# Theory Questions

Q.1 What is a RESTful API?

Ans - A RESTful API (Representational State Transfer API) is a way for applications to communicate over the web using standard HTTP methods. It follows principles of REST, making it scalable, lightweight, and easy to integrate.

### Key Features of RESTful APIs:
- **Stateless:** Each request from the client contains all necessary information; the server doesn’t remember previous requests.
- **Uses HTTP Methods:** Common ones include:
  - `GET` – Retrieve data
  - `POST` – Create new data
  - `PUT` – Update existing data
  - `DELETE` – Remove data
- **Uniform Resource Identifiers (URIs):** Resources are accessed via URLs like `https://api.example.com/users/123`
- **Supports JSON or XML:** Data is usually exchanged in **JSON** format because it’s lightweight.
- **Client-Server Architecture:** The client (browser, mobile app) interacts with the API server.



Q.2 Explain the concept of API specification.

Ans - An **API specification** is a document or standard that defines how different software systems should interact using an API. It serves as a blueprint, describing the structure, data formats, endpoints, and expected behavior of an API.

### Why API Specifications Matter:
- **Consistency:** Ensures developers use the API correctly and uniformly.
- **Interoperability:** Helps different applications communicate seamlessly.
- **Documentation:** Acts as a reference for developers integrating the API.
- **Automation:** Enables tools to generate client libraries and server stubs.

### Key Components of an API Specification:
- **Endpoints & URIs:** Defines the available routes (e.g., `GET /users/{id}`)
- **HTTP Methods:** Lists supported actions (`GET`, `POST`, `PUT`, `DELETE`)
- **Request Parameters:** Details inputs (query params, headers, body payload)
- **Response Format:** Specifies the output, often in **JSON** or **XML**
- **Error Handling:** Explains status codes and error messages (`404 Not Found`, `500 Internal Server Error`)




Q.3 What is Flask, and why is it popular for building APIs?

Ans - Flask is a **lightweight web framework** for Python that makes it easy to build web applications and APIs. It is **minimalistic and flexible**, allowing developers to create APIs without unnecessary overhead.

### Why Flask is Popular for APIs:
- **Simplicity:** Flask is easy to set up, making it great for rapid development.
- **Lightweight:** It provides only essential features, letting developers customize as needed.
- **RESTful Support:** Perfect for creating RESTful APIs, with built-in request handling.
- **Extensibility:** Compatible with libraries for authentication, database interaction, and caching.
- **Integrated Development Server:** Comes with a built-in debugger and server for testing.



Q.4 What is routing in Flask?

Ans - **Routing in Flask** refers to defining URL paths that determine how requests are handled. It allows developers to map specific URLs to functions, making it easy to create web applications and APIs.

### How Routing Works:
- Flask uses the `@app.route()` decorator to associate a function with a specific URL.
- When a user accesses that URL, Flask calls the corresponding function and returns a response.
- Routes can include **dynamic parameters**, making them flexible.

### Basic Example:
```python
from flask import Flask

app = Flask(__name__)

@app.route('/')  # Maps the root URL
def home():
    return "Welcome to Flask!"

@app.route('/hello/<name>')  # Dynamic route with a parameter
def greet(name):
    return f"Hello, {name}!"

if __name__ == '__main__':
    app.run(debug=True)
```
### Breakdown:
- `/` → Calls `home()` and returns a welcome message.
- `/hello/Aashish` → Calls `greet("Aashish")` and returns `"Hello, Aashish!"`.

### Advanced Routing:
Flask supports:
- **Multiple routes for one function:** `@app.route('/page')` and `@app.route('/page/')`
- **HTTP methods:** `@app.route('/submit', methods=['POST'])`
- **Custom error handling:** `@app.errorhandler(404)`


Q.5 How do you create a simple Flask application?

Ans - Creating a simple **Flask** application is easy! Flask is lightweight and doesn't require complex setup. Here's how you can get started:

### Steps to Build a Basic Flask App:

#### **1. Install Flask**
First, ensure Flask is installed in your Python environment:
```bash
pip install flask
```

#### **2. Create a Flask App**
Write the following Python script (`app.py`):
```python
from flask import Flask

app = Flask(__name__)  # Create Flask application instance

@app.route('/')  # Define a route
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)  # Run the app in debug mode
```

#### **3. Run the Application**
Execute the script:
```bash
python app.py
```
By default, Flask runs on `http://127.0.0.1:5000/`. Open this in a browser, and you’ll see **"Hello, Flask!"** displayed.

### Key Concepts:
- `Flask(__name__)` creates the Flask instance.
- `@app.route('/')` defines a route for handling requests.
- `app.run(debug=True)` starts the server with live debugging.


Q.6 What are HTTP methods used in RESTful APIs?

Ans - In RESTful APIs, **HTTP methods** define the type of action performed on a resource. Here are the key methods used:

### **Common HTTP Methods:**
1. **GET** – Retrieve data from the server.
   - Example: `GET /users/123` → Fetch details of user `123`
   
2. **POST** – Create a new resource.
   - Example: `POST /users` → Add a new user to the system

3. **PUT** – Update an existing resource **completely**.
   - Example: `PUT /users/123` → Replace all data of user `123`

4. **PATCH** – Update **part** of an existing resource.
   - Example: `PATCH /users/123` → Modify specific fields of user `123`

5. **DELETE** – Remove a resource.
   - Example: `DELETE /users/123` → Delete user `123` from the system

### **Additional Methods:**
- **OPTIONS** – Ask the server which HTTP methods are allowed.
- **HEAD** – Same as `GET`, but only retrieves headers (no body data).

### **Example Using Python's `requests` Library:**
```python
import requests

url = "https://api.example.com/users/123"
response = requests.get(url)  # Fetch user data

print(response.json())  # Print the JSON response
```



Q.7 What is the purpose of the @app.route() decorator in Flask?

Ans - The `@app.route()` decorator in **Flask** is used to define the URL paths (routes) that users or clients can access. It associates a specific function with a URL endpoint, allowing Flask to handle requests dynamically.

### **Purpose of `@app.route()`**:
- **Maps URLs to Functions** – Defines which function should run when a user visits a specific route.
- **Handles Requests** – Determines the response for different endpoints.
- **Supports Dynamic Parameters** – Allows routes to include variable placeholders.

