In [None]:
"""#Q1  What is a RESTful API?

ANS A RESTful API (Representational State Transfer) is a web service that adheres to a set of architectural constraints defined by Roy Fielding. Its main principles are:

Resources are identified by URLs (e.g., /users/123).

Interactions are stateless: each request carries all the information needed.

A uniform interface uses standard HTTP methods (GET, POST, PUT, DELETE) to operate on resources.

Representations (JSON, XML) carry the state of the resource.

Because it leverages HTTP itself, RESTful APIs are easy to consume, cache, and scale.



#Q2 Explain the concept of API specification

ANS An API specification is a formal, machine-readable contract that describes every aspect of your API:

Endpoints (paths) and supported HTTP methods.

Request parameters, headers, and body schemas.

Response formats and status codes.

Authentication requirements and error models.

OpenAPI (formerly Swagger) is the most popular spec format. Having a spec:

Drives documentation that’s always in sync.

Enables code generation for clients and servers.

Provides automatic request validation and testing.



# Q3 What is Flask, and why is it popular for building APIs

Flask is a lightweight Python web framework based on Werkzeug and Jinja2. It’s popular for APIs because:

Minimal boilerplate: you can start with a handful of lines.

Extensible ecosystem: e.g., Flask-RESTful, Flask-JWT-Extended.

Clear routing and decorator model.

WSGI compliance makes it deployable on any Python-friendly server.

Its micro-framework nature means you only pull in the libraries you actually need.



# Q4What is routing in Flask

Routing is the mechanism that maps an incoming HTTP request (method + URL) to a specific Python function (view). When Flask receives a request, it:

Parses the URL and HTTP method.

Searches its internal routing table for a matching rule.

Calls the corresponding view function and returns its result.



# Q5 How do you create a simple Flask application"""

#python
from flask import Flask

app = Flask(__name__)

@app.route('/')             
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)
"""Steps:

Instantiate Flask.

Use @app.route() to bind URLs to view functions.

Call app.run() to start the development server."""



# Q6 What are HTTP methods used in RESTful APIs

"""GET: Retrieve a resource.

POST: Create a new resource.

PUT: Replace or create a resource at a URL.

PATCH: Partially update a resource.

DELETE: Remove a resource.

OPTIONS: Discover supported methods.

HEAD: Same as GET but without response body."""



# Q7 What is the purpose of the @app.route() decorator in Flask

#@app.route() tells Flask:

#Which URL pattern this view should handle.

#Which HTTP methods are allowed (via methods=[…]).

#Example:

#python
@app.route('/items', methods=['GET', 'POST'])
def items():
    …

    
# Q8 What is the difference between GET and POST HTTP methods

"""GET

Safe and idempotent: shouldn’t change server state.

Parameters in URL query string.

Responses can be cached.

POST

Non-idempotent: used for creating/submitting data.

Payload in request body (JSON, form data).

Not cached by default."""



# Q9 How do you handle errors in Flask APIs

#Use abort() to send an HTTP error:

#python
from flask import abort
abort(404, description="Resource not found")
#Define error handlers:

#python
@app.errorhandler(400)
def bad_request(e):
    return {'error': str(e)}, 400
#Wrap logic in try/except, return structured JSON errors with proper status codes.

#  Q10 How do you connect Flask to a SQL database

#Install an ORM or driver (e.g., flask-sqlalchemy, psycopg2).

#Configure the database URI:

#python
app.config['SQLALCHEMY_DATABASE_URI'] = 'postgresql://user:pass@host/dbname'
#Initialize:

#python
from flask_sqlalchemy import SQLAlchemy
db = SQLAlchemy(app)


#Define models, run db.create_all() to create tables, then use db.session to query or commit.



#  Q11 What is the role of Flask-SQLAlchemy

"""Flask-SQLAlchemy wraps SQLAlchemy ORM to integrate smoothly with Flask’s app context:

Manages sessions automatically.

Simplifies model declarations (inherit from db.Model).

Provides helper commands like flask db migrate with Flask-Migrate.

What are Flask blueprints, and how are they useful

Blueprints let you split an app into reusable modules:

Each blueprint can define its own routes, static files, templates, and error handlers.

You register blueprints on the main app, optionally with a URL prefix.

They enable a clear project structure, especially for large applications.

