None]:
!pip install flask-cors

In [None]:
from flask import Flask
from flask_cors import CORS

app = Flask(__name__)
CORS(app) # Enables CORS for all routes


### Flask-Admin:
is a powerful extension for Flask that helps you create an **administrative interface** for your application. This interface allows you to **manage your data models** and perform CRUD (Create, Read, Update, Delete) operations without writing a lot of boilerplate code.

In [None]:
!pip install flask-admin

In [None]:
from flask import Flask
from flask_admin import Admin
from flask_admin.contrib.sqla import ModelView
from flask_sqlalchemy import SQLAlchemy

app = Flask(_name_)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'
db = SQLAlchemy(app)

class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(50))

admin = Admin(app)
admin.add_view(ModelView(User, db.session))


see **Admin Project**.

### Flask-Mail:
Simplifies the process of **sending emails** from a Flask application.

In [None]:
!pip install Flask-Mail

In [None]:
from flask import Flask
from flask_mail import Mail, Message

app = Flask(_name_)
app.config['MAIL_SERVER'] = 'smtp.example.com'
app.config['MAIL_PORT'] = 465
app.config['MAIL_USERNAME'] = 'your_email@example.com'
app.config['MAIL_PASSWORD'] = 'password'
app.config['MAIL_USE_TLS'] = False
app.config['MAIL_USE_SSL'] = True

mail = Mail(app)

@app.route('/send_email')
def send_email():
    msg = Message('Hello', sender='your_email@example.com', recipients=['to@example.com'])
    msg.body = 'This is a test email sent from Flask!'
    mail.send(msg)
    return 'Email sent!'

### Flask-Caching:
tool to enhance your Flask application's **performance** by reducing load times and **improving** response rates

<table>
    <thead>
        <tr>
            <th>When to Use</th>
            <th>When Not to Use</th>
        </tr>
    </thead>
    <tbody>
        <tr>
            <td>Expensive Computations: Caching results of costly calculations can save time.</td>
            <td>Highly Dynamic Content: Frequent updates may lead to stale data.</td>
        </tr>
        <tr>
            <td>Frequent Database Queries: Caching common queries reduces database load.</td>
            <td>Small Applications: Overhead of caching may not be worth it for low traffic.</td>
        </tr>
        <tr>
            <td>Static Content: Caching rarely changing content like HTML pages or images.</td>
            <td>Session Management: Not suitable for managing user sessions or sensitive data.</td>
        </tr>
        <tr>
            <td>API Responses: Caching responses for APIs serving similar requests.</td>
            <td>Real-Time Data: Caching may interfere with real-time data updates.</td>
        </tr>
        <tr>
            <td>Rate Limiting: Manage user request limits by caching counts.</td>
            <td>Complex Cache Invalidation: Difficult cache invalidation logic may lead to errors.</td>
        </tr>
    </tbody>
</table>

In [None]:
!pip install Flask-Caching

In [None]:
from flask import Flask
from flask_caching import Cache

app = Flask(_name_)
app.config['CACHE_TYPE'] = 'simple'  # In-memory cache
cache = Cache(app)

@app.route('/cached')
@cache.cached(timeout=60)
def cached_view():
    return 'This view is cached for 60 seconds'

#### **Summary**:
Use Flask-Caching to optimize performance when appropriate, but be cautious of its drawbacks, especially in applications with dynamic content or real-time requirements. I

### Flask-Limiter:
Adds **rate limiting** to your Flask application to **control request traffic**.

In [None]:
!pip install Flask-Limiter

In [None]:
from flask import Flask
from flask_limiter import Limiter

app = Flask(_name_)
limiter = Limiter(app, default_limits=["5 per minute"])

@app.route('/')
@limiter.limit("2 per minute")
def index():
    return 'This route is limited to 2 requests per minute'


#### Time Units you can use:
##### **Seconds**:
Example: "5 per second" or "10 per 30 seconds"

##### **Minutes**:
Example: "2 per minute" or "1 per 5 minutes"

##### **Hours**:
Example: "100 per hour" or "10 per 30 minutes" (combined with minutes)

##### **Days**:
Example: "1 per day" or "7 per week" (using the day as a reference)

**Explanation:(suppose in index route we made 2 reqs in first 10 ses)**<br>
The Limiter will track the number of requests made to that route within the specified time frame (1 minute in this case). Since you've already hit the limit of 2 requests, any further requests within that minute will be blocked.<br>
the server will respond with a 429 Too Many Requests status code.