# Restful API & Flask
# Theory

1. **What is a RESTful API?**

**Answer**:- A RESTful API is a web service that uses HTTP methods (GET, POST, PUT, DELETE) to interact with resources identified by URLs, and follows the principles of REST architecture, such as statelessness and structured data exchange (usually in JSON format).

2.**Explain the concept of API specification?**

**Answer**:- An API specification is a detailed description of how an API works. It defines:

* Available endpoints (URLs)

* HTTP methods (GET, POST, etc.)

* Request parameters (query, path, body)

* Response formats (usually JSON or XML)

* Authentication methods

* Error codes and messages

It serves as a contract between the API provider and the consumer, ensuring both sides know how to interact with the API correctly.

3. **What is Flask, and why is it popular for building APIs?**

**Answer**:- Flask is a lightweight Python web framework used to build web applications and APIs. It is popular for building APIs because it is simple, flexible, easy to learn, and allows quick development with minimal setup.

4. **What is routing in Flask?**

**Answer**:- Routing in Flask is the process of mapping URLs to functions in your code. These functions are called view functions and define what should happen when a specific URL is accessed.

5. **How do you create a simple Flask application?**

**Answer**:- Steps to create a simple flask application:

* We need to install Flask as-  pip install flask

* We need to create a python file with the following code-

  from flask import Flask

  app = Flask(__name__)

  @app.route('/')

  def home():

     return "Hello, Flask!"

  if __name__ == '__main__':

     app.run()

* After creating the file then we need to run the file - python app.py

* And at last we have to visit http://localhost:5000 in the web browser and we will get the result as - Hello, Flask!


6. **What are HTTP methods used in RESTful APIs?**

**Answer**:- The main HTTP methods used in RESTful APIs are:

* GET - Retrieve data from the server

* POST - Create a new resource

* PUT - Update or replace an existing resource

* PATCH - Partially update a resource

* DELETE - Remove a resource

7. **What is the purpose of the @app.route() decorator in Flask?**

**Answer**:- The @app.route() decorator in Flask defines a URL route and maps it to a Python function that handles requests to that URL. It tells Flask what function to run when a specific URL is accessed.

8. **What is the difference between GET and POST HTTP methods?**

**Answer**:- The difference between GET and POST HTTP methods is:

GET:

* Used to retrieve data from the server.

* Requests should be safe and idempotent (do not change server state).

* Data is sent via URL query parameters.

* Example: Loading a webpage or fetching a list of users.

POST:

* Used to send data to the server to create or update a resource.

* Not idempotent (repeated requests can cause different effects).

* Data is sent in the request body (e.g., form data, JSON).

* Example: Submitting a form or uploading data.

9. **How do you handle errors in Flask APIs?**

**Answer**:- By using error handlers with @app.errorhandler() decorators or try-except blocks and returning appropriate HTTP status codes and messages.

10. **How do you connect Flask to a SQL database?**

**Answer**:- Typically by using an ORM like Flask-SQLAlchemy or by manually connecting with database drivers.

11. **What is the role of Flask-SQLAlchemy?**

**Answer**:- Flask-SQLAlchemy integrates the SQLAlchemy ORM with Flask, offering:

* An easy-to-use ORM for interacting with databases using Python classes instead of raw SQL.

* Automatic session management and connection handling.

* Simplified configuration and migration support.

* Cleaner and more maintainable database code.

12. **What are Flask blueprints, and how are they useful?**

**Answer**:- Blueprints allow you to organize your Flask application into smaller, modular components. This is especially useful for large apps.

* Each blueprint can define routes, error handlers, and static files separately.

* Blueprints can be registered on the main Flask app, keeping code modular and reusable.

* Helps avoid cluttered files and supports team development.

13. **What is the purpose of Flask's request object?**

**Answer**:- The request object provides access to incoming HTTP request data, such as:

* URL parameters (request.args)

* Form data (request.form)

* JSON payload (request.json)

* Headers (request.headers)

* Cookies (request.cookies)

* HTTP method (request.method)

It allows for the reading of data sent by clients, enabling it to be processed in the application's routes.

14. **How do you create a RESTful API endpoint using Flask?**

**Answer**:-

* Define a route using @app.route()

* Specify allowed HTTP methods (methods=['GET', 'POST'])

* Access request data via request object

* Return data as JSON using jsonify()

15. **What is the purpose of Flask's jsonify() function?**

**Answer**:- It converts Python dictionaries or lists into a JSON-formatted response with the correct content-type headers.

16. **Explain Flask's url_for() function?**

**Answer**:- url_for() dynamically generates URLs for a given view function name, rather than hardcoding URLs. It's useful for:

* Avoiding broken links if routes change.

* Creating URLs with variable parts or query parameters.

* Generating URLs in templates or redirects.

17. **How does Flask handle static files (CSS, JavaScript, etc.)?**

**Answer**:- By default, Flask serves files placed in the /static folder, accessible via /static/filename.

18. **What is an API specification, and how does it help in building a Flask API?**

**Answer**:- An API specification is a formal document that describes the endpoints, request/response formats, authentication, and error handling of an API. It helps by:

* Providing a clear contract for developers.