### **Basic Example**:
```python
from flask import Flask

app = Flask(__name__)

@app.route('/')  # Maps root URL to `home()` function
def home():
    return "Welcome to Flask!"

@app.route('/hello/<name>')  # Dynamic route with a parameter
def greet(name):
    return f"Hello, {name}!"

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**:
- `/` → Calls `home()` and returns `"Welcome to Flask!"`
- `/hello/Aashish` → Calls `greet("Aashish")` and returns `"Hello, Aashish!"`

### **Advanced Routing**:
- `@app.route('/users', methods=['GET', 'POST'])` → Handles **multiple HTTP methods**.
- `@app.route('/page/')` → Accepts both `/page` and `/page/` for flexibility.
- `@app.errorhandler(404)` → Custom error handling.



Q.8 What is the difference between GET and POST HTTP methods?

Ans - ### **Key Differences Between GET and POST HTTP Methods**:

| **Feature**    | **GET**                             | **POST**                             |
|---------------|-----------------------------------|-----------------------------------|
| **Purpose**   | Retrieves data from the server   | Sends data to the server to create/update resources |
| **Data Visibility** | Parameters are visible in the URL (e.g., `?id=123`) | Data is sent in the request body, making it hidden from the URL |
| **Caching**   | Can be cached by browsers and stored in history | Generally **not** cached due to security concerns |
| **Use Case**  | Fetching information (e.g., loading a webpage, API calls to retrieve data) | Sending data (e.g., form submissions, creating new records) |
| **Security**  | Less secure because data is visible in the URL | More secure since data isn't exposed in the URL |
| **Idempotency** | Yes—multiple GET requests **should not change** server state | No—each POST request **can modify** the server state |

### **Examples in Flask**:
#### **GET Request** (Fetching Data)
```python
from flask import Flask, request

app = Flask(__name__)

@app.route('/user', methods=['GET'])
def get_user():
    user_id = request.args.get('id')  # Retrieves query parameter
    return f"Fetching user with ID: {user_id}"

if __name__ == '__main__':
    app.run(debug=True)
```
- Access via: `http://127.0.0.1:5000/user?id=123`

#### **POST Request** (Sending Data)
```python
from flask import Flask, request

app = Flask(__name__)

@app.route('/user', methods=['POST'])
def create_user():
    data = request.json  # Extracts JSON data
    return f"User {data['name']} created successfully!"

if __name__ == '__main__':
    app.run(debug=True)
```
- Send JSON data using tools like **Postman** or:
```python
import requests

response = requests.post("http://127.0.0.1:5000/user", json={"name": "Aashish"})
print(response.text)
```


Q.9 How do you handle errors in Flask APIs?

Ans - Handling errors in Flask APIs ensures smooth execution and proper debugging. Flask provides several ways to manage errors effectively.

### **1. Using HTTP Status Codes**
You can return appropriate HTTP status codes to indicate success or failure:
```python
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/divide/<int:a>/<int:b>')
def divide(a, b):
    if b == 0:
        return jsonify({'error': 'Division by zero is not allowed'}), 400  # Bad Request
    return jsonify({'result': a / b})

if __name__ == '__main__':
    app.run(debug=True)
```
- `/divide/10/0` → Returns `{ "error": "Division by zero is not allowed" }` with a **400 Bad Request** status.

### **2. Custom Error Handlers**
Flask allows defining global error handlers for specific status codes:
```python
@app.errorhandler(404)
def not_found(error):
    return jsonify({'error': 'Resource not found'}), 404

@app.errorhandler(500)
def server_error(error):
    return jsonify({'error': 'Internal server error'}), 500
```
- If a user requests an invalid URL, the **404 handler** triggers.
- Unexpected issues trigger the **500 handler**.

### **3. Handling Exceptions Gracefully**
Use `try-except` blocks to catch exceptions within routes:
```python
@app.route('/safe_divide/<int:a>/<int:b>')
def safe_divide(a, b):
    try:
        result = a / b
    except ZeroDivisionError:
        return jsonify({'error': 'Cannot divide by zero'}), 400
    return jsonify({'result': result})
```

### **4. Logging Errors for Debugging**
For better debugging, Flask can log errors:
```python
import logging

logging.basicConfig(filename='app.log', level=logging.ERROR)

@app.route('/error_test')
def error_test():
    try:
        raise ValueError("Testing error logging")
    except Exception as e:
        logging.error(f"Error occurred: {e}")
        return jsonify({'error': 'Something went wrong'}), 500
```
This logs errors to `app.log`, helping with debugging.



Q.10 How do you connect Flask to a SQL database?

Ans - Connecting Flask to a SQL database is essential for building web applications that store and manage data. Flask works well with **SQLite, MySQL, and PostgreSQL**, often using **SQLAlchemy**, a powerful Object Relational Mapper (ORM).

### **Steps to Connect Flask to a SQL Database:**

#### **1. Install SQLAlchemy**
```bash
pip install flask-sqlalchemy
```

#### **2. Setup Flask with SQLAlchemy**
Create a Flask application and configure the database:
```python
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)

# Configure the database URI (e.g., SQLite)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

db = SQLAlchemy(app)

# Define a model
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(100), nullable=False)

# Create tables before running the app
with app.app_context():
    db.create_all()

@app.route('/')
def home():
    return "Database Connected!"

if __name__ == '__main__':
    app.run(debug=True)
```

#### **3. Performing CRUD Operations**
Once connected, you can interact with the database:
```python
# Adding a User
new_user = User(name="Aashish")
db.session.add(new_user)
db.session.commit()

# Querying Users
users = User.query.all()
for user in users:
    print(user.name)
```

### **Database Options:**
- **SQLite** (Lightweight, great for small projects): `'sqlite:///test.db'`
- **PostgreSQL**: `'postgresql://user:password@localhost/mydatabase'`
- **MySQL**: `'mysql://user:password@localhost/mydatabase'`


Q.11 What is the role of Flask-SQLAlchemy?

Ans - **Flask-SQLAlchemy** is an extension for Flask that simplifies working with relational databases using **SQLAlchemy**, a powerful Object Relational Mapper (ORM). It allows developers to interact with databases using Python classes instead of raw SQL queries.

### **Role of Flask-SQLAlchemy:**
1. **Database Connection Management:** Handles database configuration and interactions seamlessly within Flask.
2. **ORM Functionality:** Maps Python classes to database tables, allowing easy **CRUD operations** (Create, Read, Update, Delete).
3. **Automatic Table Creation:** Creates database tables based on class definitions.
4. **Querying Made Easy:** Provides a simple API for filtering, updating, and retrieving data.
5. **Transaction Handling:** Manages database transactions efficiently.
6. **Integration with Flask:** Works smoothly with Flask applications for API development.

### **Basic Example: Using Flask-SQLAlchemy**
#### **1. Install Flask-SQLAlchemy**
```bash
pip install flask-sqlalchemy
```

#### **2. Setup a Flask App with SQLAlchemy**
```python
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'  # Define the database
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

db = SQLAlchemy(app)  # Initialize the database

class User(db.Model):  # Define a table using a Python class
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(100), nullable=False)

# Create tables before running the app
with app.app_context():
    db.create_all()

@app.route('/')
def home():
    return "Flask-SQLAlchemy is set up!"

if __name__ == '__main__':
    app.run(debug=True)
```

### **Performing CRUD Operations**
```python
# Adding a User
new_user = User(name="Aashish")
db.session.add(new_user)
db.session.commit()

