#Restful API & Flask Assignment

1. What is a RESTful API?
- A RESTful API is an interface that allows communication between client and server using HTTP methods. It follows REST (Representational State Transfer) principles such as statelessness and resource-based URLs. Data is usually exchanged in JSON or XML format. It is widely used in web and mobile apps.

2. Explain the concept of API specification.
- An API specification defines how an API should behave, its endpoints, request/response formats, and authentication methods. It acts like a contract between the API provider and consumer. Common specifications include OpenAPI and Swagger. It ensures consistency and ease of integration.


3. What is Flask, and why is it popular for building APIs?
- Flask is a lightweight Python web framework used to build web apps and APIs. It is popular because it is simple, flexible, and has minimal boilerplate code. Flask supports extensions like Flask-SQLAlchemy and Flask-RESTful for advanced features. It’s widely used for small to medium projects and prototyping.


4. What is routing in Flask?
- Routing in Flask maps a URL path to a specific function in the application. It is defined using the @app.route() decorator. When a user requests a URL, Flask runs the corresponding function. This makes it easy to organize and manage different API endpoints.

5. How do you create a simple Flask application?
- To create a Flask app, first import Flask, initialize the app, define routes, and run the app. Example:
```
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"
app.run()

```
This starts a basic web server.

6. What are HTTP methods used in RESTful APIs?
- The main HTTP methods are:

GET – Retrieve data

POST – Create new data

PUT/PATCH – Update existing data

DELETE – Remove data
They are used to perform CRUD operations on resources.

7. What is the purpose of the @app.route() decorator in Flask?
- The @app.route() decorator maps a URL to a Python function. It defines how Flask should respond when a client accesses that route. You can also specify allowed HTTP methods like GET or POST. It is the core feature for creating endpoints.

8. What is the difference between GET and POST HTTP methods?
- GET is used to retrieve data and sends parameters via the URL. It is visible and less secure.
- POST is used to send data (like form input) in the request body, making it more secure.
GET is idempotent (doesn’t change data), while POST is used for creating or modifying resources.

9. How do you handle errors in Flask APIs?
- Errors in Flask can be handled using try-except blocks or custom error handlers. Flask provides @app.errorhandler() to manage specific HTTP errors like 404 or 500. Returning proper status codes and JSON error messages improves API reliability.

10. How do you connect Flask to a SQL database?
- Flask connects to databases using libraries like Flask-SQLAlchemy. You configure the database URI in app.config, initialize SQLAlchemy, and define models.
 - Example:
```
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///data.db'
db = SQLAlchemy(app)

```
11. What is the role of Flask-SQLAlchemy?
- Flask-SQLAlchemy is an extension that integrates SQLAlchemy ORM with Flask. It simplifies database connections, table creation, and queries. Developers can define database models as Python classes. It makes database operations more Pythonic and reduces boilerplate.

12. What are Flask blueprints, and how are they useful?
- Blueprints help organize large Flask apps into smaller modules. They allow grouping routes, templates, and static files. This makes code more structured, reusable, and scalable. For example, you can create separate blueprints for “auth” and “admin” parts of the app.

13. What is the purpose of Flask's request object?
- The request object in Flask contains all HTTP request data. It holds form inputs, JSON payloads, headers, and query parameters. Developers use it to access client-sent data inside route functions. Example: request.form['name'].

14. How do you create a RESTful API endpoint using Flask?
- You define a route with @app.route() and allow methods like GET or POST. Inside the function, process input data and return JSON responses.
- Example:
```
@app.route('/api/data', methods=['GET'])
def get_data():
    return jsonify({"message": "Hello API"})
    
```

15. What is the purpose of Flask's jsonify() function?
- jsonify() converts Python dictionaries or lists into JSON responses. It also sets the correct content type (application/json). This makes it easier to build RESTful APIs that return structured JSON data.

16. Explain Flask's url_for() function.
- The url_for() function generates dynamic URLs for routes based on function names. This avoids hardcoding paths in templates or redirects. Example: url_for('home') returns the URL mapped to the home function. It ensures flexibility if routes change.

17. How does Flask handle static files (CSS, JavaScript, etc.)?
- Flask serves static files from the static folder by default. They can be accessed in templates using url_for('static', filename='style.css'). This makes it easy to link CSS, JS, or images in a Flask app.

