Restful API & Flask

1. What is a RESTful API?
- A RESTful API is an API (Application Programming Interface) that follows the principles of REST — Representational State Transfer — a widely used architectural style for designing networked applications, especially on the web.
2.  Explain the concept of API specification?
- An API specification is a detailed blueprint that defines how an API behaves and how developers can interact with it. It outlines exactly what the API does, how to use it, and what to expect in return.
3. What is Flask, and why is it popular for building APIs?
- Flask is a microframework, meaning it provides the basic tools to get a web app or API up and running, without enforcing strict structure or including unnecessary features.

- It is built on Werkzeug (a WSGI toolkit) and Jinja2 (a templating engine).
-Why Flask Is Popular for Building APIs

| Feature                                 | Why It Matters                                                  |
| --------------------------------------- | --------------------------------------------------------------- |
| ✅ **Minimalistic & Lightweight**        | Only includes the essentials — you add what you need            |
| 🧠 **Easy to Learn & Use**              | Great for beginners and quick prototypes                        |
| 🛠️ **Flexible Architecture**           | No strict patterns; you can structure projects your way         |
| 🔄 **Built-in Development Server**      | Makes testing and debugging easy                                |
| 🌐 **Supports REST Easily**             | Easy to define routes and handle HTTP methods                   |
| 📚 **Strong Documentation & Community** | Lots of tutorials, extensions, and support                      |
| 🔌 **Extensible**                       | Plug in tools like SQLAlchemy, Flask-RESTful, Marshmallow, etc. |

4.What is routing in Flask?
- Routing in Flask is the process of mapping URLs (web addresses) to Python functions. These functions, called view functions, are what run when a user or client accesses a particular route.
5.  How do you create a simple Flask application?
- 1. Install Flask
- First, make sure you have Flask installed
- pip install Flask
- 2. Create the App File
- Create a Python file, e.g., app.py, with the following content:
- from flask import Flask

app = Flask(__name__)  # Create the Flask app

# Route for homepage
@app.route('/')
def home():
    return 'Welcome to my Flask app!'

# Route for about page
@app.route('/about')
def about():
    return 'This is the About page.'

if __name__ == '__main__':
    app.run(debug=True)
- 3. Run the Flask App
Run the app from your terminal:
- python app.py
You’ll see output like this:
-  * Running on http://127.0.0.1:5000/ (Press CTRL+C to quit)
6. What are HTTP methods used in RESTful APIs?
- n RESTful APIs, HTTP methods define the type of action the client wants to perform on a resource (like a user, product, post, etc.). These methods map directly to CRUD operations (Create, Read, Update, Delete).
7. What is the purpose of the @app.route() decorator in Flask?
- In Flask, the @app.route() decorator is used to associate a URL path with a specific function, known as a view function. It tells Flask, “When a user visits this route (URL), run this function.”
- Purpose of @app.route()
- Defines routes (URLs) for your web app or API

- Links URLs to specific Python functions

- Specifies what content to return for each request
8. What is the difference between GET and POST HTTP methods?
- In web development and RESTful APIs, GET and POST are two of the most commonly used HTTP methods. They serve different purposes and behave differently in how they send data and affect the server.

- 1. Purpose

| Method   | Main Use                                             |
| -------- | ---------------------------------------------------- |
| **GET**  | Retrieve data from the server                        |
| **POST** | Send data to the server (create or submit something) |

- 2. Data Transmission

| Aspect        | **GET**                              | **POST**                    |
| ------------- | ------------------------------------ | --------------------------- |
| Data location | Sent in **URL query string**         | Sent in **request body**    |
| Visibility    | Data is **visible** in URL           | Data is **hidden** in body  |
| Length limit  | Limited by URL length (\~2048 chars) | No significant length limit |

- 3. Security

| Topic          | GET                         | POST                    |
| -------------- | --------------------------- | ----------------------- |
| Sensitive data | ❌ Not safe (visible in URL) | ✅ More secure (in body) |
| Bookmarking    | ✅ URLs can be bookmarked    | ❌ Can’t bookmark data   |

9. How do you handle errors in Flask APIs?
-  Common Ways to Handle Errors in Flask:
1. Using @app.errorhandler() Decorator
- from flask import Flask, jsonify

app = Flask(__name__)

@app.errorhandler(404)
def not_found(error):
    return jsonify({'error': 'Not Found'}), 404

@app.errorhandler(500)
def internal_error(error):
    return jsonify({'error': 'Server Error'}), 500
- 2. Using abort() to Trigger Errors
- from flask import abort

@app.route('/user/<int:user_id>')
def get_user(user_id):
    user = find_user_by_id(user_id)
    if not user:
        abort(404)
    return jsonify(user)
10.How do you connect Flask to a SQL database?
- To connect Flask to a SQL database, you typically use an ORM (Object Relational Mapper) like SQLAlchemy or Flask-SQLAlchemy, which simplifies interacting with databases using Python classes instead of raw SQL.