# Querying Users
users = User.query.all()
for user in users:
    print(user.name)
```



Q.12 What are Flask blueprints, and how are they useful?

Ans - **Flask Blueprints** are a way to organize and structure large Flask applications by breaking them into reusable, modular components. Instead of writing all routes in a single file, Blueprints allow grouping related routes and logic separately.

### **Why Use Flask Blueprints?**
- **Modularity:** Helps break down complex applications into manageable pieces.
- **Reusability:** Can be easily reused across multiple projects.
- **Better Organization:** Keeps the codebase clean and structured.
- **Encapsulation:** Allows defining routes, models, and templates separately.

### **Example of Using Flask Blueprints**
#### **1. Create a Blueprint (`users.py`)**
```python
from flask import Blueprint, jsonify

users_bp = Blueprint('users', __name__)  # Create a blueprint

@users_bp.route('/users')
def get_users():
    return jsonify({"message": "List of users"})
```

#### **2. Register the Blueprint in Main App (`app.py`)**
```python
from flask import Flask
from users import users_bp  # Import the blueprint

app = Flask(__name__)
app.register_blueprint(users_bp)  # Register the blueprint

@app.route('/')
def home():
    return "Welcome to Flask Blueprint Example!"

if __name__ == '__main__':
    app.run(debug=True)
```

Now, visiting `/users` returns the list of users while keeping the main application clean.



Q.13 What is the purpose of Flask's request object?

Ans - Flask's `request` object is used to access data sent by clients when they interact with a Flask application. It helps handle **incoming HTTP requests**, including form data, JSON payloads, headers, and query parameters.

### **Purpose of Flask's `request` Object**
1. **Accessing Request Data:** Retrieve query parameters, form inputs, and JSON payloads.
2. **Handling HTTP Methods:** Identify whether the request is `GET`, `POST`, `PUT`, etc.
3. **Reading Headers & Cookies:** Extract metadata sent by the client.
4. **Managing File Uploads:** Handle uploaded files efficiently.
5. **Extracting URL Data:** Analyze request paths and referrer information.

### **Example Use Cases:**
#### **1. Handling Query Parameters (`GET` Request)**
```python
from flask import Flask, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q')  # Extracts '?q=value' from URL
    return f"Searching for: {query}"

if __name__ == '__main__':
    app.run(debug=True)
```
- URL: `/search?q=Flask` → Extracts `"Flask"` as the query parameter.

#### **2. Handling JSON Payloads (`POST` Request)**
```python
@app.route('/data', methods=['POST'])
def receive_data():
    json_data = request.json  # Extract JSON body
    return f"Received: {json_data}"

# Example Client Request
import requests
requests.post("http://127.0.0.1:5000/data", json={"name": "Aashish"})
```
- The server receives `{ "name": "Aashish" }` as JSON input.

#### **3. Handling Form Data (`POST` Request)**
```python
@app.route('/submit', methods=['POST'])
def submit_form():
    name = request.form.get('name')  # Extracts form data
    return f"Form submitted by: {name}"
```
- Used in **HTML forms** (`<form method="POST">`).

### **Advanced Features**
- `request.headers.get("User-Agent")` → Extract browser info.
- `request.files['file']` → Handle file uploads.
- `request.method` → Identify request type (`GET`, `POST`, etc.).


Q.14 How do you create a RESTful API endpoint using Flask?

Ans - Creating a **RESTful API endpoint** using Flask is straightforward. Flask provides tools to define routes, handle requests, and return responses in a structured way.

### **Steps to Create a RESTful API Endpoint with Flask**
#### **1. Install Flask**
```bash
pip install flask
```

#### **2. Create a Flask Application (`app.py`)**
```python
from flask import Flask, jsonify, request

app = Flask(__name__)

# Sample data
users = [
    {"id": 1, "name": "Aashish"},
    {"id": 2, "name": "John"}
]

# RESTful API Endpoint to GET users
@app.route('/users', methods=['GET'])
def get_users():
    return jsonify(users)

# RESTful API Endpoint to GET a specific user
@app.route('/users/<int:user_id>', methods=['GET'])
def get_user(user_id):
    user = next((u for u in users if u["id"] == user_id), None)
    return jsonify(user) if user else jsonify({"error": "User not found"}), 404

# RESTful API Endpoint to CREATE a new user
@app.route('/users', methods=['POST'])
def create_user():
    data = request.json
    new_user = {"id": len(users) + 1, "name": data["name"]}
    users.append(new_user)
    return jsonify(new_user), 201

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- `GET /users` → Returns all users.
- `GET /users/1` → Fetches user with `id=1`.
- `POST /users` → Creates a new user with JSON input `{ "name": "New User" }`.

### **Testing the API**
You can test the API using **Postman** or Python’s `requests` library:
```python
import requests

response = requests.get("http://127.0.0.1:5000/users")
print(response.json())  # Displays the user list
```



Q.15 What is the purpose of Flask's jsonify() function?

Ans - Flask's `jsonify()` function is used to convert Python objects into **JSON responses**, making it easier to send structured data in Flask APIs.

### **Purpose of `jsonify()`**
- **Converts Python Data to JSON:** Transforms dictionaries, lists, and other Python objects into JSON format.
- **Sets Correct Headers:** Automatically sets the `Content-Type: application/json` header for API responses.
- **Improves API Consistency:** Ensures data is properly formatted when returning JSON to clients.

### **Example Usage**
#### **1. Returning JSON in a Flask API**
```python
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/user')
def get_user():
    user_data = {"id": 1, "name": "Aashish"}
    return jsonify(user_data)  # Converts dict to JSON response

if __name__ == '__main__':
    app.run(debug=True)
```
- **Output when visiting `/user`**:
```json
{
    "id": 1,
    "name": "Aashish"
}
```

#### **2. Returning Multiple Items**
```python
@app.route('/users')
def get_users():
    users = [{"id": 1, "name": "Alice"}, {"id": 2, "name": "Bob"}]
    return jsonify(users)
```
- **Returns a JSON array** for multiple users.

### **Alternative: Using `json.dumps()`**
While Python’s `json.dumps()` converts data to JSON, it **does not** set response headers:
```python
import json
from flask import Flask, Response

@app.route('/data')
def send_data():
    data = {"message": "Hello, Flask!"}
    return Response(json.dumps(data), content_type='application/json')
```
Using `jsonify()` is preferred for automatic formatting and response handling.


Q.16 Explain Flask’s url_for() function.

Ans - Flask's `url_for()` function is used to dynamically generate URLs for routes defined in a Flask application. Instead of hardcoding URLs, `url_for()` ensures URLs are constructed correctly based on route names, making applications more maintainable and scalable.

### **Why Use `url_for()`?**
- **Avoid Hardcoding:** Prevents manual changes if route structures change.
- **Dynamic URL Generation:** Works even when routes have dynamic parameters.
- **Supports Query Parameters:** Easily adds query parameters to URLs.
- **Works with Templates:** Commonly used in HTML templates for links and forms.

