1. What is a RESTful API?

A RESTful API (Representational State Transfer Application Programming Interface) is an architectural style for designing networked applications. It uses standard HTTP methods such as GET, POST, PUT, and DELETE to enable communication between clients and servers. RESTful APIs operate over the stateless HTTP protocol, meaning each request from the client must contain all the information needed for the server to understand and process it.
Resources in a RESTful API are identified using URIs (Uniform Resource Identifiers), and actions are performed on these resources using HTTP methods. For example, a GET request fetches data from a server, while a POST request submits new data. REST emphasizes separation of concerns between client and server, allowing each to evolve independently as long as the interface remains consistent.
RESTful APIs are widely used due to their simplicity, scalability, and alignment with web standards. They are language-agnostic and easy to consume in a browser, mobile app, or other clients. In modern development, RESTful APIs power a large portion of the web, enabling systems and services to interact efficiently and in a platform-independent way.

2. Explain the concept of API specification.

An API specification defines how an API behaves, documenting the endpoints, available HTTP methods, request formats, response structures, authentication mechanisms, and error codes. It acts as a contract between the API provider and consumers, ensuring clarity and consistency. Popular specifications like OpenAPI (formerly Swagger) allow developers to describe RESTful APIs in a standardized, machine-readable format (YAML or JSON). This specification includes metadata such as the API’s title, version, paths (endpoints), input/output data models, and response status codes.
A well-written API specification improves collaboration between front-end and back-end teams and facilitates automatic code generation, testing, and documentation. Tools like Swagger UI and Postman can read these specifications to offer interactive documentation and mock servers. Moreover, API specs reduce miscommunication, making it easier to onboard new developers and integrate third-party systems. They also support version control, helping teams manage changes over time. In essence, API specifications are critical for scalable, reliable, and maintainable API development.

3. What is Flask, and why is it popular for building APIs?

Flask is a lightweight, micro web framework written in Python. It is widely used for building web applications and RESTful APIs due to its simplicity, flexibility, and minimalism. Unlike larger frameworks such as Django, Flask provides only the core components—routing, request handling, and WSGI support—allowing developers to plug in extensions as needed. This gives developers full control over the structure and components of their application.
Flask is particularly popular for building APIs because it enables rapid development with minimal setup. Developers can define endpoints using the @app.route() decorator and handle HTTP requests with simple Python functions. Flask also supports JSON handling through utilities like jsonify() and integrates easily with libraries like SQLAlchemy for database operations.
Its extensive documentation, active community, and compatibility with REST principles make Flask a preferred choice for small to medium-sized API services. It’s also ideal for microservices architecture where lightweight components communicate via APIs. Overall, Flask’s ease of use, clarity, and extensibility make it a go-to option for developers creating scalable, maintainable APIs.

4. What is routing in Flask?

Routing in Flask is the process of mapping URL patterns to specific functions (known as view functions) that handle HTTP requests. This is done using the @app.route() decorator. When a client sends a request to a particular URL, Flask checks the routing table to determine which function should handle that request.
For example:
python
CopyEdit
@app.route('/hello')
def hello():
    return 'Hello, World!'

This sets up a route for the /hello endpoint, which returns a greeting when accessed via a browser or API client.
Routing in Flask supports dynamic segments using angle brackets. For instance, @app.route('/user/<username>') can handle requests for multiple users by passing the username as a parameter.
Flask also allows specifying HTTP methods explicitly (e.g., GET, POST) to define behavior based on request type. Routing is crucial in API development, as it determines how different endpoints behave and respond to client interactions. By organizing routes logically and clearly, developers can structure APIs that are intuitive and easy to maintain.

5. How do you create a simple Flask application?

Creating a simple Flask application involves a few straightforward steps. First, you install Flask using pip install Flask. Then, you create a Python script (e.g., app.py) with the following minimal code:
python
CopyEdit
from flask import Flask
app = Flask(__name__)
@app.route('/')
def home():
    return 'Hello, Flask!'
if __name__ == '__main__':
    app.run(debug=True)

Here's a breakdown:
Flask(__name__) initializes the app.
@app.route('/') defines a route for the home page.
The home() function returns a simple response.
app.run(debug=True) starts the development server, with debugging enabled for error tracking.