* Making development and testing easier.

* Enabling automatic documentation generation.

* Facilitating client SDK generation.

19. **What are HTTP status codes, and why are they important in a Flask API?**

**Answer**:- They indicate the result of an HTTP request (e.g., 200 OK, 404 Not Found), helping clients understand if the request succeeded or failed.

20. **How do you handle POST requests in Flask?**

**Answer**:- Use @app.route() with methods=['POST'] and access the request data via request.form or request.json.

21. **How would you secure a Flask API?**

**Answer**:-  
* Use authentication (e.g., JWT tokens, OAuth) to verify users.

* Use HTTPS to encrypt data in transit.

* Validate and sanitize all inputs to prevent injection attacks.

* Implement rate limiting to prevent abuse.

* Use secure headers (CORS, Content Security Policy).

* Keep dependencies updated.

22. **What is the significance of the Flask-RESTful extension?**

**Answer**:- Flask-RESTful adds utilities to Flask that simplify REST API development, such as:

* Class-based resource routing.

* Easy request parsing and validation.

* Automatic response formatting.

* Integration with Flask's app.

It makes APIs more structured and easier to maintain.

23. **What is the role of Flask’s session object?**

**Answer**:- The session object stores data specific to a user session between requests. It usually stores small amounts of data in cookies, such as login status or preferences, securely signed to prevent tampering.

# Practical

In [9]:
#1. How do you create a basic Flask application?
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [12]:
#2. How do you serve static files like images or CSS in Flask?
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('main.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [13]:
#3. How do you define different routes with different HTTP methods in Flask?

from flask import Flask, request

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page - GET only'

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return 'Data submitted using POST!'
    else:
        return 'Submit form using GET!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [14]:
#4. How do you render HTML templates in Flask?
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [15]:
#5. How can you generate URLs for routes in Flask using url_for?
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return f"Go to the about page: {url_for('about')}"

@app.route('/about')
def about():
    return "This is the About Page"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [16]:
#6. How do you handle forms in Flask?

from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def form_example():
    if request.method == 'POST':
        name = request.form['name']
        return f'Hello, {name}!'
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [17]:
#7. How can you validate form data in Flask?
from flask import Flask, request, render_template_string

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def form_example():
    error = ''
    if request.method == 'POST':
        name = request.form.get('name')
        if not name:
            error = 'Name is required!'
        else:
            return f'Hello, {name}!'

    return render_template_string('''

            Name:

            {{ error }}

    ''', error=error)

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [20]:
#8. How do you manage sessions in Flask?
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required for using sessions

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']
        return redirect(url_for('profile'))
    return '''
           <form method="post">
               <p><input type="text" name="username">
               <p><input type="submit" value="Login">
           </form>
           '''

@app.route('/profile')
def profile():
    if 'username' in session:
        return f"Welcome, {session['username']}!"
    return 'You are not logged in.'

@app.route('/logout')
def logout():
    session.pop('username', None)  # Removes 'username' from session
    return 'Logged out.'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [21]:
#9. How do you redirect to a different route in Flask?
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/about')
def about():
    return 'About Page'

@app.route('/redirect_to_about')
def redirect_to_about():
    return redirect(url_for('about'))

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [22]:
#10. How do you handle errors in Flask (e.g., 404)?
from flask import Flask, render_template, abort

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/about')
def about():
    return 'About Page'

@app.route('/error_page')
def error_page():
    abort(404)
    return 'This should not be reached'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [28]:
#11. How do you structure a Flask app using Blueprints?

'''

your_project/
│
├── app.py
├── auth/
│   ├── __init__.py
│   └── routes.py
└── templates/
    └── ...

'''
from flask import Blueprint

auth = Blueprint('auth', __name__)

@auth.route('/login')
def login():
    return "This is the login page"

In [30]:
#12. How do you define a custom Jinja filter in Flask?
from flask import Flask, render_template_string

app = Flask(__name__)

# Define the custom filter function
@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

@app.route('/')
def home():
    # Use the filter in a template string for demo
    return render_template_string("{{ 'Flask' | reverse }}")

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [31]:
#13. How can you redirect with query parameters in Flask?
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    # Redirect to /search with query parameters ?q=flask&page=2
    return redirect(url_for('search', q='flask', page=2))

@app.route('/search')
def search():
    q = request.args.get('q')
    page = request.args.get('page')
    return f"Search query: {q}, Page: {page}"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [32]:
#14. How do you return JSON responses in Flask?
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def data():
    my_data = {
        "name": "Waqar",
        "age": 25,
        "skills": ["Python", "Flask", "Data Science"]
    }
    return jsonify(my_data)

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [33]:
#15. How do you capture URL parameters in Flask?
from flask import Flask

app = Flask(__name__)

@app.route('/user/')
def profile(username):
    return f"User profile: {username}"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)