### **Basic Example**
```python
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/profile/<username>')
def profile(username):
    return f"Profile page of {username}"

@app.route('/generate_url')
def generate_url():
    return url_for('profile', username='Aashish')  # Generates URL dynamically

if __name__ == '__main__':
    app.run(debug=True)
```
- `url_for('profile', username='Aashish')` generates `/profile/Aashish` dynamically.

### **Example in HTML Templates**
```html
<a href="{{ url_for('profile', username='John') }}">Go to John's Profile</a>
```
This dynamically creates the correct URL without hardcoding it.

### **Adding Query Parameters**
You can add query parameters using `url_for()`:
```python
url_for('search', q='Flask', page=2)
```
Generates: `/search?q=Flask&page=2`


Q.17 How does Flask handle static files (CSS, JavaScript, etc.)?

Ans - Flask handles **static files** (such as CSS, JavaScript, and images) using the **`static`** directory. By default, Flask looks for static assets inside a folder named **`static`** within your project structure.

### **How Flask Handles Static Files**
- **Default Location:** Flask automatically serves files from a `static/` folder.
- **Accessing Static Files:** Use the `url_for()` function to generate correct paths.
- **Uses Built-in Server:** Flask serves static files while in development mode.

### **Example Project Structure**
```
/my_flask_app
    /static
        /css
            styles.css
        /js
            script.js
        /images
            logo.png
    /templates
        index.html
    app.py
```

### **Serving Static Files in Flask**
You can reference static assets in **HTML templates** like this:
```html
<link rel="stylesheet" href="{{ url_for('static', filename='css/styles.css') }}">
<script src="{{ url_for('static', filename='js/script.js') }}"></script>
<img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
```
Flask dynamically generates correct URLs for static files using `url_for('static', filename='path')`.

### **Handling Static Files in Routes**
If needed, you can serve a static file directly in a route:
```python
from flask import Flask, send_from_directory

app = Flask(__name__)

@app.route('/static/<path:filename>')
def static_files(filename):
    return send_from_directory('static', filename)

if __name__ == '__main__':
    app.run(debug=True)
```
This allows files like `/static/css/styles.css` to be accessed.



Q.18 What is an API specification, and how does it help in building a Flask API?

Ans - An **API specification** is a document or standard that defines how an API should be structured, including its endpoints, request formats, response types, and authentication methods. It serves as a blueprint for API development and integration.

### **How API Specifications Help in Building a Flask API**
1. **Consistency in Design:** Ensures uniform request and response formats across all API endpoints.
2. **Improves Collaboration:** Developers, frontend teams, and third-party users understand API behavior clearly.
3. **Automatic Documentation:** Specifications can be used to generate API documentation (e.g., with OpenAPI).
4. **Error Handling Guidelines:** Defines expected error responses and status codes.
5. **Enhances Security Practices:** Provides authentication and authorization details.

### **Example: OpenAPI Specification for a Flask API**
OpenAPI (formerly Swagger) is widely used for API specs.

#### **Defining an API Specification (`openapi.yaml`)**
```yaml
openapi: 3.0.0
info:
  title: User API
  version: 1.0.0
paths:
  /users:
    get:
      summary: Get all users
      responses:
        200:
          description: Successful response
          content:
            application/json:
              schema:
                type: array
                items:
                  type: object
                  properties:
                    id:
                      type: integer
                    name:
                      type: string
```
### **Integrating OpenAPI with Flask**
Flask can use **Flask-RESTful** and **Flask-Swagger** to generate documentation automatically.
```python
from flask import Flask, jsonify
from flask_restful import Api, Resource

app = Flask(__name__)
api = Api(app)

class Users(Resource):
    def get(self):
        return jsonify([{"id": 1, "name": "Aashish"}, {"id": 2, "name": "John"}])

api.add_resource(Users, '/users')

if __name__ == '__main__':
    app.run(debug=True)
```



Q.19 What are HTTP status codes, and why are they important in a Flask API?

Ans - ### **What Are HTTP Status Codes?**
HTTP status codes are **numeric responses** that indicate the outcome of a client's request to a server. They are essential for communication between a client (browser, API client) and a server.

### **Why Are Status Codes Important in a Flask API?**
- **Inform Clients About Request Success or Failure**  
- **Help Debug Issues Efficiently** (e.g., incorrect URL, authentication errors)  
- **Improve API Reliability** by following RESTful principles  
- **Standardize Error Handling** for predictable responses  

### **Common HTTP Status Codes in Flask APIs**
| **Status Code** | **Meaning**                         | **Usage in Flask** |
|----------------|-------------------------------------|--------------------|
| **200 OK**     | Request was successful             | `return jsonify(data), 200` |
| **201 Created** | Resource successfully created     | `return jsonify(new_user), 201` |
| **400 Bad Request** | Invalid request format or missing data | `return jsonify(error), 400` |
| **401 Unauthorized** | Authentication required      | `return jsonify({'error': 'Unauthorized'}), 401` |
| **404 Not Found** | Resource does not exist         | `return jsonify({'error': 'Not found'}), 404` |
| **500 Internal Server Error** | Unexpected error  | `return jsonify({'error': 'Server error'}), 500` |

### **Example in Flask**
```python
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/users/<int:user_id>')
def get_user(user_id):
    users = {1: "Aashish", 2: "John"}
    if user_id in users:
        return jsonify({'id': user_id, 'name': users[user_id]}), 200
    return jsonify({'error': 'User not found'}), 404

if __name__ == '__main__':
    app.run(debug=True)
```
- `/users/1` → Returns `200 OK` with user data.
- `/users/100` → Returns `404 Not Found`.



Q.20 How do you handle POST requests in Flask?

Ans - Handling **POST requests** in Flask is essential for APIs that accept data from clients, such as user submissions or form inputs.

### **Steps to Handle POST Requests in Flask**
#### **1. Install Flask**
```bash
pip install flask
```

#### **2. Define a Route for Handling POST Requests**
```python
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/users', methods=['POST'])
def create_user():
    data = request.json  # Extract JSON data from request body
    if not data or 'name' not in data:
        return jsonify({'error': 'Invalid input'}), 400  # Return Bad Request if data is missing

    new_user = {"id": 1, "name": data["name"]}
    return jsonify(new_user), 201  # 201 Created status

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- `request.json` → Extracts **JSON payload** from the request.
- Validates whether required fields (`name`) exist.
- Returns a structured JSON response with the correct **HTTP status code**.

### **Testing the API**
You can send a POST request using **Postman** or Python's `requests` library:
```python
import requests

response = requests.post("http://127.0.0.1:5000/users", json={"name": "Aashish"})
print(response.json())  # Output: {'id': 1, 'name': 'Aashish'}
```



Q.21 How would you secure a Flask API?

Ans - Securing a **Flask API** is essential to prevent unauthorized access, data leaks, and attacks. Here are key strategies for protecting your Flask application:

### **1. Use HTTPS (SSL/TLS)**
- Ensure all API traffic is encrypted by using **SSL/TLS**.
- In production, configure Flask to serve content over HTTPS.
- Example: Use **Let's Encrypt** for free SSL certificates.

### **2. Implement Authentication & Authorization**
- **Token-Based Authentication:** Use **JWT (JSON Web Tokens)** or OAuth.
- **API Keys:** Require unique API keys for access.
- Example using Flask-JWT-Extended:
```python
from flask import Flask, jsonify
from flask_jwt_extended import JWTManager, create_access_token, jwt_required

app = Flask(__name__)
app.config['JWT_SECRET_KEY'] = 'supersecretkey'  # Change this in production
jwt = JWTManager(app)