18. What is an API specification, and how does it help in building a Flask API?
- An API specification defines the structure, endpoints, request types, and responses of an API. Tools like Swagger/OpenAPI provide clear documentation. In Flask, it ensures developers follow a consistent design and makes integration easier for clients.

19. What are HTTP status codes, and why are they important in a Flask API?
- HTTP status codes indicate the result of an API request. For example, 200 (OK) means success, 404 (Not Found) means resource missing, and 500 (Server Error) indicates failure. They help clients understand responses and handle them properly.

20. How do you handle POST requests in Flask?
- POST requests are handled by setting methods=['POST'] in a route. Data can be retrieved using request.form or request.json. Example:
```
@app.route('/submit', methods=['POST'])
def submit():
    data = request.json
    return jsonify(data)

```

21. How would you secure a Flask API?
- Flask APIs can be secured using authentication (JWT, OAuth), HTTPS, input validation, and rate limiting. You can also implement API keys for access control. Flask extensions like Flask-JWT-Extended help in token-based security.

22. What is the significance of the Flask-RESTful extension?
- Flask-RESTful simplifies building REST APIs in Flask. It provides resource-based classes, request parsing, and automatic error handling. It reduces boilerplate code and makes API development faster and more organized.

23. What is the role of Flask's session object?
- The session object stores data about a user across requests (e.g., login info). Flask stores session data in cookies, signed cryptographically for security. It helps manage user-specific states in a web app.



#Practical Questions

In [None]:
#1. How do you create a basic Flask application?
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
#2. How do you serve static files like images or CSS in Flask?
from flask import Flask, url_for
app = Flask(__name__)
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
<img src="{{ url_for('static', filename='image.png') }}">


In [None]:
#3. How do you define different routes with different HTTP methods in Flask?
from flask import request

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return "Form submitted!"
    return "Send data with POST"


In [None]:
#4. How do you render HTML templates in Flask?

from flask import render_template

@app.route('/hello')
def hello():
    return render_template('index.html', name="Ashutosh")


In [None]:
#5. How can you generate URLs for routes in Flask using url_for?
from flask import url_for, redirect

@app.route('/login')
def login():
    return "Login Page"

@app.route('/go')
def go():
    return redirect(url_for('login'))


In [None]:
#6. How do you handle forms in Flask?

@app.route('/form', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form['name']
        return f"Hello {name}"
    return render_template('form.html')


In [None]:
#7. How can you validate form data in Flask?
from flask_wtf import FlaskForm
from wtforms import StringField
from wtforms.validators import DataRequired

class MyForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired()])


In [None]:
#8. How do you manage sessions in Flask?
from flask import session

app.secret_key = "secret123"

@app.route('/set')
def set_session():
    session['user'] = 'Ashutosh'
    return "Session set!"

@app.route('/get')
def get_session():
    return session.get('user', 'Not set')


In [None]:
#9. How do you redirect to a different route in Flask?
from flask import redirect

@app.route('/old')
def old():
    return redirect('/new')

@app.route('/new')
def new():
    return "New Page"


In [None]:
#10. How do you handle errors in Flask (e.g., 404)?
@app.errorhandler(404)
def not_found(error):
    return "Page not found!", 404


In [None]:
#11. How do you structure a Flask app using Blueprints?

from flask import Blueprint
user_bp = Blueprint('user', __name__)

@user_bp.route('/profile')
def profile():
    return "User Profile"


app.register_blueprint(user_bp, url_prefix='/user')


In [None]:
#12. How do you define a custom Jinja filter in Flask?
@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]


In [None]:
#13. How can you redirect with query parameters in Flask?
@app.route('/redirect-me')
def redirect_me():
    return redirect(url_for('show', name='Ashu'))

@app.route('/show')
def show():
    name = request.args.get('name')
    return f"Hello {name}"


In [None]:
#14. How do you return JSON responses in Flask?
from flask import jsonify

@app.route('/data')
def data():
    return jsonify({"name": "Ashutosh", "age": 21})


In [None]:
#15. How do you capture URL parameters in Flask?
@app.route('/user/<username>')
def user(username):
    return f"Hello {username}"