Once saved, you can run this script using python app.py. The application will be available at http://localhost:5000, and visiting it will display the message "Hello, Flask!"
This basic structure can be extended by adding more routes, handling different HTTP methods, integrating templates, and connecting to databases. Flask's simplicity makes it ideal for quickly spinning up APIs or prototypes without boilerplate code.

6. What are HTTP methods used in RESTful APIs?

RESTful APIs use standard HTTP methods to perform operations on resources. These methods include:
GET: Retrieves data from the server without modifying it. For example, fetching a list of users.
POST: Sends data to the server to create a new resource, such as adding a new user.
PUT: Updates an existing resource completely. If the resource doesn’t exist, it may be created.
PATCH: Partially updates a resource, modifying only the specified fields.
DELETE: Removes a specified resource from the server.


These methods align with CRUD operations: Create (POST), Read (GET), Update (PUT/PATCH), and Delete (DELETE).
RESTful design relies on mapping these HTTP methods to resource URIs. For example, GET /users returns all users, while DELETE /users/1 deletes the user with ID 1. Proper use of these methods makes the API predictable and consistent with web standards.
Additionally, REST APIs use HTTP status codes (e.g., 200 OK, 404 Not Found, 201 Created) to communicate the result of a request. Understanding these methods is essential for designing intuitive and efficient RESTful APIs.

7. What is the purpose of the @app.route() decorator in Flask?

The @app.route() decorator in Flask is used to define the URL routes (or endpoints) that map to specific view functions. When a client sends an HTTP request to a URL, Flask uses the route definitions to determine which function should handle the request.
For example:
python
CopyEdit
@app.route('/hello')
def hello():
    return 'Hello, World!'
This code binds the /hello URL to the hello() function. When a client accesses this URL, the function executes and returns the specified response.
The @app.route() decorator can also specify allowed HTTP methods:
python
CopyEdit
@app.route('/submit', methods=['POST'])
def submit():
    return 'Data received'

You can also define dynamic routes using angle brackets (e.g., /user/<username>) to capture values from the URL.
This decorator is central to Flask’s routing mechanism. It abstracts the complexity of mapping URLs to functions and makes it easy to structure applications. It also supports RESTful design by allowing multiple endpoints with method-specific handling.

8. What is the difference between GET and POST HTTP methods?

GET and POST are two commonly used HTTP methods in RESTful APIs, but they serve different purposes:
GET is used to retrieve data from a server. It is idempotent, meaning repeated requests will yield the same result without changing the server’s state. Data is sent via the URL, making it visible in browser history and easily cacheable. GET is suitable for operations like fetching user data or viewing a resource list.


POST is used to send data to the server to create or process something. It is not idempotent, so sending the same POST request multiple times may result in multiple resource creations. Data is included in the body of the request, making it more secure than GET for sensitive information. POST is ideal for submitting forms or creating new records.


For example:
http
CopyEdit
GET /users           → Fetch list of users  
POST /users          → Create a new user

Choosing the right method is crucial for API clarity and client-server interaction. Misusing GET for data changes or POST for retrieval breaks RESTful principles and can lead to unexpected behaviors.

9. How do you handle errors in Flask APIs?

Error handling in Flask APIs is crucial for building robust and user-friendly services. Flask provides multiple ways to handle errors gracefully, ensuring clients receive meaningful feedback.
One method is using the abort() function, which stops execution and returns an appropriate HTTP status code:
python
CopyEdit
from flask import abort
@app.route('/user/<int:id>')
def get_user(id):
    user = get_user_from_db(id)
    if user is None:
        abort(404)
    return jsonify(user)
You can also define custom error handlers using the @app.errorhandler decorator:
python
CopyEdit
@app.errorhandler(404)
def not_found(error):
    return jsonify({'error': 'Not found'}), 404

This approach allows you to return structured JSON responses, helpful for front-end applications or API clients. Flask also supports handling specific exceptions with custom responses, improving debugging and user experience.
In production, you should hide internal error details and use logging to record exceptions. Flask’s logging module or external libraries like Sentry can track these issues. Well-managed error handling ensures resilience, improves API usability, and prevents information leakage.

