#1. What is a RESTful API?
-> A RESTful API (Representational State Transfer Application Programming Interface) is a standardized way for different software systems to communicate over the internet using HTTP protocols. It's built on principles that ensure efficiency, scalability, and ease of use.

#2. Explain the concept of API specification.
-> An API specification is a detailed, standardized document that describes how an Application Programming Interface (API) works and how developers can interact with it. It's essentially a contract between the API provider and the API consumer, outlining all the necessary information for a developer to use the API effectively.

#3. What is Flask, and why is it popular for building APIs?
-> Flask is a lightweight Python web framework often used for building APIs. Its popularity stems from its:

Minimalism & Efficiency: As a micro-framework, Flask provides only essential tools, making it fast and resource-efficient for API development.

Flexibility: It offers developers the freedom to choose their preferred libraries, databases, and architectural patterns, rather than imposing a rigid structure.

Ease of Use: With a small codebase and simple design, Flask is quick to learn, enabling faster development for new and experienced developers alike.

#4. What is routing in Flask?
-> In Flask, routing is the mechanism that maps incoming URL requests to specific Python functions that handle those requests. It's how your Flask application determines what code to run when a user navigates to a particular web address.

#5. How do you create a simple Flask application?
-> Flask application, you primarily need to set up a Python environment, install Flask, write a basic Python script to define your application, and then run it.

Steps to Create a Simple Flask App
Set Up Environment:

Create a project directory and a virtual environment.

Activate the virtual environment.

Install Flask using pip install Flask.

Write Code (app.py):

Python

from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello_world():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)
This code initializes Flask, defines a route (/) that triggers the hello_world() function, which simply returns a string. debug=True allows for automatic reloading and an in-browser debugger during development.

Run Application:

Navigate to your project directory in the terminal (with the virtual environment activated).

Run the app using python app.py.

Access App:

Open your web browser and go to http://127.0.0.1:5000/. You should see "Hello, World!".

#6. What are HTTP methods used in RESTful APIs?
-> In RESTful APIs, HTTP methods (also known as verbs) define the type of action a client wants to perform on a given resource. These methods map to the standard CRUD (Create, Read, Update, Delete) operations, making interactions with the API predictable and uniform.

#7. What is the purpose of the @app.route() decorator in Flask?
-> The @app.route() decorator in Flask is used to map URL paths to Python functions, allowing your Flask application to respond to specific web requests. It tells Flask which function to execute when a user accesses a particular URL.

#8. What is the difference between GET and POST HTTP methods?
-> The core difference between GET and POST HTTP methods lies in their purpose for interacting with resources on a server: GET retrieves data, while POST sends data to create or update resources.

#9.  How do you handle errors in Flask APIs?
-> To handle errors in Flask APIs, you catch exceptions and return appropriate HTTP error responses to the client, ensuring clear communication of failures.

@app.errorhandler(): This decorator is the primary way to register functions that handle specific HTTP status codes (e.g., 404, 500) or custom exception types. These functions typically return a JSON response with an error message and the correct status code.

#10. How do you connect Flask to a SQL database?
-> Connecting Flask to a SQL database typically involves using an ORM (Object-Relational Mapper) like SQLAlchemy or a raw database connector library. SQLAlchemy is generally preferred for its abstraction and powerful features.

#11. What is the role of Flask-SQLAlchemy?
-> Flask-SQLAlchemy is a Flask extension that provides seamless integration between Flask applications and the SQLAlchemy ORM (Object-Relational Mapper). Its primary role is to simplify the use of SQLAlchemy within Flask, handling common setup tasks and providing convenient helpers.

#12. What are Flask blueprints, and how are they useful?
-> Flask Blueprints are a way to organize your Flask application into smaller, reusable, and modular components. They allow you to structure larger applications by breaking them down into logical sections, each handling a specific set of features or functionalities.

#13. What is the purpose of Flask's request object?
-> he Flask request object holds all incoming request data for the current web request. Its purpose is to provide an easy way to access information sent by the client, such as form data, JSON payloads, URL parameters, headers, and files.

#14. How do you create a RESTful API endpoint using Flask?
-> To create a RESTful API endpoint using Flask, we'll define routes that respond to specific HTTP methods (like GET, POST, PUT, DELETE) and return data, typically in JSON format.

#15. What is the purpose of Flask's jsonify() function?
-> The purpose of Flask's jsonify() function is to convert Python dictionaries or lists into JSON-formatted HTTP responses. It's a convenience function specifically designed for building APIs, ensuring that your data is properly serialized and sent with the correct Content-Type header.

#16. Explain Flask’s url_for() function.
-> Flask's url_for() function is a powerful utility used for URL building (also known as URL reversal or reverse routing). Instead of hardcoding URLs directly into your application, url_for() generates URLs dynamically based on the name of a view function and any arguments it takes.

#17. How does Flask handle static files (CSS, JavaScript, etc.)?
-> Flask handles static files (like CSS, JavaScript, images, etc.) by serving them from a designated directory. This allows your web application to include assets that are directly served to the client's browser.

your_flask_app/
├── app.py
├── static/
│   ├── css/
│   │   └── style.css
│   ├── js/
│   │   └── script.js
│   └── images/
│       └── logo.png
└── templates/
    └── index.html

#18. What is an API specification, and how does it help in building a Flask API?
-> An API specification is a detailed, standardized document that describes how an API works, acting as a contract for developers. For building a Flask API, it serves as a blueprint, guiding development and ensuring consistency.