11. What is the role of Flask-SQLAlchemy?
- Flask-SQLAlchemy is a powerful extension for Flask that simplifies using SQLAlchemy, a popular Object Relational Mapper (ORM) in Python. It allows you to interact with SQL databases using Python classes and objects instead of raw SQL queries.
12. What are Flask blueprints, and how are they useful?
- Flask Blueprints are a way to organize your Flask application into modular components. They allow you to split your app into multiple reusable parts — like routes, templates, and static files — making large applications cleaner, more manageable, and easier to maintain.

- Why Use Blueprints?
-  Modular Structure – Break your app into logical pieces (e.g., auth, blog, api)

- Reusability – Define blueprints once and reuse them across projects

- Scalability – Makes it easier to grow your app without a messy app.py
13. What is the purpose of Flask's request object?
- The request object in Flask is used to access data sent by the client in an HTTP request. It provides all the details about the incoming request, such as:

- Data from forms or JSON payloads

- URL parameters

- HTTP headers

- Cookies

- Request method (GET, POST, etc.)
14. How do you create a RESTful API endpoint using Flask?
- Creating a RESTful API endpoint in Flask means setting up routes that respond to HTTP methods (GET, POST, PUT, DELETE) and return data typically in JSON format.
15. What is the purpose of Flask's jsonify() function?
- The jsonify() function in Flask is used to create a proper JSON response from your Python data structures (like dictionaries or lists) and send it back to the client with the correct HTTP headers.
16. Explain Flask’s url_for() function.
- url_for() is a very handy Flask function used to generate URLs for routes dynamically based on the name of the view function rather than hardcoding URLs as strings.
- Why Use url_for()?
- Avoid hardcoding URLs: URLs can change, but if you use url_for(), you only change the route in one place (the view function decorator).

- Generate URLs dynamically: Useful when URLs have dynamic parts or query parameters.

- Better maintainability: Easier to refactor and avoid broken links.

- Works with blueprints and static files easily.
17.  How does Flask handle static files (CSS, JavaScript, etc.)?
- Flask has built-in support for serving static files like CSS, JavaScript, images, fonts, and more through a special folder called static.
18. What is an API specification, and how does it help in building a Flask API?
- An API specification is a formal document or blueprint that describes how an API should behave. It outlines the endpoints, methods, request/response formats, parameters, authentication, and more.
-  How It Helps in Flask API Development:
1. Design Before Code
- Allows you to plan and review the API before building it.

2. Documentation
- Tools like Swagger UI auto-generate interactive docs from the spec.

3. Validation
- Helps validate incoming requests and outgoing responses.

4. Testing and Mocking
- Can generate test cases and mock servers before the actual API is ready.

5. Code Generation
- Tools can generate boilerplate Flask code from OpenAPI specs.

19. What are HTTP status codes, and why are they important in a Flask API?
- TTP status codes are standardized 3-digit numbers sent by a server in response to a client’s request. They indicate whether a request was successful, resulted in an error, or requires further action.

- In Flask APIs, returning proper status codes is critical for:

- Informing clients of request outcomes

-  Enabling proper error handling

-  Debugging and logging

-  Making APIs predictable and RESTful
20. How do you handle POST requests in Flask?
- How Do You Handle POST Requests in Flask?
- In Flask, handling a POST request involves:

- Defining a route with the POST method,

- Accessing the data sent by the client (form data or JSON),

- Processing or storing that data,

- And returning a response (often JSON).
21. How would you secure a Flask API?
- Securing a Flask API is essential to protect sensitive data, prevent unauthorized access, and ensure the integrity of your application. Here's a comprehensive approach to Flask API security.
22. What is the significance of the Flask-RESTful extension?
- Flask-RESTful is an extension for Flask that makes it easier to build RESTful APIs quickly and with cleaner, more maintainable code.