@app.route('/login', methods=['POST'])
def login():
    access_token = create_access_token(identity="user")
    return jsonify(access_token=access_token)

@app.route('/protected', methods=['GET'])
@jwt_required()
def protected():
    return jsonify(message="Secure endpoint")

if __name__ == '__main__':
    app.run(debug=True)
```
- `/login` issues a JWT, and `/protected` requires authentication.

### **3. Validate & Sanitize Input**
- Prevent SQL Injection by using **parameterized queries**.
- Avoid Cross-Site Scripting (**XSS**) by sanitizing user inputs.
```python
from flask_sqlalchemy import SQLAlchemy

db.session.execute("SELECT * FROM users WHERE name = :name", {"name": user_input})
```

### **4. Enable Rate Limiting**
- Prevent abuse by limiting API request frequency.
- Use `Flask-Limiter`:
```python
from flask_limiter import Limiter

limiter = Limiter(app)
@limiter.limit("10 per minute")
@app.route("/limited")
def limited_route():
    return "This route is rate-limited!"
```

### **5. Secure Error Handling**
- Avoid exposing sensitive data in error messages.
```python
@app.errorhandler(500)
def internal_error(error):
    return jsonify({"error": "Internal Server Error"}), 500
```

### **6. Protect Against Cross-Site Request Forgery (CSRF)**
- If using forms, enable **CSRF protection** with **Flask-WTF**.

### **7. Use Environment Variables for Configurations**
- Never store API secrets in code.
- Use **dotenv** to load sensitive values:
```python
import os
from dotenv import load_dotenv

load_dotenv()
SECRET_KEY = os.getenv("SECRET_KEY")
```

### **8. Restrict CORS (Cross-Origin Resource Sharing)**
- Use `Flask-CORS` to allow only trusted domains:
```python
from flask_cors import CORS
CORS(app, origins=["https://trusted-site.com"])
```

### **9. Log Security Events**
- Monitor unusual activity using logging:
```python
import logging
logging.basicConfig(filename='security.log', level=logging.WARNING)
logging.warning("Suspicious login attempt detected!")
```

### **10. Deploy Securely**
- Use **Gunicorn** or **uWSGI** instead of Flask’s built-in server.
- Configure firewalls and **AWS IAM roles** for cloud deployments.



Q.22 What is the significance of the Flask-RESTful extension?

Ans - **Flask-RESTful** is an extension for Flask that simplifies the creation of RESTful APIs by providing **class-based views**, automatic request parsing, and structured error handling. It is designed to make API development more efficient by offering built-in tools for common RESTful patterns.

### **Significance of Flask-RESTful**
1. **Class-Based API Design:**  
   - Organizes API endpoints using classes (`Resource`), improving modularity.
   - Helps maintain cleaner and scalable code.

2. **Request Parsing (`reqparse`)**  
   - Simplifies handling query parameters and JSON payloads.
   - Validates input data to prevent errors.

3. **Standardized Error Handling**  
   - Provides structured error responses with custom status codes.

4. **Effortless Route Management**  
   - Simplifies URL mappings using Flask’s `Api.add_resource()` method.

5. **Integration with Flask-SQLAlchemy**  
   - Works seamlessly with ORM-based models for database-driven APIs.

### **Example: Using Flask-RESTful**
```python
from flask import Flask, jsonify
from flask_restful import Api, Resource, reqparse

app = Flask(__name__)
api = Api(app)

# Define API request parser
parser = reqparse.RequestParser()
parser.add_argument('name', type=str, required=True, help="Name cannot be blank!")

class User(Resource):
    def get(self):
        return jsonify({"message": "Fetching user details"})

    def post(self):
        args = parser.parse_args()  # Extracts and validates input
        return jsonify({"message": f"User {args['name']} created"}), 201

api.add_resource(User, '/user')

if __name__ == '__main__':
    app.run(debug=True)
```
### **How It Works**
- `GET /user` → Returns user details.
- `POST /user` → Requires JSON input like `{"name": "Aashish"}`.
- `reqparse.RequestParser()` ensures input validation.


Q.23 What is the role of Flask’s session object?

Ans - Flask’s **session** object allows applications to store and manage user-specific data **across multiple requests**. Unlike request data, which is temporary and exists only for a single request, session data persists throughout a user's interaction with the application.

### **Role of Flask’s Session Object**
1. **Maintains User State:**  
   - Stores temporary data (like login details) while a user navigates the app.
  
2. **Supports Secure Storage:**  
   - Uses **signed cookies**, ensuring data integrity while keeping it lightweight.

3. **Enables Authentication Handling:**  
   - Saves session-based authentication details (e.g., logged-in status).

4. **Persistent Across Requests:**  
   - User-specific data is maintained across pages or actions.

### **How to Use Sessions in Flask**
#### **1. Enable Session Management**
```python
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'supersecretkey'  # Required for secure sessions

@app.route('/set_session')
def set_session():
    session['username'] = 'Aashish'  # Store data in session
    return "Session set!"

@app.route('/get_session')
def get_session():
    username = session.get('username', 'Guest')  # Retrieve session data
    return f"Hello, {username}!"

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- **`session['key'] = value`** → Stores data.
- **`session.get('key', default_value)`** → Retrieves stored data safely.
- **Secret Key (`app.secret_key`)** → Ensures session security.

### **Advanced Features**
- **Session Timeout:** Configure expiration using `PERMANENT_SESSION_LIFETIME`.
- **Clearing Sessions:** `session.clear()` removes all stored session data.




# Practical Questions

In [None]:
#How do you create a basic Flask application

Creating a basic Flask application is simple and requires minimal setup. Here’s how you can do it:

### **1. Install Flask**
Make sure Flask is installed in your Python environment:
```bash
pip install flask
```

### **2. Create a Flask App (`app.py`)**
Write the following Python script:
```python
from flask import Flask

app = Flask(__name__)  # Create Flask application instance

@app.route('/')  # Define a route
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)  # Run the app in debug mode
```

### **3. Run the Application**
Execute the script:
```bash
python app.py
```
By default, Flask runs on `http://127.0.0.1:5000/`. Open this in a browser, and you’ll see **"Hello, Flask!"** displayed.