10. How do you connect Flask to a SQL database?

Flask can connect to a SQL database using several approaches, the most common being through Flask-SQLAlchemy, a Flask extension that provides ORM capabilities. Here’s a basic setup:
Install SQLAlchemy:


bash
CopyEdit
pip install flask_sqlalchemy

Initialize the extension in your Flask app:


python
CopyEdit
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///example.db'
db = SQLAlchemy(app)

Define models (tables):


python
CopyEdit
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(80))

Create tables:


python
CopyEdit
with app.app_context():
    db.create_all()

Flask-SQLAlchemy abstracts complex SQL into Python classes and methods, allowing you to query the database using object-oriented syntax. For example:
python
CopyEdit
user = User(name='Alice')
db.session.add(user)
db.session.commit()

While SQLite is great for development, Flask-SQLAlchemy also supports MySQL, PostgreSQL, and others. Proper integration with a database allows Flask apps to persist and manipulate structured data reliably.

11. What is the role of Flask-SQLAlchemy?

Flask-SQLAlchemy is an extension for Flask that integrates SQLAlchemy, a powerful Object Relational Mapper (ORM), into Flask applications. It simplifies database interactions by allowing developers to use Python classes to define tables and manipulate records, rather than writing raw SQL queries.
The role of Flask-SQLAlchemy includes:
Modeling database tables as Python classes, where class attributes correspond to columns.


Abstracting SQL operations such as insertions, deletions, and queries into high-level Python methods.


Managing database connections and sessions, with automatic integration into Flask’s request lifecycle.


Enabling migrations and schema management when combined with tools like Flask-Migrate and Alembic.


Here’s an example:
python
CopyEdit
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(80))

With this setup, you can interact with the User table as if it's a regular Python object:
python
CopyEdit
user = User(name="Alice")
db.session.add(user)
db.session.commit()

Flask-SQLAlchemy promotes cleaner, more maintainable code and helps enforce separation of concerns between application logic and data handling.

12. What are Flask blueprints, and how are they useful?

Flask blueprints are a feature that allows developers to organize a large Flask application into smaller, modular components. Each blueprint represents a distinct portion of the application, such as an authentication module, admin dashboard, or API section, and contains its own routes, templates, static files, and error handlers.
Why they are useful:
Modularity: Blueprints allow developers to split an application into multiple parts, making the codebase easier to manage and scale.
Reusability: Blueprints can be reused across projects, especially for generic functionalities like login or admin panels.
Separation of concerns: Logic for different sections of the app can be encapsulated, improving readability and collaboration.


Example:
python
CopyEdit
# in auth.py
auth_bp = Blueprint('auth', __name__)

@auth_bp.route('/login')
def login():
    return 'Login Page'

In the main app:
python
CopyEdit
from auth import auth_bp
app.register_blueprint(auth_bp, url_prefix='/auth')

This structure keeps your project well-organized and aligns with best practices for software architecture, especially in larger applications or teams.

13. What is the purpose of Flask’s request object?

Flask’s request object is a global object provided by the Flask framework that holds all incoming request data sent by the client. It plays a central role in handling HTTP requests and is essential for building interactive APIs and web applications.
Key functionalities of the request object include:
Accessing form data: request.form retrieves data sent via POST from HTML forms.
Query parameters: request.args returns URL parameters (e.g., ?id=10).
JSON data: request.json parses JSON payloads, commonly used in API requests.
File uploads: request.files handles file data from multipart forms.
HTTP method: request.method tells whether the request is GET, POST, etc.
Headers and cookies: request.headers and request.cookies provide access to metadata.
Example usage:
python
CopyEdit
from flask import request

@app.route('/submit', methods=['POST'])
def submit():
    data = request.json
    return f"Received: {data}"

The request object simplifies client-server communication, enabling developers to access and process data sent from the client in a clean, Pythonic manner.