What is the purpose of Flask’s request object

flask.request is a proxy to the current HTTP request. It provides:

request.args for query parameters.

request.form for form data.

request.get_json() for JSON bodies.

request.headers, request.cookies, request.method, etc.

It’s how you access everything the client sent. """

#  Q14 How do you create a RESTful API endpoint using Flask

#python
from flask import jsonify, request

@app.route('/users/<int:id>', methods=['GET'])
def get_user(id):
    user = User.query.get_or_404(id)
    return jsonify(user.to_dict()), 200
#Key steps:

#Define the URL and method.

#Fetch or modify data.

#Serialize to JSON and return with an appropriate status code.



#Q15 What is the purpose of Flask’s jsonify() function

"""jsonify() serializes Python dicts or lists to JSON, sets Content-Type: application/json, and handles Unicode and sorting safely. It returns a proper Response object.

Explain Flask’s url_for() function

url_for('endpoint', **values) generates the URL for a given endpoint name (the function’s name or blueprint-qualified). Benefits:

No hard-coding URLs; if you rename or change prefixes, links stay valid.

Builds URLs with dynamic parts automatically.

Example: url_for('get_user', id=42) → "/users/42".

How does Flask handle static files (CSS, JavaScript, etc.)

By default, Flask serves files from the static/ folder at /static/<filename>.

You can reference them in templates:

html
<link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
You can change the folder via Flask(__name__, static_folder='assets').

What is an API specification, and how does it help in building a Flask API

An API specification (e.g., OpenAPI) formally declares your endpoints, schemas, parameters, and responses. When you integrate it with Flask (via Flask-RESTX or Connexion), you get:

Automatic request validation.

Interactive docs (Swagger UI).

Client and server code generation.

This reduces mismatches and accelerates development.

What are HTTP status codes, and why are they important in a Flask API

Status codes communicate the result of a request:

2xx for success (200 OK, 201 Created)

4xx for client errors (400 Bad Request, 404 Not Found)

5xx for server errors (500 Internal Server Error)

Consistent use lets clients handle different scenarios programmatically."""



#  Q20How do you handle POST requests in Flask

#python
@app.route('/items', methods=['POST'])
def create_item():
    data = request.get_json() or {}
    if 'name' not in data:
        abort(400, 'Missing name field')
    item = Item(name=data['name'])
    db.session.add(item)
    db.session.commit()
    return jsonify(item.to_dict()), 201
#Steps:

#Use methods=['POST'].

#Parse JSON or form.

#Validate input.

#Persist data and return a 201 Created with the new resource.

#Q21 How would you secure a Flask API

"""Enforce HTTPS.

Use token-based authentication (JWT) with flask-jwt-extended.

Validate and sanitize all inputs.

Implement rate limiting (Flask-Limiter).

Enable CORS selectively (Flask-CORS).

Protect against CSRF if you mix forms and JSON.

Store secrets (API keys, database URIs) in environment variables.

What is the significance of the Flask-RESTful extension

Flask-RESTful adds a Resource class model, simplifying REST endpoints:

You declare classes with get(), post(), etc.

Built-in request parsing with reqparse.

Automatic routing via api.add_resource().

Consistent error handling and representation.

This can cut boilerplate in medium-sized APIs.

What is the role of Flask’s session object?

flask.session lets you store per-client data between requests. By default, it’s a signed cookie, so:

You can store small bits of data (user ID, flash flags).

It’s cryptographically signed to prevent tampering.

Configurable to use server-side storage (Redis, databases) with extensions like Flask-Session."""




#PRACTICAL QUESTIONS


#  Q1 How do you create a basic Flask application

Create a Python file (e.g. app.py), install Flask (pip install Flask), then write:

#python
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)
#Save and run with python app.py. Your development server starts on http://127.0.0.1:5000/, showing “Hello, Flask!”



#  Q2How do you serve static files like images or CSS in Flask

"""By default, Flask looks for a folder named static in your project root. Place assets under it:

project/
│
├── static/
│   ├── css/
│   │   └── style.css
│   ├── js/
│   │   └── script.js
│   └── images/
│       └── logo.png
└── app.py
In templates, reference them with url_for('static', filename='…'):

html
<link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
<img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
<script src="{{ url_for('static', filename='js/script.js') }}"></script>  """



#  Q3 How do you define different routes with different HTTP methods in Flask

#Use the methods argument on @app.route:

#python
from flask import Flask, request

app = Flask(__name__)

@app.route('/items', methods=['GET', 'POST'])
def items():
    if request.method == 'GET':
        return 'Listing items'
    else:
        return 'Creating an item', 201

        
#   Q4 How do you render HTML templates in Flask

"""Create a folder named templates.