### **Key Concepts:**
- `Flask(__name__)` creates the Flask instance.
- `@app.route('/')` defines a route for handling requests.
- `app.run(debug=True)` starts the server with live debugging.



In [None]:
#How do you serve static files like images or CSS in Flask

Flask serves **static files** (such as CSS, JavaScript, and images) using a **`static`** directory. By default, Flask looks for a folder named **`static`** inside your project to store these assets.

### **How Flask Handles Static Files**
- **Default Directory:** Static files must be placed in a folder named `static` within the project.
- **Accessing Static Files:** Use **`url_for()`** to generate correct URLs for static assets.
- **Uses Built-in Server:** Flask serves static files automatically while in development.

### **Project Structure Example**
```
/flask_app
    /static
        /css
            styles.css
        /js
            script.js
        /images
            logo.png
    /templates
        index.html
    app.py
```

### **Referencing Static Files in Templates**
Use `url_for('static', filename='path')` inside HTML files:
```html
<link rel="stylesheet" href="{{ url_for('static', filename='css/styles.css') }}">
<script src="{{ url_for('static', filename='js/script.js') }}"></script>
<img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
```

### **Serving Static Files in Routes**
Although Flask automatically serves files from the `static` directory, you can manually serve them if needed:
```python
from flask import Flask, send_from_directory

app = Flask(__name__)

@app.route('/static/<path:filename>')
def serve_static(filename):
    return send_from_directory('static', filename)

if __name__ == '__main__':
    app.run(debug=True)
```
This allows users to access files like `/static/css/styles.css`.



In [None]:
#How do you define different routes with different HTTP methods in Flask

Defining different routes with various **HTTP methods** in Flask is essential for building RESTful APIs. Flask allows you to specify **GET, POST, PUT, DELETE, PATCH**, and other methods for each route using the `methods` argument in the `@app.route()` decorator.

### **Example: Handling Multiple HTTP Methods**
```python
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/users', methods=['GET', 'POST'])
def manage_users():
    if request.method == 'GET':
        return jsonify({"message": "Fetching all users"})
    elif request.method == 'POST':
        data = request.json
        return jsonify({"message": f"User {data['name']} created!"}), 201

@app.route('/users/<int:user_id>', methods=['GET', 'PUT', 'DELETE'])
def manage_user(user_id):
    if request.method == 'GET':
        return jsonify({"message": f"Fetching user {user_id}"})
    elif request.method == 'PUT':
        data = request.json
        return jsonify({"message": f"User {user_id} updated to {data['name']}!"})
    elif request.method == 'DELETE':
        return jsonify({"message": f"User {user_id} deleted!"}), 204

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- `GET /users` → Fetch all users.
- `POST /users` → Create a new user with JSON `{ "name": "Aashish" }`.
- `GET /users/1` → Fetch user `1`.
- `PUT /users/1` → Update user `1` with JSON `{ "name": "John" }`.
- `DELETE /users/1` → Remove user `1`.

### **Using `request.method`**
- Flask's `request.method` detects the incoming **HTTP method**, allowing conditional handling.



In [None]:
#How do you render HTML templates in Flask

Flask allows you to **render HTML templates** using the **Jinja2 template engine**. This makes it easy to create dynamic web pages with variables, loops, and conditionals.

### **Steps to Render HTML Templates in Flask**
#### **1. Project Structure**
```
/flask_app
    /templates
        index.html
    app.py
```

#### **2. Create a Basic Flask App (`app.py`)**
```python
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')  # Renders an HTML template

if __name__ == '__main__':
    app.run(debug=True)
```

#### **3. Create an HTML Template (`templates/index.html`)**
```html
<!DOCTYPE html>
<html lang="en">
<head>
    <title>Flask Template Example</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>
</body>
</html>
```

### **How It Works**
- The `render_template()` function looks for files inside the `templates/` folder.
- Flask automatically applies **Jinja2 templating**, allowing dynamic content.

### **Passing Data to Templates**
You can send Python variables to the template:
```python
@app.route('/hello/<name>')
def greet(name):
    return render_template('index.html', username=name)
```

#### **Modify `index.html` to Use Dynamic Data**
```html
<body>
    <h1>Hello, {{ username }}!</h1>
</body>
```
Now, `/hello/Aashish` will display **"Hello, Aashish!"** dynamically.



In [None]:
#How can you generate URLs for routes in Flask using url_for

In Flask, the `url_for()` function dynamically generates URLs for defined routes. This helps avoid hardcoding URLs, making applications more flexible and maintainable.

### **How `url_for()` Works**
- It takes the name of a **view function** and constructs the corresponding URL.
- It can **pass dynamic parameters** to routes.
- It ensures URL correctness, even if the route structure changes.

### **Basic Example**
```python
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/profile/<username>')
def profile(username):
    return f"Profile page of {username}"

@app.route('/generate_url')
def generate_url():
    return url_for('profile', username='Aashish')  # Generates URL dynamically

if __name__ == '__main__':
    app.run(debug=True)
```
- `url_for('profile', username='Aashish')` → Generates `/profile/Aashish`

### **Using `url_for()` in HTML Templates**
```html
<a href="{{ url_for('profile', username='John') }}">Visit John's Profile</a>
```
This dynamically creates the correct URL without hardcoding it.

### **Adding Query Parameters**
You can append query parameters to a URL:
```python
url_for('search', q='Flask', page=2)
```
Generates: `/search?q=Flask&page=2`



In [None]:
#How do you handle forms in Flask

Handling forms in Flask allows users to submit data through **HTML forms** and process it in Python. Flask provides multiple ways to handle form submissions, including **request.form**, **WTForms**, and **CSRF protection**.

### **1. Handling Forms Using `request.form`**
Flask's `request` object extracts form data submitted via `POST`.
#### **Example: Basic Form Handling**
```python
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def handle_form():
    if request.method == 'POST':
        name = request.form.get('name')  # Extracts form data
        return f"Hello, {name}!"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)
```

### **2. HTML Form (`templates/form.html`)**
```html
<form method="POST">
    <input type="text" name="name" placeholder="Enter your name">
    <button type="submit">Submit</button>
</form>
```
- The **`POST`** request submits form data to Flask.
- Flask retrieves `name` using `request.form.get()`.

---

### **3. Handling Forms with Flask-WTF (Recommended)**
Flask-WTF provides better validation and **CSRF protection**.
#### **Installation**
```bash
pip install flask-wtf
```
#### **Example Using Flask-WTF**
```python
from flask import Flask, render_template
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired

app = Flask(__name__)
app.config['SECRET_KEY'] = 'supersecretkey'  # Required for CSRF protection

class NameForm(FlaskForm):
    name = StringField("Name", validators=[DataRequired()])
    submit = SubmitField("Submit")