23. What is the role of Flask’s session object?
- The session object in Flask is used to store data specific to a user across requests — like login information, preferences, or temporary data — during a browsing session.








In [None]:
1. How do you create a basic Flask application?
'''
Step 1: Install Flask
Install Flask using pip:
pip install Flask
Step 2: Create the App File
Create a Python file, e.g., app.py, with the following content:
from flask import Flask

app = Flask(__name__)  # Create the Flask app

@app.route('/')  # Define a route for the home page
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)  # Run the development server
Step 3: Run the Application
In your terminal, run:python app.py
By default, Flask runs on http://127.0.0.1:5000/.

Open this URL in your browser to see:Hello, Flask!
'''

In [None]:
2. How do you serve static files like images or CSS in Flask?
'''
Flask automatically serves static files—such as CSS, JavaScript, and images—from a folder named static by default. You just need to place your files in that folder and reference them correctly in your HTML.

1. Project Structure
/myapp
  ├── app.py
  ├── static/
  │   ├── style.css
  │   └── logo.png
  └── templates/
      └── index.html
2. Access Static Files in HTML
Use Flask’s url_for() function to link static files:
<!-- templates/index.html -->
<!DOCTYPE html>
<html>
<head>
  <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
  <h1>Hello Flask</h1>
  <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">
</body>
</html>
3. Flask App Example
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)
When you visit http://127.0.0.1:5000/, Flask will serve your HTML with the linked static files.

'''

In [None]:
3. How do you define different routes with different HTTP methods in Flask?
'''
In Flask, you can define routes that handle different HTTP methods (e.g., GET, POST, PUT, DELETE) by using the @app.route() decorator and specifying the methods argument.

Example: One Route, Multiple Methods
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/user', methods=['GET', 'POST'])
def user():
    if request.method == 'GET':
        return jsonify({"message": "You sent a GET request"})
    elif request.method == 'POST':
        data = request.get_json()
        return jsonify({"message": "User created", "data": data}), 201
Example: Different Routes for Different Methods
@app.route('/user/<int:id>', methods=['GET'])
def get_user(id):
    return jsonify({"id": id, "name": "Alice"})

@app.route('/user/<int:id>', methods=['PUT'])
def update_user(id):
    data = request.get_json()
    return jsonify({"id": id, "updated_data": data})

@app.route('/user/<int:id>', methods=['DELETE'])
def delete_user(id):
    return jsonify({"message": f"User {id} deleted"}), 204
'''

In [None]:
4. How do you render HTML templates in Flask?
'''
Step 1: Project Structure
Create a folder named templates in your project directory:
/myapp
  ├── app.py
  └── templates/
       └── index.html
Step 2: Create an HTML Template
Example templates/index.html:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Template</title>
</head>
<body>
    <h1>Welcome, {{ name }}!</h1>
</body>
</html>
{{ name }} is a Jinja2 placeholder that Flask will replace with actual data.
Step 3: Render Template in Flask
Use Flask's render_template function:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html', name='Alice')

if __name__ == '__main__':
    app.run(debug=True)
render_template() loads the template and passes variables to it.
'''

In [None]:
5. How can you generate URLs for routes in Flask using url_for?
'''
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/user/<username>')
def profile(username):
    return f"Profile page of {username}"

with app.test_request_context():
    print(url_for('home'))  # Output: '/'
    print(url_for('profile', username='Alice'))  # Output: '/user/Alice'
Using url_for() in Templates
<a href="{{ url_for('profile', username='Alice') }}">Alice's Profile</a>
This generates a link to /user/Alice.

Generating URLs for Static Files
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
...

In [None]:
6.How do you handle forms in Flask?
'''
Step 1: Create an HTML Form
Example form (templates/form.html):
<!DOCTYPE html>
<html>
<head>
    <title>Simple Form</title>
</head>
<body>
    <form method="POST" action="/submit">
        <label for="name">Name:</label>
        <input type="text" id="name" name="name" required>

        <input type="submit" value="Submit">
    </form>
</body>
</html>
Step 2: Flask Route to Render the Form
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/form')
def form():
    return render_template('form.html')
Step 3: Flask Route to Handle Form Submission
@app.route('/submit', methods=['POST'])
def submit():
    name = request.form.get('name')  # Access form data
    return f"Hello, {name}!"
'''

