# Restful API & Flask

---



1. What is a RESTful API?

Ans ->

A RESTful API (Representational State Transfer) is an architectural style for designing networked applications. It uses standard HTTP methods (GET, POST, PUT, DELETE) and operates on resources (data entities) identified by URLs. RESTful APIs are stateless, meaning each request from a client contains all the information needed to process it, and no session is stored on the server.

2. Explain the concept of API specification.

ANs ->

An API specification is a formal document or blueprint that describes how an API behaves. It defines:

Available endpoints and their paths

HTTP methods (GET, POST, etc.)

Request and response formats (JSON, XML)

Authentication requirements

Error codes and messages
Popular formats include OpenAPI (Swagger) and RAML.

3. What is Flask, and why is it popular for building APIs?

Ans ->

Flask is a lightweight Python web framework used for building web applications and RESTful APIs. It's popular because:

It's easy to learn and use.

It supports modular code.

It has a large ecosystem of extensions (e.g., Flask-SQLAlchemy).

It doesn't force a specific project layout or tools.

4. What is routing in Flask?

Ans ->

Routing in Flask is the process of mapping URLs to Python functions. When a client requests a URL, Flask determines which function to execute based on the route. This is done using the @app.route() decorator.

5. How do you create a simple Flask application?

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


6. What are HTTP methods used in RESTful APIs?

Ans ->

Common HTTP methods include:

GET: Retrieve data

POST: Create new data

PUT: Update existing data

DELETE: Delete data

PATCH: Partially update data


7. What is the purpose of the @app.route() decorator in Flask?

Ans ->

The @app.route() decorator binds a function to a specific URL. It tells Flask what URL should trigger the execution of the function below it.


8. What is the difference between GET and POST HTTP methods?

Ans ->

GET: Used to retrieve data. Parameters are sent in the URL (query string).

POST: Used to send data to the server to create a resource. Data is sent in the request body.

9. How do you handle errors in Flask APIs?

Ans ->

You can use @app.errorhandler() decorators or Flask's built-in abort() function.



In [None]:
from flask import abort

@app.route('/user/<int:id>')
def get_user(id):
    user = get_user_from_db(id)
    if not user:
        abort(404)
    return user


10. How do you connect Flask to a SQL database?

Ans ->

Use Flask-SQLAlchemy to connect and interact with a database.

In [None]:
from flask_sqlalchemy import SQLAlchemy

app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///mydb.db'
db = SQLAlchemy(app)


11. What is the role of Flask-SQLAlchemy?

Ans ->

Flask-SQLAlchemy is an extension that simplifies SQL database integration with Flask. It provides:

ORM (Object Relational Mapping)

Easy database model definitions

Query methods using Python syntax

12. What are Flask blueprints, and how are they useful?

Ans ->

Blueprints in Flask allow you to organize your application into modular components. This is helpful for large applications. You can define routes and views in separate files and register them to the main app.

In [None]:
from flask import Blueprint

admin = Blueprint('admin', __name__)

@admin.route('/dashboard')
def dashboard():
    return 'Admin Dashboard'


13. What is the purpose of Flask's request object?

Ans ->

The request object gives access to incoming request data, such as:

Form data

JSON data

Query parameters

HTTP headers

In [None]:
from flask import request

@app.route('/submit', methods=['POST'])
def submit():
    data = request.form['name']
    return f'Hello, {data}'


14. How do you create a RESTful API endpoint using Flask?

Ans ->

You define a URL route and specify the allowed HTTP method (like GET, POST). Here's an example:

In [None]:
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/api/greet', methods=['GET'])
def greet():
    name = request.args.get('name', 'Guest')
    return jsonify({'message': f'Hello, {name}!'})

if __name__ == '__main__':
    app.run(debug=True)


15. What is the purpose of Flask's jsonify() function?

Ans ->

The jsonify() function is used to convert Python dictionaries (or other JSON-compatible data structures) into a proper JSON response with the correct MIME type (application/json).

Example:

In [None]:
return jsonify({'name': 'Dhiraj', 'age': 25})


16. Explain Flask's url_for() function.

Ans ->

url_for() dynamically generates URLs for routes by using the name of the view function. This helps avoid hardcoding URLs.

Example:

In [None]:
@app.route('/home')
def home():
    return 'Home Page'

@app.route('/go-home')
def go_home():
    return redirect(url_for('home'))


17. How does Flask handle static files (CSS, JavaScript, etc.)?

Ans ->

@app.route('/home')
def home():
    return 'Home Page'

@app.route('/go-home')
def go_home():
    return redirect(url_for('home'))


In [None]:
/project
  /static
    style.css
  /templates
    index.html


In [None]:
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">


18. What is an API specification, and how does it help in building a Flask API?

Ans ->

An API specification is a contract that defines:

What endpoints are available

What parameters are expected

What responses look like

How errors are handled

In Flask, this helps in:

Keeping development and frontend teams aligned

Automating documentation using tools like Swagger/OpenAPI

19. What are HTTP status codes, and why are they important in a Flask API?

Ans ->

HTTP status codes indicate the result of a request:

200 OK: Success

201 Created: New resource created

400 Bad Request: Client error

401 Unauthorized: Authentication required

404 Not Found: Resource not found

500 Internal Server Error: Server error

In Flask:

In [None]:
return jsonify({'message': 'Success'}), 200


20. How do you handle POST requests in Flask?

Ans ->

Use methods=['POST'] and access data using request.form or request.json.