#19. What are HTTP status codes, and why are they important in a Flask API?
-> HTTP status codes are three-digit numbers returned by a server in response to an HTTP request. They indicate the outcome of the request, telling the client whether the request was successful, redirected, or encountered an error.

#20. How do you handle POST requests in Flask?
-> Handling POST requests in Flask involves defining a route that specifically listens for the POST HTTP method and then accessing the data sent in the request body. This is crucial for operations like creating new resources or submitting form data.

#21.How would you secure a Flask API?
-> Securing a Flask API involves a multi-layered approach, addressing authentication, authorization, data protection, and protection against common web vulnerabilities.
1. Authentication (Verifying Identity)
2. Authorization (Controlling Access)
3. Data Security
4. Input Validation
5. Rate Limiting
6. CORS (Cross-Origin Resource Sharing)

#22. What is the significance of the Flask-RESTful extension?
-> The Flask-RESTful extension is a lightweight and opinionated extension for Flask that simplifies the process of building RESTful APIs. Its significance lies in providing a set of conventions and tools that streamline API development, making it faster and more consistent than using raw Flask for complex API structures.

#23. What is the role of Flask’s session object?
-> The Flask session object is a dictionary-like object that allows you to store data specific to a user's browsing session across multiple requests. Its primary purpose is to maintain a user's state or temporary information as they navigate through your web application.

In [3]:
#1 How do you create a basic Flask application?
from flask import Flask

# Create a Flask application instance
app = Flask(__name__)

#
@app.route('/')
def hello_world():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [4]:
#2  How do you serve static files like images or CSS in Flask?
from flask import Flask, render_template

app = Flask(__name__)

# Define a route for the home page
@app.route('/')
def index():
    """
    Renders the index.html template.
    This template will link to static CSS and an image.
    """
    return render_template('index.html')

if __name__ == '__main__':
    # Run the Flask development server
    # debug=True allows for automatic reloading and an interactive debugger
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [5]:
#3.  How do you define different routes with different HTTP methods in Flask?
from flask import Flask, request, jsonify

app = Flask(__name__)

# This route handles both GET and POST requests to the /data endpoint
@app.route('/data', methods=['GET', 'POST'])
def handle_data():
    if request.method == 'GET':
        # Logic for retrieving data
        return jsonify({"message": "This is a GET request to retrieve data."})
    elif request.method == 'POST':
        # Logic for creating new data
        # Assuming JSON data is sent in the request body
        if request.is_json:
            data = request.get_json()
            return jsonify({"message": "This is a POST request to create data.", "received_data": data}), 201
        return jsonify({"error": "Request must be JSON for POST."}), 400

# You can also define separate functions for different methods on the same URL
@app.route('/resource/<int:resource_id>', methods=['GET'])
def get_resource(resource_id):
    return jsonify({"message": f"Retrieving resource {resource_id}."})

@app.route('/resource/<int:resource_id>', methods=['PUT'])
def update_resource(resource_id):
    if request.is_json:
        data = request.get_json()
        return jsonify({"message": f"Updating resource {resource_id}.", "updated_with": data})
    return jsonify({"error": "Request must be JSON for PUT."}), 400

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [7]:
#4  How do you render HTML templates in Flask?
from flask import Flask, render_template
from datetime import datetime

app = Flask(__name__)

@app.route('/')
def home():
    user_name = "Alice"
    today = datetime.now().strftime("%Y-%m-%d")
    # Render 'index.html' and pass 'name' and 'current_date' variables
    return render_template('index.html', name=user_name, current_date=today)

@app.route('/about')
def about():
    # Render a simpler 'about.html' without dynamic variables
    return render_template('about.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [8]:
#5. How can you generate URLs for routes in Flask using url_for?
from flask import Flask, url_for, render_template_string

app = Flask(__name__)

# Route 1: Simple static route
@app.route('/')
def index():
    """Home page."""
    return "Welcome to the Index Page!"

# Route 2: Another simple static route
@app.route('/about')
def about():
    """About Us page."""
    return "This is the About page."

# Route 3: Dynamic route with a string variable
@app.route('/users/<username>')
def show_user_profile(username):
    """User profile page."""
    return f'User Profile for: {username}'

# Route 4: Dynamic route with an integer variable
@app.route('/posts/<int:post_id>')
def show_post(post_id):
    """Blog post page."""
    return f'Post ID: {post_id}'

# Route 5: A page that demonstrates URL generation
@app.route('/links')
def show_links():
    """
    This view function demonstrates how to use url_for()
    to generate URLs for other routes.
    """
    # Generate URL for the 'index' function (root path)
    index_url = url_for('index')

    # Generate URL for the 'about' function
    about_url = url_for('about')

    # Generate URL for 'show_user_profile' with a specific username
    alice_profile_url = url_for('show_user_profile', username='alice_smith')

    # Generate URL for 'show_post' with a specific post ID
    first_post_url = url_for('show_post', post_id=123)

    # Generate URL for 'show_post' with an extra query parameter
    # The 'edit' parameter is not part of the route rule, so it becomes a query param.
    edit_post_url = url_for('show_post', post_id=456, edit='true')

    # Generate an external URL (e.g., for emails or external services)
    external_index_url = url_for('index', _external=True)