14. How do you create a RESTful API endpoint using Flask?

Creating a RESTful API endpoint in Flask involves defining a route and handling it with appropriate logic, usually based on the HTTP method. Flask supports RESTful design by allowing you to associate different HTTP methods with different behaviors on the same URL.
Steps to create an endpoint:
Import necessary modules:


python
CopyEdit
from flask import Flask, jsonify, request

Initialize app:


python
CopyEdit
app = Flask(__name__)

Define endpoint:


python
CopyEdit
@app.route('/users', methods=['POST'])
def create_user():
    data = request.get_json()
    return jsonify({'message': 'User created', 'user': data}), 201

Run the app:


python
CopyEdit
if __name__ == '__main__':
    app.run(debug=True)

This POST endpoint receives JSON data (representing a new user), processes it, and returns a confirmation response.
You can similarly define GET, PUT, and DELETE methods on /users/<id> to build a complete CRUD RESTful API. Using tools like Postman or curl, you can test these endpoints for proper functionality. Flask’s minimalist syntax and decorator-based routing make it ideal for rapidly building and deploying RESTful services.

15. What is the purpose of Flask’s jsonify() function?

The jsonify() function in Flask is used to convert Python data structures (like dictionaries or lists) into a JSON-formatted HTTP response. This is particularly important in RESTful APIs, where JSON is the standard format for data exchange between clients and servers.
Why use jsonify() instead of json.dumps()?
It automatically sets the correct MIME type (application/json) in the response headers.
It integrates smoothly with Flask’s Response object, enabling consistent formatting.
It can handle complex data like Unicode and datetime objects gracefully.


Example:
python
CopyEdit
from flask import jsonify

@app.route('/status')
def status():
    return jsonify({'status': 'OK', 'code': 200})

This route returns a JSON response:
json
CopyEdit
{
  "status": "OK",
  "code": 200
}

Using jsonify() ensures that clients—such as web apps, mobile apps, or third-party services—receive properly formatted JSON data. It promotes API interoperability and helps maintain adherence to RESTful principles, making it a best practice in Flask applications.


16. What is a RESTful API?

A RESTful API (Representational State Transfer API) is an architectural style for designing networked applications. It uses standard HTTP methods (GET, POST, PUT, DELETE, etc.) to operate on resources, which are identified by unique URIs. RESTful APIs are stateless, meaning each request from the client contains all the information needed to process it—no session information is stored on the server between requests.
Key principles of RESTful APIs include:
Statelessness: Each request is independent.
Client-Server separation: Frontend and backend are decoupled.
Cacheability: Responses can be cached to improve performance.
Uniform interface: Standardized URLs and HTTP methods for interacting with resources.
Layered system: APIs can have multiple layers for security, load balancing, etc.
Example:
GET /users – fetch all users
POST /users – create a new user
PUT /users/1 – update user with ID 1
DELETE /users/1 – delete user with ID 1
RESTful APIs are language-agnostic and widely used in web and mobile app development due to their simplicity, scalability, and compatibility with standard web technologies.


17. What is Postman, and how is it used in API development?

Postman is a popular API development tool that provides a user-friendly interface for testing, documenting, and interacting with APIs. It is widely used by developers and testers for sending HTTP requests and viewing responses without writing code.
Key features and uses:
Send HTTP requests (GET, POST, PUT, DELETE, etc.) with custom headers, parameters, and body data.
View responses including status codes, headers, and response bodies.
Create collections of API endpoints, useful for organizing and reusing API test suites.
Environment variables allow managing multiple configurations (e.g., dev, staging, production).
Tests and scripts can be written in JavaScript to validate responses or automate workflows.
Mock servers help simulate API responses for front-end development or testing before backend implementation.


Example use case:
 To test a POST request to /users, you would enter the endpoint, select POST, and provide JSON data in the body. Postman sends the request, and the response is displayed in the interface.
Postman simplifies API development by eliminating the need for manual testing via the command line and enables collaboration through shared workspaces.

18. How can you return custom HTTP status codes in Flask?

In Flask, you can return custom HTTP status codes by providing a status code as a second argument to the return statement. This is useful for indicating the outcome of an API request—such as success, resource creation, client error, or server error.
Basic example:
python
CopyEdit
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/create', methods=['POST'])
def create_resource():
    return jsonify({'message': 'Resource created'}), 201  # 201 Created

Other examples:
200 OK: Successful response (default).
201 Created: New resource successfully created.
400 Bad Request: Invalid input from the client.
404 Not Found: Resource not found.
500 Internal Server Error: Server-side error.