@app.route('/', methods=['GET', 'POST'])
def handle_form():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)
```
#### **Flask-WTF Template (`templates/form.html`)**
```html
<form method="POST">
    {{ form.hidden_tag() }} <!-- CSRF protection -->
    {{ form.name.label }} {{ form.name() }}
    {{ form.submit() }}
</form>
```
- Flask-WTF ensures better validation and security.

---

### **4. CSRF Protection**
Flask-WTF automatically **prevents CSRF attacks**, but for manual CSRF protection:
```python
from flask import Flask, session
app.config['SECRET_KEY'] = 'secure_key'
```
- Use **`session['csrf_token']`** for manual CSRF implementation.


In [None]:
#How can you validate form data in Flask

Validating form data in Flask ensures that user input is correct, secure, and prevents errors before processing. There are **two main ways** to validate form data: **manual validation** using Flask's `request.form` and **using Flask-WTF**, a powerful extension for structured validation.

---

### **1. Manual Validation Using `request.form`**
Flask's `request` object allows extracting form data and applying **custom validation checks**.

#### **Example: Basic Validation**
```python
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def handle_form():
    if request.method == 'POST':
        name = request.form.get('name')

        # Basic validation
        if not name:
            return "Error: Name cannot be empty!", 400  # Return Bad Request
        elif len(name) < 3:
            return "Error: Name must be at least 3 characters!", 400

        return f"Hello, {name}!"

    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)
```
#### **HTML Form (`templates/form.html`)**
```html
<form method="POST">
    <input type="text" name="name" placeholder="Enter your name">
    <button type="submit">Submit</button>
</form>
```

---

### **2. Using Flask-WTF for Advanced Validation**
Flask-WTF provides **built-in validators**, CSRF protection, and makes validation cleaner.

#### **Installation**
```bash
pip install flask-wtf
```

#### **Example Using Flask-WTF**
```python
from flask import Flask, render_template
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Length

app = Flask(__name__)
app.config['SECRET_KEY'] = 'supersecretkey'  # Required for CSRF protection

class NameForm(FlaskForm):
    name = StringField("Name", validators=[DataRequired(), Length(min=3)])
    submit = SubmitField("Submit")

@app.route('/', methods=['GET', 'POST'])
def handle_form():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)
```

#### **Modified HTML Form (`templates/form.html`)**
```html
<form method="POST">
    {{ form.hidden_tag() }} <!-- CSRF protection -->
    {{ form.name.label }} {{ form.name() }}
    {{ form.submit() }}
</form>
```
---






In [None]:
#How do you manage sessions in Flask

Flask manages **sessions** using the `session` object, which allows applications to store and persist user-specific data across multiple requests. Unlike request data, which is temporary for a single interaction, session data remains available throughout a user's session.

### **How Flask Manages Sessions**
1. **Stores Data Across Requests**
   - Keeps track of user login status or preferences.

2. **Uses Secure Signed Cookies**
   - Data is stored in cookies and **signed** using a secret key.

3. **Allows User Authentication Handling**
   - Useful for tracking authenticated users.

### **Basic Session Example**
#### **1. Enable Flask Sessions (`app.py`)**
```python
from flask import Flask, session

app = Flask(__name__)
app.config['SECRET_KEY'] = 'supersecretkey'  # Required for session security

@app.route('/set_session')
def set_session():
    session['username'] = 'Aashish'  # Store data in session
    return "Session set!"

@app.route('/get_session')
def get_session():
    username = session.get('username', 'Guest')  # Retrieve session data
    return f"Hello, {username}!"

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- **Setting Data:** `session['key'] = value` (Stores session variables).
- **Retrieving Data:** `session.get('key', default_value)` (Retrieves session variables).
- **Secret Key (`app.secret_key`)** ensures session integrity.

---

### **Managing Session Expiry & Deletion**
- **Set Session Expiry:**
```python
from datetime import timedelta
app.config['PERMANENT_SESSION_LIFETIME'] = timedelta(minutes=30)
session.permanent = True  # Keeps session active for set time
```

- **Deleting Session Data:**
```python
session.pop('username', None)  # Remove specific session key
session.clear()  # Clears entire session
```

---

### **Flask-Session for Server-Side Sessions**
If you need **server-side session storage**, use `Flask-Session`:
```bash
pip install flask-session
```
Configure Flask to use **Redis, Filesystem, or Database-based** session storage:
```python
from flask_session import Session

app.config['SESSION_TYPE'] = 'filesystem'  # Store session data in files
Session(app)
```



In [None]:
#How do you redirect to a different route in Flask

In Flask, you can **redirect** users to a different route using the `redirect()` function along with `url_for()` to dynamically generate the target URL.

### **Example: Redirecting to Another Route**
```python
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the home page!"

@app.route('/redirect_me')
def go_somewhere():
    return redirect(url_for('home'))  # Redirects to the home route

if __name__ == '__main__':
    app.run(debug=True)
```
### **How It Works**
1. When a user visits `/redirect_me`, Flask **redirects** them to `/` using `redirect()`.
2. `url_for('home')` dynamically generates the correct URL.

---

### **Redirecting with HTTP Status Codes**
By default, Flask uses a **302 (Found) redirect**, but you can specify other status codes:
```python
return redirect(url_for('home'), code=301)  # Permanent Redirect
return redirect(url_for('home'), code=307)  # Temporary Redirect
```

---

### **Redirect After Form Submission**
Redirect users to a confirmation page after submitting a form:
```python
@app.route('/submit', methods=['POST'])
def submit_form():
    return redirect(url_for('thank_you'))

@app.route('/thank_you')
def thank_you():
    return "Thank you for your submission!"
```



In [None]:
#How do you handle errors in Flask (e.g., 404)
Flask provides several methods to handle errors, including **custom error handlers** and **status codes**, ensuring structured responses and better debugging.

### **1. Using HTTP Status Codes**
You can return appropriate status codes in API responses:
```python
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/divide/<int:a>/<int:b>')
def divide(a, b):
    if b == 0:
        return jsonify({'error': 'Division by zero is not allowed'}), 400  # Bad Request
    return jsonify({'result': a / b})

if __name__ == '__main__':
    app.run(debug=True)
```
- `/divide/10/0` → Returns `{ "error": "Division by zero is not allowed" }` with **400 Bad Request**.

---

### **2. Custom Error Handlers**
Flask allows defining global error handlers for specific errors:
```python
@app.errorhandler(404)
def not_found(error):
    return jsonify({'error': 'Resource not found'}), 404

@app.errorhandler(500)
def server_error(error):
    return jsonify({'error': 'Internal server error'}), 500
```
- If a user requests an invalid URL, the **404 handler** triggers.
- Unexpected issues trigger the **500 handler**.

---

### **3. Handling Exceptions Gracefully**
Use `try-except` blocks to catch errors in routes:
```python
@app.route('/safe_divide/<int:a>/<int:b>')
def safe_divide(a, b):
    try:
        result = a / b
    except ZeroDivisionError:
        return jsonify({'error': 'Cannot divide by zero'}), 400
    return jsonify({'result': result})
```

---

### **4. Logging Errors for Debugging**
For better debugging, Flask can log errors:
```python
import logging

logging.basicConfig(filename='app.log', level=logging.ERROR)

@app.route('/error_test')
def error_test():
    try:
        raise ValueError("Testing error logging")
    except Exception as e:
        logging.error(f"Error occurred: {e}")
        return jsonify({'error': 'Something went wrong'}), 500
```
This logs errors to `app.log`, helping track issues.