    # Render a simple HTML string to display the generated URLs
    html_content = f"""
    <!DOCTYPE html>
    <html lang="en">
    <head>
        <meta charset="UTF-8">
        <meta name="viewport" content="width=device-width, initial-scale=1.0">
        <title>Generated URLs</title>
    </head>
    <body>
        <h1>Generated URLs with url_for()</h1>
        <ul>
            <li><a href="{index_url}">Home Page</a> (Generated: {index_url})</li>
            <li><a href="{about_url}">About Page</a> (Generated: {about_url})</li>
            <li><a href="{alice_profile_url}">Alice's Profile</a> (Generated: {alice_profile_url})</li>
            <li><a href="{first_post_url}">First Blog Post</a> (Generated: {first_post_url})</li>
            <li><a href="{edit_post_url}">Edit Post 456</a> (Generated: {edit_post_url})</li>
            <li><a href="{external_index_url}">External Home Page</a> (Generated: {external_index_url})</li>
        </ul>
    </body>
    </html>
    """
    return render_template_string(html_content)

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [10]:
#6 How do you handle forms in Flask?
from flask import Flask, request, render_template, redirect, url_for

app = Flask(__name__)

# Route to display the form (GET request)
@app.route('/form')
def show_form():
    """Renders the HTML form."""
    return render_template('my_form.html')

# Route to handle form submission (POST request)
@app.route('/submit', methods=['POST'])
def submit_form():
    """
    Handles the form submission.
    Accesses data via request.form.
    """
    if request.method == 'POST':
        # Get data from the form fields using their 'name' attributes
        user_name = request.form.get('user_name')
        user_email = request.form.get('user_email')

        if user_name and user_email:
            # Process the data (e.g., save to a database, print to console)
            print(f"Received Name: {user_name}, Email: {user_email}")

            # Redirect to a success page or display a confirmation
            return f"<h1>Thank you, {user_name}! Your email {user_email} has been received.</h1>"
        else:
            # Handle cases where required fields are missing
            return "<h1>Error: Name and Email are required!</h1>", 400

if __name__ == '__main__':
    # Create a dummy templates folder and the my_form.html file
    # for this example to be runnable.
    import os
    if not os.path.exists('templates'):
        os.makedirs('templates')

    with open('templates/my_form.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Simple Flask Form</title>
</head>
<body>
    <h1>Submit Your Name</h1>
    <form method="POST" action="/submit">
        <label for="name">Name:</label>
        <input type="text" id="name" name="user_name" required>
        <br><br>
        <label for="email">Email:</label>
        <input type="email" id="email" name="user_email" required>
        <br><br>
        <input type="submit" value="Submit">
    </form>
</body>
</html>
""")

    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [20]:
pip install schemas

Collecting schemas
  Downloading schemas-0.7.1.tar.gz (2.4 kB)
  Preparing metadata (setup.py) ... [?25l[?25hdone
Collecting functions (from schemas)
  Downloading functions-0.7.0.tar.gz (2.7 kB)
  Preparing metadata (setup.py) ... [?25l[?25hdone
Building wheels for collected packages: schemas, functions
  Building wheel for schemas (setup.py) ... [?25l[?25hdone
  Created wheel for schemas: filename=schemas-0.7.1-py3-none-any.whl size=2752 sha256=866dbb7ebe87b4a0dca9425d207d7632d09f75d029d19c09fd6254470f683150
  Stored in directory: /root/.cache/pip/wheels/97/9c/77/c187a66659c29bd7ea2daffc28c5b2afe0a15e084dd82ad322
  Building wheel for functions (setup.py) ... [?25l[?25hdone
  Created wheel for functions: filename=functions-0.7.0-py3-none-any.whl size=3034 sha256=f9d296481e1b4a2065519c6f99720b0ca19945da00256a8584b7dba225ff768a
  Stored in directory: /root/.cache/pip/wheels/4a/8b/40/8016745e3f4a3f7de36c83fea9384201e3edb6770ad4852bd3
Successfully built schemas functions
Installin

In [23]:
#7. How can you validate form data in Flask?
# schemas.py
from marshmallow import Schema, fields, validate

class UserSchema(Schema):
    name = fields.String(required=True, validate=validate.Length(min=2, max=50))
    email = fields.Email(required=True)
    age = fields.Integer(validate=validate.Range(min=18, max=120), allow_none=True)

# app.py (API endpoint)
from flask import Flask, request, jsonify, abort
# from schemas import UserSchema # Remove this import

app = Flask(__name__)

@app.errorhandler(400)
def bad_request_error(error):
    return jsonify({"error": "Bad Request", "message": error.description}), 400

@app.route('/api/users', methods=['POST'])
def create_api_user():
    if not request.is_json:
        abort(400, description="Request must be JSON.")

    user_schema = UserSchema()
    try:
        # Validate and load the incoming JSON data
        # Raises ValidationError if data is invalid
        valid_data = user_schema.load(request.get_json())
    except Exception as err: # In production, catch marshmallow.ValidationError specifically
        # Return detailed validation errors
        return jsonify({"error": "Validation Error", "messages": err.messages}), 400

    # Data is valid, proceed with processing (e.g., save to DB)
    print(f"API Received Valid Data: {valid_data}")
    return jsonify({"message": "User created via API", "user": valid_data}), 201

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [26]:
pip install request

[31mERROR: Could not find a version that satisfies the requirement request (from versions: none)[0m[31m
[0m[31mERROR: No matching distribution found for request[0m[31m
[0m