Customizing status codes makes APIs more descriptive and compliant with RESTful standards. It also helps client applications interpret results accurately and handle errors programmatically.
Additionally, Flask allows custom error handlers for specific status codes:
python
CopyEdit
@app.errorhandler(404)
def not_found(e):
    return jsonify({'error': 'Not found'}), 404

This approach provides flexibility and improves the robustness of Flask-based APIs.

19. What is CORS, and how can it be handled in Flask?

CORS (Cross-Origin Resource Sharing) is a security mechanism implemented by web browsers to restrict web pages from making requests to a domain different from the one that served the page. By default, browsers block such cross-origin requests to prevent malicious behavior.
When is CORS needed?
 If your front-end is served from http://localhost:3000 and it tries to access a Flask API on http://localhost:5000, the browser will block the request unless CORS is explicitly enabled.
Handling CORS in Flask:
 Flask doesn’t support CORS by default, but you can easily enable it using the flask-cors extension:
bash
CopyEdit
pip install flask-cors

Then configure it in your app:
python
CopyEdit
from flask import Flask
from flask_cors import CORS

app = Flask(__name__)
CORS(app)

You can also enable CORS selectively:
python
CopyEdit
CORS(app, resources={r"/api/*": {"origins": "http://localhost:3000"}})

Proper CORS handling ensures secure, controlled access between front-end and back-end applications hosted on different origins, improving user experience without compromising security.

20. What are some best practices for building secure and scalable Flask APIs?

Building secure and scalable Flask APIs involves adhering to several best practices across design, implementation, and deployment phases:
Security Best Practices:
Input validation: Sanitize user inputs to prevent SQL injection and cross-site scripting (XSS).
Authentication and authorization: Use token-based mechanisms like JWT (JSON Web Tokens) for secure access control.
HTTPS: Always serve APIs over HTTPS to encrypt data in transit.
Rate limiting: Prevent abuse with tools like Flask-Limiter.
CORS configuration: Set CORS headers appropriately to prevent unauthorized cross-origin requests.
Error handling: Avoid exposing stack traces in production; use custom error messages.
Scalability Best Practices:
Modular design: Use Flask Blueprints to organize routes and logic.
Database optimization: Use indexing, caching, and connection pooling.
Asynchronous tasks: Offload heavy or long-running operations using Celery.
Logging and monitoring: Implement structured logging and monitor with tools like Sentry or Prometheus.
Containerization: Deploy APIs in Docker containers for portability and scalability.
By following these practices, Flask APIs can remain robust, secure, and maintainable even as usage scales and requirements grow.


21. How would you secure a Flask API?

Securing a Flask API involves implementing multiple layers of protection to safeguard data, control access, and prevent malicious activities. Here are key strategies:
Authentication and Authorization: Use token-based authentication such as JWT (JSON Web Token) or OAuth2 to verify user identity and manage access control. Flask extensions like Flask-JWT-Extended make this process straightforward.
Input Validation and Sanitization: Validate all incoming data to prevent injection attacks (e.g., SQL injection or cross-site scripting). Use libraries like WTForms or Marshmallow for structured validation.
Rate Limiting: Implement request throttling using Flask-Limiter to prevent abuse (e.g., denial-of-service attacks).
HTTPS: Ensure that the API is only accessible over HTTPS to encrypt data in transit and protect against man-in-the-middle attacks.
CORS Control: Use flask-cors to restrict access to trusted origins and prevent unauthorized cross-origin requests.
Error Handling: Avoid exposing debug messages or stack traces in production. Use custom error responses to handle exceptions securely.
Session and Cookie Security: Set secure flags on cookies (HttpOnly, Secure, SameSite) and configure session protection.
By applying these practices, developers can build robust and secure Flask APIs that resist common vulnerabilities.