In [None]:
7.How can you validate form data in Flask?
- 1️⃣ Manual Validation Using request.form
You can manually check the submitted data inside your route:
from flask import Flask, request, render_template, flash

app = Flask(__name__)
app.secret_key = 'secret!'  # Needed for flashing messages

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form.get('name')
    email = request.form.get('email')

    errors = []

    if not name or len(name) < 3:
        errors.append("Name must be at least 3 characters.")
    if not email or "@" not in email:
        errors.append("Enter a valid email address.")

    if errors:
        for error in errors:
            flash(error)
        return render_template('form.html')
    else:
        return f"Hello, {name}! Your email is {email}."
2️⃣ Using Flask-WTF (Recommended)
Flask-WTF integrates WTForms with Flask and provides powerful validation features out-of-the-box.

Installation
pip install flask-wtf
Example
from flask import Flask, render_template, redirect, flash
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Length, Email

app = Flask(__name__)
app.secret_key = 'your_secret_key'

class MyForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired(), Length(min=3)])
    email = StringField('Email', validators=[DataRequired(), Email()])
    submit = SubmitField('Submit')

@app.route('/form', methods=['GET', 'POST'])
def form():
    form = MyForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}! Your email is {form.email.data}."
    return render_template('form.html', form=form)
Example templates/form.html for Flask-WTF:
<form method="POST">
    {{ form.hidden_tag() }}
    {{ form.name.label }} {{ form.name(size=20) }}
    {% for error in form.name.errors %}
        <span style="color:red;">[{{ error }}]</span>
    {% endfor %}

    {{ form.email.label }} {{ form.email(size=20) }}
    {% for error in form.email.errors %}
        <span style="color:red;">[{{ error }}]</span>
    {% endfor %}

    {{ form.submit() }}
</form>
'''

In [None]:
8. How do you manage sessions in Flask?
'''
Flask provides a built-in session object to store user-specific data across multiple requests securely, typically using cookies.

✅ Basics of Flask Sessions
session behaves like a Python dictionary.

Data stored in session persists between requests for the same user.

Flask signs the session cookie to prevent tampering (needs a SECRET_KEY).
Example: Setting and Accessing Session Data
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required for sessions

@app.route('/login', methods=['POST'])
def login():
    username = request.form['username']
    session['username'] = username  # Store in session
    return redirect(url_for('profile'))

@app.route('/profile')
def profile():
    if 'username' in session:
        return f"Logged in as {session['username']}"
    return "You are not logged in"

@app.route('/logout')
def logout():
    session.pop('username', None)  # Remove user from session
    return "You have been logged out"
'''

In [None]:
9. How do you redirect to a different route in Flask?
'''
n Flask, you use the redirect() function along with url_for() to send the user to a different route.

✅ Basic Example
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page"

@app.route('/go-to-home')
def go_to_home():
    return redirect(url_for('home'))  # Redirects to the 'home' route
redirect() sends an HTTP redirect response.

url_for('home') generates the URL for the home function.

 Redirect After a POST Request (Post/Redirect/Get Pattern)
 from flask import request

@app.route('/submit', methods=['POST'])
def submit():
    # process form data here
    return redirect(url_for('home'))  # Redirect after form submission
'''

In [None]:
10. How do you handle errors in Flask (e.g., 404)?
'''
Flask lets you handle HTTP errors gracefully by defining custom error handlers using the @app.errorhandler() decorator.

✅ Handling a 404 Not Found Error
from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404
This function will be called whenever a 404 error occurs.

You can return a custom HTML page or JSON response.

The second value 404 is the HTTP status code.

✅ Example: Custom 404 Template (templates/404.html)
<!DOCTYPE html>
<html>
<head><title>Page Not Found</title></head>
<body>
  <h1>Oops! Page not found (404)</h1>
  <p>The page you are looking for does not exist.</p>
</body>
</html>
✅ Handling Other Common Errors
@app.errorhandler(500)
def internal_error(e):
    return "An internal error occurred.", 500

@app.errorhandler(403)
def forbidden(e):
    return "Forbidden access.", 403
✅ Returning JSON Error Responses (for APIs)
from flask import jsonify

@app.errorhandler(404)
def json_404(e):
    return jsonify(error="Resource not found"), 404
'''

In [None]:
11. How do you structure a Flask app using Blueprints?
'''
 How Do You Structure a Flask App Using Blueprints?
Flask Blueprints help you organize your application into modular components—great for larger apps where you want to separate routes, templates, and static files logically.