In [30]:
#8. How do you manage sessions in Flask?
from flask import Flask

app = Flask(__name__)
# Set a strong, unique secret key.
# In production, use an environment variable: os.environ.get('FLASK_SECRET_KEY')
app.config['SECRET_KEY'] = 'a_very_long_and_random_string_for_session_security_12345'

from flask import session, request, redirect, url_for
from markupsafe import escape # Import escape from markupsafe

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        user_id = request.form.get('user_id')
        if user_id:
            session['user_id'] = user_id  # Store user ID in session
            session['logged_in'] = True   # Store a boolean flag
            session['cart'] = []          # Store a list for a shopping cart
            return redirect(url_for('dashboard'))
        return 'Login failed. Please provide a user ID.'
    return '''
        <form method="post">
            <p><input type=text name=user_id>
            <p><input type=submit value=Login>
        </form>
    '''

@app.route('/dashboard')
def dashboard():
    if 'user_id' in session:
        # Accessing data
        user_id = escape(session['user_id']) # Use escape() for rendering in HTML
        logged_in = session.get('logged_in', False)
        cart_items = session.get('cart', [])

        return f'''
            <h1>Welcome, {user_id}!</h1>
            <p>Logged In: {logged_in}</p>
            <p>Cart Items: {cart_items}</p>
            <p><a href="/logout">Logout</a></p>
        '''
    return redirect(url_for('login'))

@app.route('/logout')
def logout():
    session.pop('user_id', None) # Remove 'user_id' from session
    session.pop('logged_in', None) # Remove 'logged_in' flag
    # Or to clear all: session.clear()
    return redirect(url_for('login'))

In [31]:
#9.  How do you redirect to a different route in Flask?
from flask import Flask, redirect, url_for, request, render_template_string

app = Flask(__name__)

# Route for the login page (GET request to display form)
@app.route('/login', methods=['GET'])
def login_page():
    return render_template_string('''
        <h1>Login</h1>
        <form method="POST" action="/do_login">
            <label for="username">Username:</label>
            <input type="text" id="username" name="username" required>
            <br><br>
            <input type="submit" value="Login">
        </form>
    ''')

# Route to handle the login submission (POST request)
@app.route('/do_login', methods=['POST'])
def do_login():
    username = request.form.get('username')
    if username == 'admin':
        # If login is successful, redirect to the dashboard
        # url_for('dashboard') generates the URL for the 'dashboard' function
        return redirect(url_for('dashboard'))
    else:
        # If login fails, redirect back to the login page
        return redirect(url_for('login_page'))

# Route for the dashboard (accessible after successful login)
@app.route('/dashboard')
def dashboard():
    return "<h1>Welcome to the Dashboard!</h1><p>You are logged in.</p>"

# Home page (just for navigation)
@app.route('/')
def index():
    return '''
        <h1>Home Page</h1>
        <p><a href="/login">Go to Login</a></p>
    '''

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


In [None]:
#10. How do you handle errors in Flask (e.g., 404)?
from flask import Flask, render_template, jsonify, abort

app = Flask(__name__)

# --- 1. Handling 404 for HTML responses (web applications) ---
@app.errorhandler(404)
def page_not_found(error):
    """
    Custom error handler for 404 Not Found errors.
    Renders a custom 404.html template.
    Returns: A tuple (response, status_code).
    """
    # You would typically have a templates/404.html file
    # return render_template('404.html'), 404

    # For a simple text response:
    return "<h1>404 Not Found</h1><p>The page you requested could not be found.</p>", 404

# --- 2. Handling 404 for API responses (JSON) ---
# If you are building an API and want JSON errors, you might do this:
@app.errorhandler(404)
def api_not_found(error):
    """
    Custom error handler for 404 Not Found errors,
    returning a JSON response (common for APIs).
    """
    return jsonify({
        'status': 404,
        'error': 'Not Found',
        'message': 'The requested resource does not exist.'
    }), 404

# NOTE: You can only have one @app.errorhandler(404) active at a time.
# For APIs, the JSON version is preferred. For web apps, the HTML version.

# Example route that might trigger a 404
@app.route('/item/<int:item_id>')
def get_item(item_id):
    if item_id != 123:
        # Explicitly raise a 404 error
        abort(404)
    return f"<h1>Item Details for ID: {item_id}</h1>"

# Example route that simply doesn't exist
# Accessing /nonexistent-page will trigger the 404 handler

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
#11  How do you structure a Flask app using Blueprints?
import os
from flask import Flask, request, jsonify, render_template, redirect, url_for, session, abort, escape
from datetime import datetime

# --- 1. Basic Flask App Setup ---
app = Flask(__name__)

# --- 2. Configuration (Essential for Sessions) ---
# In a real application, get this from environment variables (os.environ.get('SECRET_KEY'))
app.config['SECRET_KEY'] = 'a_very_long_and_random_secret_key_for_session_security_12345abc'
app.config['SESSION_COOKIE_SECURE'] = True  # Recommend True in production for HTTPS
app.config['SESSION_COOKIE_HTTPONLY'] = True # Prevent client-side JS access to session cookie

# --- In-memory data stores (simulating databases for demonstration) ---
tasks = [
    {"id": 1, "title": "Buy groceries", "done": False},
    {"id": 2, "title": "Learn Flask", "done": True},
]
next_task_id = 3

users_db = {
    "admin": {"password": "password123", "role": "admin"},
    "user": {"password": "userpass", "role": "viewer"}
}