In [None]:
#How do you structure a Flask app using Blueprints

Using **Flask Blueprints** helps structure large applications by organizing related routes, models, and logic into separate modules. This modular approach improves maintainability and reusability.

### **Steps to Structure a Flask App Using Blueprints**
#### **1. Project Structure**
```
/flask_app
    /app
        /routes
            users.py
            products.py
        /templates
            users.html
            products.html
        __init__.py
    app.py
```

#### **2. Create a Blueprint for Users (`routes/users.py`)**
```python
from flask import Blueprint, render_template

users_bp = Blueprint('users', __name__, template_folder='../templates')

@users_bp.route('/users')
def users():
    return render_template('users.html')  # Render user page
```

#### **3. Create Another Blueprint (`routes/products.py`)**
```python
from flask import Blueprint, jsonify

products_bp = Blueprint('products', __name__)

@products_bp.route('/products')
def products():
    return jsonify({"message": "List of products"})
```

#### **4. Register Blueprints in Main App (`app/__init__.py`)**
```python
from flask import Flask
from app.routes.users import users_bp
from app.routes.products import products_bp

def create_app():
    app = Flask(__name__)

    # Register Blueprints
    app.register_blueprint(users_bp)
    app.register_blueprint(products_bp)

    return app
```

#### **5. Run Flask Application (`app.py`)**
```python
from app import create_app

app = create_app()

if __name__ == '__main__':
    app.run(debug=True)
```




In [None]:
#How do you define a custom Jinja filter in Flask

In Flask, you can define a **custom Jinja filter** to extend the template engine's capabilities by adding custom formatting or processing logic.

### **Steps to Define a Custom Jinja Filter**
#### **1. Create a Flask App**
```python
from flask import Flask, render_template

app = Flask(__name__)

# Define a custom filter
def reverse_string(s):
    return s[::-1]

# Register the filter with Jinja
app.jinja_env.filters['reverse'] = reverse_string

@app.route('/')
def index():
    return render_template('index.html', text="Flask")

if __name__ == '__main__':
    app.run(debug=True)
```

#### **2. Using the Custom Filter in a Template (`templates/index.html`)**
```html
<p>Original: {{ text }}</p>
<p>Reversed: {{ text | reverse }}</p>
```

### **How It Works**
- The function `reverse_string()` reverses a string.
- `app.jinja_env.filters['reverse'] = reverse_string` registers it as `reverse`.
- Inside Jinja templates, use `{{ text | reverse }}` to apply the filter.

### **Alternative Way: Using `@app.template_filter`**
You can define filters using the `@app.template_filter` decorator:
```python
@app.template_filter('uppercase')
def uppercase_filter(s):
    return s.upper()
```
Use it in templates:
```html
<p>Uppercase: {{ text | uppercase }}</p>
```



In [None]:
#How can you redirect with query parameters in Flask

In Flask, you can redirect users to another route while **preserving query parameters** using `redirect()` along with `url_for()`. You can append query parameters dynamically using the `query_string` argument in `url_for()`.

### **Example: Redirect with Query Parameters**
```python
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q', 'default')  # Get query parameter
    return f"Searching for: {query}"

@app.route('/redirect_with_params')
def redirect_with_params():
    return redirect(url_for('search', q='Flask', page=2))  # Redirect with parameters

if __name__ == '__main__':
    app.run(debug=True)
```

### **How It Works**
- **Redirect to `/search` with Query Params**
  - `url_for('search', q='Flask', page=2)` generates `/search?q=Flask&page=2`
  - `redirect(url_for(...))` ensures proper redirection.

---

### **Handling Redirects from User Input**
You can capture user input and pass it dynamically:
```python
@app.route('/redirect_dynamic')
def redirect_dynamic():
    user_query = request.args.get('q', 'default')
    return redirect(url_for('search', q=user_query))
```
Now, `/redirect_dynamic?q=Python` → Redirects to `/search?q=Python`.


In [None]:
#How do you return JSON responses in Flask

In Flask, you can return **JSON responses** using the `jsonify()` function, which converts Python data structures into a properly formatted JSON response.

### **Why Use `jsonify()`?**
- **Ensures Correct JSON Formatting**
- **Automatically Sets `Content-Type: application/json`**
- **Improves API Compatibility**

### **Example: Returning JSON in a Flask API**
```python
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/user')
def get_user():
    user_data = {"id": 1, "name": "Aashish"}
    return jsonify(user_data)  # Converts dict to JSON response

if __name__ == '__main__':
    app.run(debug=True)
```
- Visiting `/user` returns:
```json
{
    "id": 1,
    "name": "Aashish"
}
```

---

### **Returning Multiple Items**
```python
@app.route('/users')
def get_users():
    users = [{"id": 1, "name": "Alice"}, {"id": 2, "name": "Bob"}]
    return jsonify(users)
```
- Returns a **JSON array** for multiple users.

---

### **Alternative: Using `json.dumps()`**
While Python’s `json.dumps()` converts data to JSON, it **does not** set response headers:
```python
import json
from flask import Flask, Response

@app.route('/data')
def send_data():
    data = {"message": "Hello, Flask!"}
    return Response(json.dumps(data), content_type='application/json')
```
Using `jsonify()` is preferred for automatic formatting and response handling.



In [None]:
#How do you capture URL parameters in Flask

In Flask, you can capture **URL parameters** using **route variables** within the `@app.route()` decorator. These parameters allow dynamic URL structures where specific values can be extracted from the request URL.

---

### **Capturing URL Parameters in Flask**
#### **1. Handling a Single URL Parameter**
```python
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def profile(username):
    return f"Profile page of {username}"

if __name__ == '__main__':
    app.run(debug=True)
```
🔹 Visiting `/user/Aashish` → Displays **"Profile page of Aashish"**.
🔹 `username` is dynamically extracted from the URL.

---

#### **2. Handling Multiple URL Parameters**
```python
@app.route('/product/<int:product_id>/category/<string:category>')
def product_detail(product_id, category):
    return f"Product ID: {product_id}, Category: {category}"
```
- **Dynamic URL:** `/product/123/category/Electronics`
- Extracted values:
  - `product_id` (integer)
  - `category` (string)

---

### **Accessing Query Parameters (`?key=value`)**
For **optional query parameters**, Flask provides `request.args.get()`.
```python
from flask import request

@app.route('/search')
def search():
    query = request.args.get('q', 'default')  # Extract query parameter
    return f"Searching for: {query}"
```
Visiting `/search?q=Flask` → Extracts `"Flask"` as the query parameter.

---