✅ Why Use Blueprints?
Organize related routes and logic together

Reuse components across projects

Avoid cluttering app.py

Make testing easier

✅ Example Project Structure
/myapp
  ├── app.py
  ├── /users
  │    ├── __init__.py
  │    └── routes.py
  ├── /posts
  │    ├── __init__.py
  │    └── routes.py
  ├── /templates
  └── /static
Step 1: Define a Blueprint (e.g., users/routes.py)
from flask import Blueprint

users_bp = Blueprint('users', __name__, url_prefix='/users')

@users_bp.route('/')
def users_home():
    return "Users Home Page"

@users_bp.route('/profile')
def profile():
    return "User Profile Page"
url_prefix makes all routes start with /users

 Step 2: Register Blueprint in app.py
 from flask import Flask
from users.routes import users_bp

app = Flask(__name__)

app.register_blueprint(users_bp)

if __name__ == '__main__':
    app.run(debug=True)
 Access Routes
http://localhost:5000/users/ → Users Home Page

http://localhost:5000/users/profile → User Profile Page

'''

In [None]:
12. How do you define a custom Jinja filter in Flask?
'''
Jinja filters let you transform data inside your templates (like formatting dates, modifying strings, etc.). You can create your own custom filters and register them with Flask.

✅ Step 1: Define the Filter Function
Create a Python function that takes a value and returns a transformed value:
def reverse_string(s):
    return s[::-1]
 Step 2: Register the Filter with Flask
You can register it using the app.template_filter() decorator or app.add_template_filter() method:

from flask import Flask

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_string(s):
    return s[::-1]
Or:
app.add_template_filter(reverse_string, 'reverse')
Step 3: Use the Custom Filter in Templates
In your Jinja template:
<p>{{ "hello world" | reverse }}</p>
This will output:
dlrow olleh
'''

In [None]:
13.  How can you redirect with query parameters in Flask?
'''
To redirect to a route with query parameters, you can use Flask’s redirect() together with url_for() and pass the parameters as keyword arguments.

✅ Example: Redirect with Query Parameters
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q', '')
    return f"Search results for: {query}"

@app.route('/do-search')
def do_search():
    # Redirect to /search with query parameter q=flask
    return redirect(url_for('search', q='flask'))
The URL will be: /search?q=flask

✅ More Dynamic Example with Variables
@app.route('/submit', methods=['POST'])
def submit():
    search_term = request.form.get('search_term')
    # Redirect to search page with query parameter from form input
    return redirect(url_for('search', q=search_term))
'''

In [None]:
14. How do you return JSON responses in Flask?
'''
Flask provides a convenient way to send JSON responses, which is essential when building APIs.

✅ Method 1: Using jsonify()
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    data = {
        'name': 'Alice',
        'age': 30,
        'city': 'New York'
    }
    return jsonify(data)
jsonify() converts a Python dictionary (or list) into a JSON response.

It also sets the Content-Type header to application/json.
Method 2: Returning JSON Manually
from flask import Flask, Response
import json

app = Flask(__name__)

@app.route('/api/data2')
def get_data2():
    data = {
        'name': 'Bob',
        'age': 25,
        'city': 'San Francisco'
    }
    response = Response(json.dumps(data), mimetype='application/json')
    return response
More manual and verbose.

jsonify() is recommended unless you have specific needs.

'''

In [None]:
15. How do you capture URL parameters in Flask?
'''
Flask makes it easy to capture dynamic segments of a URL using route parameters.

✅ Basic Example: Capturing a URL Parameter
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f'Hello, {username}!'
Visiting /user/alex would display:
Hello, alex!

✅ Type-Specific Parameters
Flask allows you to specify types to ensure the parameter format:
@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post ID is {post_id}'
| Type     | Description                     |
| -------- | ------------------------------- |
| `string` | Default (no need to declare)    |
| `int`    | Integers only                   |
| `float`  | Floating-point numbers          |
| `path`   | Like `string`, but includes `/` |
| `uuid`   | UUID strings                    |
Example:@app.route('/files/<path:file_path>')
def show_file(file_path):
    return f'File path: {file_path}'
Multiple Parameters Example
@app.route('/product/<string:category>/<int:product_id>')
def product_detail(category, product_id):
    return f'Category: {category}, Product ID: {product_id}'
...