# --- 3. Error Handlers ---
# Handles 404 Not Found errors, returning a JSON response for APIs
# and rendering an HTML template for web pages based on request type.
@app.errorhandler(404)
def not_found_error(error):
    if request.path.startswith('/api/'):
        return jsonify({
            'status': 404,
            'error': 'Not Found',
            'message': 'The requested API resource was not found.'
        }), 404
    return render_template('404.html'), 404

# Handles 400 Bad Request errors, returning a JSON response.
@app.errorhandler(400)
def bad_request_error(error):
    return jsonify({
        'status': 400,
        'error': 'Bad Request',
        'message': error.description or 'The request could not be understood due to malformed syntax.'
    }), 400

# --- 4. HTML Template Rendering & url_for() Example ---
@app.route('/')
def home():
    """
    Renders the home page template.
    Demonstrates passing variables to templates and using url_for.
    """
    current_time = datetime.now().strftime("%H:%M:%S")
    # url_for('static', filename='...') is used to link static files
    # url_for('show_user_profile', username='...') is used for dynamic URLs
    return render_template('index.html',
                           current_time=current_time,
                           user_link=url_for('show_user_profile', username='guest'))

# --- 5. Static File Serving Example ---
# Files in static/css/style.css and static/images/flask_logo.png
@app.route('/static-content')
def static_content_page():
    """
    Renders a page demonstrating static file inclusion.
    """
    return render_template('static_example.html')

# --- 6. Routing with Dynamic URL Parameters ---
@app.route('/user/<username>')
def show_user_profile(username):
    """
    Demonstrates a dynamic URL route.
    Accesses the 'username' from the URL path.
    """
    return f'<h1>User Profile: {escape(username)}</h1><p><a href="/">Back to Home</a></p>'

# --- 7. Handling Different HTTP Methods (GET, POST for API) ---
# API endpoint for tasks
@app.route('/api/tasks', methods=['GET', 'POST'])
def handle_tasks():
    """
    Handles GET to retrieve all tasks and POST to create a new task.
    Uses request.method to differentiate.
    """
    if request.method == 'GET':
        # GET: Retrieve all tasks
        return jsonify({"tasks": tasks})

    elif request.method == 'POST':
        # POST: Create a new task
        if not request.is_json:
            abort(400, description="Request must be JSON for creating a task.")

        data = request.get_json()
        if 'title' not in data or not isinstance(data['title'], str) or not data['title'].strip():
            abort(400, description="'title' (string) is required and cannot be empty.")

        global next_task_id
        new_task = {
            "id": next_task_id,
            "title": data['title'].strip(),
            "done": data.get('done', False)
        }
        tasks.append(new_task)
        next_task_id += 1

        return jsonify({"message": "Task created", "task": new_task}), 201

@app.route('/api/tasks/<int:task_id>', methods=['GET', 'PUT', 'DELETE'])
def handle_single_task(task_id):
    """
    Handles GET, PUT, DELETE for a single task resource.
    """
    task = next((t for t in tasks if t['id'] == task_id), None)
    if task is None:
        abort(404) # Task not found

    if request.method == 'GET':
        return jsonify({"task": task})

    elif request.method == 'PUT':
        if not request.is_json:
            abort(400, description="Request must be JSON for updating a task.")
        data = request.get_json()

        # Basic validation for PUT (expects full resource)
        if 'title' not in data or not isinstance(data['title'], str) or \
           'done' not in data or not isinstance(data['done'], bool):
            abort(400, description="Both 'title' (string) and 'done' (boolean) are required for PUT.")

        task['title'] = data['title'].strip()
        task['done'] = data['done']
        return jsonify({"message": "Task updated", "task": task})

    elif request.method == 'DELETE':
        global tasks
        original_len = len(tasks)
        tasks = [t for t in tasks if t['id'] != task_id]
        if len(tasks) == original_len: # If length didn't change, task wasn't found (should be caught by 404 above)
             abort(404) # Redundant if task is None check is effective, but good for robustness
        return jsonify({"message": "Task deleted"}), 204 # No Content

# --- 8. Form Handling (HTML Forms) ---
@app.route('/submit-form-page', methods=['GET'])
def show_form_page():
    """Renders an HTML page with a form."""
    return render_template('form_example.html')

@app.route('/submit-form', methods=['POST'])
def submit_form():
    """
    Handles form submission.
    Uses request.form to access form data.
    """
    user_name = request.form.get('user_name')
    user_email = request.form.get('user_email')

    if not user_name or not user_email:
        abort(400, description="Name and Email are required fields.")

    # Basic email format check (for demonstration)
    if '@' not in user_email or '.' not in user_email.split('@')[-1]:
        abort(400, description="Invalid email format.")

    return f"<h1>Form Submitted Successfully!</h1><p>Name: {escape(user_name)}</p><p>Email: {escape(user_email)}</p><p><a href='/'>Back Home</a></p>"

# --- 9. Session Management (Login/Logout Example) ---
@app.route('/login', methods=['GET', 'POST'])
def login():
    """
    Handles user login and sets session variables.
    """
    if request.method == 'POST':
        username = request.form.get('username')
        password = request.form.get('password')

        user_data = users_db.get(username)
        if user_data and user_data['password'] == password:
            session['username'] = username
            session['role'] = user_data['role']
            session['logged_in'] = True
            return redirect(url_for('dashboard'))
        else:
            return render_template('login_form.html', message="Invalid credentials. Try 'admin'/'password123' or 'user'/'userpass'.")