Example:

In [None]:
@app.route('/api/user', methods=['POST'])
def create_user():
    data = request.json
    name = data.get('name')
    return jsonify({'message': f'User {name} created'}), 201


21. How would you secure a Flask API?

Ans ->

Several methods can be used:

Authentication (e.g., API keys, JWT tokens)

HTTPS (use TLS to encrypt communication)

Input validation and sanitization

Rate limiting (prevent abuse)

Flask extensions like Flask-Login or Flask-JWT-Extended

Example using JWT:

In [None]:
from flask_jwt_extended import JWTManager, jwt_required

app.config['JWT_SECRET_KEY'] = 'secret-key'
jwt = JWTManager(app)

@app.route('/secure', methods=['GET'])
@jwt_required()
def secure_endpoint():
    return jsonify({'message': 'Secure content'})


22. What is the significance of the Flask-RESTful extension?

Ans ->

Flask-RESTful is an extension that simplifies building RESTful APIs with Flask. It provides:

Resource-based routing

Built-in request parsing

Better structure and scalability

Example:

In [None]:
from flask_restful import Api, Resource

api = Api(app)

class Hello(Resource):
    def get(self):
        return {'message': 'Hello'}

api.add_resource(Hello, '/api/hello')


23. What is the role of Flask's session object?

Ans ->

The session object stores data across requests for a user using a secure cookie. It’s useful for:

Storing login status

Tracking user preferences

Example:

In [None]:
from flask import session

@app.route('/login', methods=['POST'])
def login():
    session['user'] = 'Dhiraj'
    return 'Logged in'

@app.route('/profile')
def profile():
    user = session.get('user')
    return f'Hello, {user}'


# Practical

---



1. How do you create a basic Flask application?

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)


2. How do you serve static files like images or CSS in Flask?

Project structure:

In [None]:
project/
├── app.py
└── static/
    └── style.css


In HTML:

In [None]:
project/
├── app.py
└── static/
    └── style.css



3. How do you define different routes with different HTTP methods in Flask?

In [None]:
from flask import request

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return 'Form Submitted'
    return 'Submit Form Page'


4. How do you render HTML templates in Flask?

Folder structure:

In [None]:
project/
├── app.py
└── templates/
    └── index.html


index.html:

In [None]:
<h1>Welcome, {{ name }}!</h1>


app.py:

In [None]:
from flask import render_template

@app.route('/hello/<name>')
def hello(name):
    return render_template('index.html', name=name)


5. How can you generate URLs for routes in Flask using url_for?

In [None]:
@app.route('/dashboard')
def dashboard():
    return 'This is the dashboard.'

@app.route('/go')
def go_to_dashboard():
    return redirect(url_for('dashboard'))


6. How do you handle forms in Flask?

In [None]:
from flask import request

@app.route('/form', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form['name']
        return f'Hello, {name}'
    return '''
        <form method="post">
            Name: <input type="text" name="name">
            <input type="submit">
        </form>
    '''


7. How can you validate form data in Flask?

Using Flask-WTF:

In [None]:
pip install flask-wtf


In [None]:
Example:

In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired

class MyForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired()])
    submit = SubmitField('Submit')


In your view:

In [None]:
@app.route('/validate', methods=['GET', 'POST'])
def validate():
    form = MyForm()
    if form.validate_on_submit():
        return f'Hello {form.name.data}'
    return render_template('form.html', form=form)


8. How do you manage sessions in Flask?

In [None]:
from flask import session

app.secret_key = 'your-secret-key'

@app.route('/login')
def login():
    session['user'] = 'Dhiraj'
    return 'Logged in'

@app.route('/profile')
def profile():
    return f"Logged in as {session.get('user')}"


9. How do you redirect to a different route in Flask?

In [None]:
from flask import redirect, url_for

@app.route('/redirect-me')
def redirect_me():
    return redirect(url_for('home'))


10. How do you handle errors in Flask (e.g., 404)?

In [None]:
@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404


11. How do you structure a Flask app using Blueprints?

Structure:

In [None]:
project/
├── app.py
└── user/
    ├── __init__.py
    └── routes.py


user/routes.py:

In [None]:
from flask import Blueprint

user = Blueprint('user', __name__)

@user.route('/profile')
def profile():
    return 'User Profile'


app.py:

In [None]:
from user.routes import user
app.register_blueprint(user, url_prefix='/user')


12. How do you define a custom Jinja filter in Flask?

In [None]:
@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

# Usage in template: {{ 'hello'|reverse }} → 'olleh'


13. How can you redirect with query parameters in Flask?

In [None]:
@app.route('/search')
def search():
    return redirect(url_for('results', q='flask'))

@app.route('/results')
def results():
    query = request.args.get('q')
    return f'Search Results for: {query}'


14. How do you return JSON responses in Flask?

In [None]:
from flask import jsonify

@app.route('/data')
def data():
    return jsonify({'name': 'Dhiraj', 'role': 'Developer'})


15. How do you capture URL parameters in Flask

In [None]:
@app.route('/user/<username>')
def show_user_profile(username):
    return f'User: {username}'

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post ID: {post_id}'