22. What is the significance of the Flask-RESTful extension?

Flask-RESTful is a powerful extension for Flask that simplifies the development of REST APIs by offering a more structured and object-oriented approach. It is especially useful for creating clean, modular, and scalable APIs quickly.
Key features and benefits:
Resource-based architecture: It introduces the concept of resources as Python classes, where each HTTP method (GET, POST, etc.) is defined as a method of the class. This promotes better organization and code reusability.

 python
CopyEdit
class User(Resource):
    def get(self, user_id):
        return {'user': user_id}


Automatic routing: Resources are added to the API using the api.add_resource() method, streamlining endpoint management.

 python
CopyEdit
api.add_resource(User, '/user/<int:user_id>')
Integrated request parsing: The reqparse module provides built-in argument parsing and validation, reducing boilerplate code.
Better error handling: Provides standardized responses for exceptions and validation errors.
JSON responses by default: Responses are automatically serialized into JSON, saving time on formatting.


Overall, Flask-RESTful accelerates API development, enforces consistency, and enhances maintainability by abstracting common tasks and offering a clean interface.

23. What is the role of Flask’s session object?

Flask's session object is used to store information across multiple requests from the same user, enabling the web application to maintain state. While HTTP is inherently stateless, sessions provide a way to associate persistent data—such as user login status or preferences—with a specific client.
How it works:
 The session in Flask is implemented using secure, signed cookies. Data is stored on the client-side but cryptographically signed with the SECRET_KEY to prevent tampering. Flask automatically verifies the signature on every request.
Example usage:
python
CopyEdit
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'

@app.route('/login')
def login():
    session['user'] = 'Avinash'
    return 'Logged in!'

@app.route('/profile')
def profile():
    user = session.get('user')
    return f'Hello, {user}!'
Security considerations:
Data in session should be minimal, as it's stored client-side.
Always set the secret_key to ensure data integrity.
Use cookie flags like HttpOnly, Secure, and SameSite for added security.
The session object is crucial for managing user interactions in a stateful manner, especially in authentication workflows.



Practical Question

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [None]:
project/
├── static/
│   ├── style.css
│   └── image.png


In [None]:
@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return 'Form Submitted'
    return 'Submit Form'


In [None]:
from flask import render_template

@app.route('/')
def home():
    return render_template('index.html', title='Home Page')


In [None]:
@app.route('/profile/<username>')
def profile(username):
    return f'Profile: {username}'

@app.route('/link')
def link():
    return redirect(url_for('profile', username='Avinash'))


In [None]:
from flask import request

@app.route('/form', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form['name']
        return f'Hello, {name}!'
    return '''
        <form method="post">
            Name: <input name="name">
            <input type="submit">
        </form>
    '''


In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired

class NameForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired()])
    submit = SubmitField('Submit')
@app.route('/form', methods=['GET', 'POST'])
def form():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}"
    return render_template('form.html', form=form)


In [None]:
from flask import session

app.secret_key = 'your_secret_key'

@app.route('/login')
def login():
    session['username'] = 'Avinash'
    return 'Logged in!'

@app.route('/dashboard')
def dashboard():
    return f"Hello {session.get('username')}"


In [None]:
from flask import redirect, url_for

@app.route('/')
def home():
    return redirect(url_for('dashboard'))

@app.route('/dashboard')
def dashboard():
    return 'Welcome to dashboard'


In [None]:
@app.errorhandler(404)
def not_found(error):
    return 'Page not found', 404


In [None]:
from flask import Blueprint

users = Blueprint('users', __name__)

@users.route('/profile')
def profile():
    return 'User Profile'


In [None]:
def reverse_string(s):
    return s[::-1]

app.jinja_env.filters['reverse'] = reverse_string

{{ 'hello'|reverse }}  {# Outputs: olleh #}


In [None]:
@app.route('/redirect-me')
def redirect_me():
    return redirect(url_for('search', q='flask'))

@app.route('/search')
def search():
    query = request.args.get('q')
    return f'Search results for: {query}'


In [None]:
from flask import jsonify

@app.route('/api')
def api():
    return jsonify({'name': 'Avinash', 'role': 'Writer'})


In [None]:
@app.route('/user/<username>')
def show_user(username):
    return f'Hello {username}!'