    return render_template('login_form.html', message=None)

@app.route('/dashboard')
def dashboard():
    """
    A protected route that requires a session.
    Demonstrates accessing session data.
    """
    if 'logged_in' in session and session['logged_in']:
        username = escape(session['username'])
        role = escape(session.get('role', 'N/A'))
        return render_template('dashboard.html', username=username, role=role)
    return redirect(url_for('login'))

@app.route('/logout')
def logout():
    """
    Clears session data and logs out the user.
    """
    session.pop('username', None)
    session.pop('role', None)
    session.pop('logged_in', None)
    return redirect(url_for('login'))

# --- Helper to create dummy template and static files for easy running ---
def create_dummy_files():
    # Create templates directory
    if not os.path.exists('templates'):
        os.makedirs('templates')

    # Create static directories
    if not os.path.exists('static/css'):
        os.makedirs('static/css')
    if not os.path.exists('static/images'):
        os.makedirs('static/images')

    # Create index.html
    with open('templates/index.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Flask Combined App</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Welcome to the Combined Flask App!</h1>
        <p>Current Server Time: {{ current_time }}</p>
        <p>Explore:</p>
        <ul>
            <li><a href="{{ url_for('static_content_page') }}">Static Content Example</a></li>
            <li><a href="{{ url_for('show_user_profile', username='Alice') }}">Dynamic User Profile (Alice)</a></li>
            <li><a href="{{ url_for('show_form_page') }}">HTML Form Example</a></li>
            <li><a href="{{ url_for('login') }}">Login / Session Example</a></li>
            <li>API Endpoints (use Postman/Curl):
                <ul>
                    <li>GET <a href="/api/tasks">/api/tasks</a></li>
                    <li>POST /api/tasks (JSON: {"title": "New Task"})</li>
                    <li>GET /api/tasks/1</li>
                    <li>PUT /api/tasks/1 (JSON: {"title": "Updated Task", "done": true})</li>
                    <li>DELETE /api/tasks/1</li>
                </ul>
            </li>
        </ul>
        <p>Generated user link: <a href="{{ user_link }}">{{ user_link }}</a></p>
    </div>
</body>
</html>
""")

    # Create static_example.html
    with open('templates/static_example.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Static Files Example</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Static Files Demo</h1>
        <p>This text should be styled by `style.css`.</p>
        <img src="{{ url_for('static', filename='images/flask_logo.png') }}"
             alt="Flask Logo Placeholder"
             class="app-logo"
             onerror="this.onerror=null;this.src='https://placehold.co/200x200/ADD8E6/000000?text=Flask+Logo';"
        >
        <p><a href="/">Back to Home</a></p>
    </div>
</body>
</html>
""")

    # Create form_example.html
    with open('templates/form_example.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>HTML Form Example</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Submit Your Info</h1>
        <form method="POST" action="{{ url_for('submit_form') }}">
            <label for="name">Name:</label>
            <input type="text" id="name" name="user_name" required>
            <br><br>
            <label for="email">Email:</label>
            <input type="email" id="email" name="user_email" required>
            <br><br>
            <input type="submit" value="Submit">
        </form>
        <p><a href="/">Back to Home</a></p>
    </div>
</body>
</html>
""")

    # Create login_form.html
    with open('templates/login_form.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Login</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Login</h1>
        {% if message %}
            <p style="color: red;">{{ message }}</p>
        {% endif %}
        <form method="POST" action="{{ url_for('login') }}">
            <label for="username">Username:</label>
            <input type="text" id="username" name="username" required>
            <br><br>
            <label for="password">Password:</label>
            <input type="password" id="password" name="password" required>
            <br><br>
            <input type="submit" value="Login">
        </form>
        <p>Try: admin/password123 or user/userpass</p>
        <p><a href="/">Back to Home</a></p>
    </div>
</body>
</html>
""")

    # Create dashboard.html
    with open('templates/dashboard.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Dashboard</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Welcome to Your Dashboard, {{ username }}!</h1>
        <p>Your role: {{ role }}</p>
        <p>This page is protected by session.</p>
        <p><a href="{{ url_for('logout') }}">Logout</a></p>
        <p><a href="/">Back to Home</a></p>
    </div>
</body>
</html>
""")

    # Create 404.html
    with open('templates/404.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>404 Not Found</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>404 - Page Not Found</h1>
        <p>The page you are looking for does not exist.</p>
        <p><a href="/">Go to Home Page</a></p>
    </div>
</body>
</html>
""")

    # Create style.css
    with open('static/css/style.css', 'w') as f:
        f.write("""
/* static/css/style.css */
body {
    font-family: 'Inter', sans-serif;
    background-color: #f4f4f4;
    color: #333;
    margin: 0;
    padding: 20px;
    display: flex;
    justify-content: center;
    align-items: center;
    min-height: 100vh;
    box-sizing: border-box;
}