Put your HTML files there (e.g. templates/index.html).

In your view, import and call render_template: """

#python
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def index():
    return render_template('index.html', message='Hello from Flask!')


    
#   Q5 How can you generate URLs for routes in Flask using url_for

#Use url_for('endpoint_name', **values) to avoid hard-coding paths:

#python
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/user/<username>')
def profile(username):
    return f'Profile: {username}'

@app.route('/')
def index():
    profile_url = url_for('profile', username='alice')
    return f'<a href="{profile_url}">Alice’s Profile</a>'
#This outputs <a href="/user/alice">…</a>.

#  Q6 How do you handle forms in Flask

#Define a route with both GET and POST:

#python
@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        name = request.form['name']
        return f'Hello, {name}!'
    return render_template('form.html')
    
#In form.html, set <form method="post"> and name your inputs.

#Access request.form for form fields, and request.args for query strings.

#  Q7 How can you validate form data in Flask

#– Manually check required fields and types:

#python
data = request.form
if not data.get('email'):
    abort(400, 'Email required')
#– For robust validation, use Flask-WTF and WTForms:

#python
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Email

class MyForm(FlaskForm):
    email = StringField('Email', validators=[DataRequired(), Email()])
    submit = SubmitField('Submit')
#In your view:

#python
form = MyForm()
if form.validate_on_submit():
    # safe to use form.email.data


    
#  Q8 How do you manage sessions in Flask

#Set a secret key:

#python
app.secret_key = 'replace_with_env_var'
#Use the session object like a dict:

#python
from flask import session

@app.route('/login', methods=['POST'])
def login():
    session['user'] = request.form['username']
    return 'Logged in'

@app.route('/logout')
def logout():
    session.pop('user', None)
    return 'Logged out'
#By default, Flask stores session in a signed cookie. For server-side sessions, install and configure Flask-Session.

#  Q9 How do you redirect to a different route in Flask

#Use redirect() with a URL or url_for():

#python
from flask import redirect, url_for

@app.route('/old-page')
def old_page():
    return redirect(url_for('new_page'))

@app.route('/new-page')
def new_page():
    return 'This is the new page'

    
#   Q10 How do you handle errors in Flask (e.g., 404)

#Define error handlers with @app.errorhandler:

#python
from flask import render_template

@app.errorhandler(404)
def not_found(error):
    return render_template('404.html'), 404

@app.errorhandler(500)
def server_error(error):
    return render_template('500.html'), 500
#This serves custom templates instead of default error pages.

#   Q11 How do you structure a Flask app using Blueprints

#Create a blueprint in its own file:

#python
# users/routes.py
from flask import Blueprint
users_bp = Blueprint('users', __name__, url_prefix='/users')

@users_bp.route('/')
def list_users():
    return 'User list'
#Register it in your app factory or main file:

#python
from flask import Flask
from users.routes import users_bp

app = Flask(__name__)
app.register_blueprint(users_bp)
This splits routes, templates, and static assets into reusable modules.

#   Q12 How do you define a custom Jinja filter in Flask

#Use the @app.template_filter() decorator or set app.jinja_env.filters:

#python
@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

# or
def reverse_filter(s):
    return s[::-1]
app.jinja_env.filters['reverse'] = reverse_filter
#In templates: {{ mytext|reverse }}.

#   Q13 How can you redirect with query parameters in Flask

#Pass keyword args to url_for:

#python
@app.route('/search')
def search():
    term = request.args.get('q', '')
    return redirect(url_for('results', q=term))

@app.route('/results')
def results():
    q = request.args.get('q')
    return f'Search results for {q}'

    
# This redirects to /results?q=….

#  Q14How do you return JSON responses in Flask

#– Modern Flask (>=1.1) lets you return a dict directly:

#python
@app.route('/api/data')
def data():
    return {'key': 'value'}
#– For older versions or more control, use jsonify:

#python
from flask import jsonify
@app.route('/api/data')
def data():
    return jsonify(key='value')


    
#   Q15 How do you capture URL parameters in Flask

#Define dynamic segments in your route and receive them as function arguments:

#python
@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post {post_id}'
Flask supports converters like string (default), int, float, path, and uuid.