.container {
    background-color: #ffffff;
    padding: 30px;
    border-radius: 12px;
    box-shadow: 0 4px 15px rgba(0, 0, 0, 0.1);
    text-align: center;
    max-width: 600px;
    width: 100%;
}

h1 {
    color: #007bff;
    margin-bottom: 20px;
}

p {
    line-height: 1.6;
    margin-bottom: 15px;
}

ul {
    list-style-type: none;
    padding: 0;
}

li {
    margin-bottom: 10px;
}

a {
    color: #007bff;
    text-decoration: none;
}

a:hover {
    text-decoration: underline;
}

input[type="text"],
input[type="password"],
input[type="email"] {
    width: calc(100% - 20px);
    padding: 10px;
    margin-bottom: 10px;
    border: 1px solid #ddd;
    border-radius: 8px;
    box-sizing: border-box;
}

input[type="submit"] {
    background-color: #007bff;
    color: white;
    padding: 10px 20px;
    border: none;
    border-radius: 8px;
    cursor: pointer;
    font-size: 16px;
    transition: background-color 0.3s ease;
}

input[type="submit"]:hover {
    background-color: #0056b3;
}

.app-logo {
    width: 150px;
    height: 150px;
    border-radius: 8px;
    margin-bottom: 20px;
    object-fit: contain;
}
""")

    # Create a dummy image file (or you can place a real one)
    # This will be a 1x1 transparent PNG if you don't replace it.
    # The onerror in HTML will show a placeholder if this is not a real image.
    with open('static/images/flask_logo.png', 'wb') as f:
        f.write(b'\x89PNG\r\n\x1a\n\x00\x00\x00\rIHDR\x00\x00\x00\x01\x00\x00\x00\x01\x08\x06\x00\x00\x00\x1f\x15\xc4\x89\x00\x00\x00\x0cIDATx\xda\xed\xc1\x01\x01\x00\x00\x00\xc2\xa0\xf7Om\x00\x00\x00\x00IEND\xaeB`\x82')


if __name__ == '__main__':
    create_dummy_files() # Create necessary files/folders on run
    app.run(debug=True)



In [None]:
#12. How do you define a custom Jinja filter in Flask?
# --- Custom Jinja Filter Definition ---
def capitalize_words(s):
    """
    Custom Jinja filter to capitalize the first letter of each word in a string.
    """
    return ' '.join(word.capitalize() for word in s.split())

# --- Custom Jinja Filter Definition ---
def capitalize_words(s):
    """
    Custom Jinja filter to capitalize the first letter of each word in a string.
    """
    return ' '.join(word.capitalize() for word in s.split())

<!-- templates/filter_example.html -->
<p>Original Text: <code>{{ sample_text }}</code></p>
<p>Text after filter: <code>{{ sample_text | capitalize_each_word }}</code></p>

In [None]:
#13. How can you redirect with query parameters in Flask?
from flask import Flask, request, redirect, url_for, render_template_string, escape

app = Flask(__name__)

# Route to display a simple search form
@app.route('/')
def index():
    return render_template_string('''
        <h1>Welcome!</h1>
        <p>Enter your search query:</p>
        <form method="POST" action="{{ url_for('perform_search') }}">
            <input type="text" name="query_term" placeholder="e.g., Flask tutorial" required>
            <input type="submit" value="Search">
        </form>
        <p><a href="{{ url_for('show_results', search_term='default', page=1) }}">View Default Results</a></p>
    ''')

# Route to handle the search form submission (POST request)
@app.route('/do_search', methods=['POST'])
def perform_search():
    search_query = request.form.get('query_term')

    if search_query:
        # Redirect to the '/results' page, passing the search_query as a query parameter
        # 'search_term' and 'page' are NOT part of the '/results' route path,
        # so they become query parameters.
        return redirect(url_for('show_results', search_term=search_query, page=1))
    else:
        return "<h1>Error: Search query cannot be empty!</h1>", 400

# Route to display search results (GET request, expecting query parameters)
@app.route('/results')
def show_results():
    # Access query parameters using request.args
    search_term = request.args.get('search_term', 'No query provided')
    page = request.args.get('page', '1') # Default to page 1 if not provided

    return render_template_string(f'''
        <h1>Search Results</h1>
        <p>You searched for: <strong>{escape(search_term)}</strong></p>
        <p>Current Page: <strong>{escape(page)}</strong></p>
        <p><a href="/">Perform another search</a></p>
        <p><a href="{url_for('show_results', search_term=search_term, page=int(page) + 1)}">Next Page</a></p>
    ''')

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#14 How do you return JSON responses in Flask?
import os
from flask import Flask, request, jsonify, render_template, url_for, abort, escape

app = Flask(__name__)

# --- In-memory data store (simulating a database for users) ---
users = {
    1: {"name": "Alice", "email": "alice@example.com"},
    2: {"name": "Bob", "email": "bob@example.com"}
}
next_user_id = 3 # To generate unique IDs for new users

# --- Error Handlers (returning JSON responses) ---
@app.errorhandler(404)
def not_found_error(error):
    """Handles 404 Not Found errors, returning a JSON response."""
    # This handler will catch 404s for both API and non-API paths
    # For a real app, you might differentiate based on request.accept_mimetypes
    return jsonify({
        'status': 404,
        'error': 'Not Found',
        'message': 'The requested resource was not found.'
    }), 404

@app.errorhandler(400)
def bad_request_error(error):
    """Handles 400 Bad Request errors, returning a JSON response."""
    return jsonify({
        'status': 400,
        'error': 'Bad Request',
        'message': error.description or 'The request could not be understood due to malformed syntax.'
    }), 400

# --- API Endpoints (Returning JSON) ---

@app.route('/api/users', methods=['GET'])
def get_all_users():
    """
    GET /api/users
    Retrieves a list of all users.
    Returns: JSON array of user objects.
    """
    # jsonify converts the Python dictionary/list to a JSON response
    return jsonify({"users": list(users.values())})

@app.route('/api/users/<int:user_id>', methods=['GET'])
def get_user_by_id(user_id):
    """
    GET /api/users/<int:user_id>
    Retrieves a single user by ID.
    Returns: JSON of the user object if found, else 404.
    """
    user = users.get(user_id)
    if user is None:
        abort(404, description=f"User with ID {user_id} not found.") # Abort will trigger the 404 error handler
    return jsonify({"user": user})

@app.route('/api/users', methods=['POST'])
def create_user():
    """
    POST /api/users
    Creates a new user.
    Expects: JSON body with 'name' and 'email'.
    Returns: JSON of the newly created user with 201 Created status.
    """
    # Ensure the request body is JSON
    if not request.is_json:
        abort(400, description="Request must be JSON.")

    data = request.get_json() # Get JSON data from the request body

    # Basic validation
    if 'name' not in data or not isinstance(data['name'], str) or not data['name'].strip():
        abort(400, description="'name' (string) is required and cannot be empty.")
    if 'email' not in data or not isinstance(data['email'], str) or not data['email'].strip():
        abort(400, description="'email' (string) is required and cannot be empty.")

    # Simulate adding to database and assigning an ID
    global next_user_id
    new_user = {
        "id": next_user_id,
        "name": data['name'].strip(),
        "email": data['email'].strip()
    }
    users[next_user_id] = new_user
    next_user_id += 1

    # Return the created user with 201 Created status
    return jsonify({"message": "User created successfully", "user": new_user}), 201

# --- Simple HTML Home Page (for easy navigation and testing API links) ---
@app.route('/')
def home():
    return render_template('api_home.html',
                           get_all_users_url=url_for('get_all_users'),
                           get_user_1_url=url_for('get_user_by_id', user_id=1),
                           get_nonexistent_user_url=url_for('get_user_by_id', user_id=999))

# --- Helper to create dummy template and static files for easy running ---
def create_dummy_files():
    # Create templates directory
    if not os.path.exists('templates'):
        os.makedirs('templates')

    # Create static directories (for CSS if needed, though not used in this specific example)
    if not os.path.exists('static/css'):
        os.makedirs('static/css')

    # Create api_home.html
    with open('templates/api_home.html', 'w') as f:
        f.write("""
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Flask JSON API Demo</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <div class="container">
        <h1>Flask JSON API Demo</h1>
        <p>This application demonstrates returning JSON responses from Flask API endpoints.</p>
        <h2>API Endpoints:</h2>
        <ul>
            <li><strong>GET All Users:</strong> <a href="{{ get_all_users_url }}">{{ get_all_users_url }}</a></li>
            <li><strong>GET User by ID (ID 1):</strong> <a href="{{ get_user_1_url }}">{{ get_user_1_url }}</a></li>
            <li><strong>GET Non-Existent User (ID 999):</strong> <a href="{{ get_nonexistent_user_url }}">{{ get_nonexistent_user_url }}</a> (Expects 404 JSON)</li>
            <li><strong>POST New User:</strong> <code>/api/users</code> (Use Postman/Curl with JSON body)
                <pre><code>
{
    "name": "John Doe",
    "email": "john.doe@example.com"
}
                </code></pre>
            </li>
            <li><strong>POST with Missing Data:</strong> <code>/api/users</code> (Expects 400 JSON)
                <pre><code>
{
    "name": "Invalid User"
}
                </code></pre>
            </li>
        </ul>
        <p>Open your browser's developer tools (Network tab) to see the JSON responses.</p>
        <p>For POST requests, use a tool like Postman, Insomnia, or `curl`.</p>
    </div>
</body>
</html>
""")

    # Create a minimal style.css for the home page
    with open('static/css/style.css', 'w') as f:
        f.write("""
/* static/css/style.css */
body {
    font-family: 'Inter', sans-serif;
    background-color: #f4f4f4;
    color: #333;
    margin: 0;
    padding: 20px;
    display: flex;
    justify-content: center;
    align-items: center;
    min-height: 100vh;
    box-sizing: border-box;
}

.container {
    background-color: #ffffff;
    padding: 30px;
    border-radius: 12px;
    box-shadow: 0 4px 15px rgba(0, 0, 0, 0.1);
    text-align: left; /* Align text left for better readability of lists */
    max-width: 800px;
    width: 100%;
}

h1, h2 {
    color: #007bff;
    margin-bottom: 15px;
    text-align: center; /* Center headings */
}

p {
    line-height: 1.6;
    margin-bottom: 10px;
}

ul {
    list-style-type: disc;
    padding-left: 20px;
    margin-bottom: 15px;
}

li {
    margin-bottom: 8px;
}

a {
    color: #007bff;
    text-decoration: none;
}

a:hover {
    text-decoration: underline;
}

pre {
    background-color: #eee;
    padding: 10px;
    border-radius: 5px;
    overflow-x: auto;
}

code {
    font-family: 'Courier New', monospace;
}
""")

if __name__ == '__main__':
    create_dummy_files() # Ensure files/folders exist before running
    app.run(debug=True)


In [None]:
#15 How do you capture URL parameters in Flask?
@app.route('/api/users/<int:user_id>', methods=['GET'])
def get_user_by_id(user_id):
    """
    GET /api/users/<int:user_id>
    Retrieves a single user by ID.
    Returns: JSON of the user object if found, else 404.
    """
    user = users.get(user_id)
    if user is None:
        abort(404, description=f"User with ID {user_id} not found.")
    return jsonify({"user": user})