## RESTful API & Flask - Detailed Notes

### 1. What is a RESTful API?
A RESTful API (Representational State Transfer) is a web service that adheres to REST architecture principles. It allows interaction with web services using HTTP methods such as GET, POST, PUT, and DELETE. RESTful APIs are stateless, meaning each request from a client to the server must contain all necessary information. The resources are typically represented in formats like JSON or XML.

### 2. Explain the concept of API specification
An API specification is a document that defines how an API functions, including available endpoints, request and response formats, parameters, authentication methods, and status codes. It serves as a contract between the client and server, ensuring consistent communication. OpenAPI (formerly Swagger) is a popular specification format used to design and document APIs.

### 3. What is Flask, and why is it popular for building APIs?
Flask is a lightweight web framework for Python that is widely used to build web applications and RESTful APIs. It is popular because of its simplicity, flexibility, and ease of use. Flask allows developers to quickly set up web servers and expose endpoints. It also supports extensions like Flask-SQLAlchemy and Flask-RESTful for database and API development.

### 4. What is routing in Flask?
Routing in Flask refers to mapping URLs to specific functions in the application. Flask uses the `@app.route()` decorator to bind a URL to a Python function, allowing different parts of the web application to be accessed through various endpoints.

### 5. How do you create a simple Flask application?
To create a simple Flask application:
```python
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, World!"

if __name__ == '__main__':
    app.run(debug=True)
```
This script sets up a basic web server that responds with "Hello, World!" when the root URL is accessed.

### 6. What are HTTP methods used in RESTful APIs?
The common HTTP methods used in RESTful APIs include:
- **GET**: Retrieve data from the server
- **POST**: Submit new data to the server
- **PUT**: Update existing data
- **DELETE**: Remove data
These methods align with CRUD operations (Create, Read, Update, Delete).

### 7. What is the purpose of the @app.route() decorator in Flask?
The `@app.route()` decorator in Flask is used to define the route (URL) for a specific function. It tells Flask what URL should trigger the execution of the associated function, effectively connecting web requests to Python code.

### 8. What is the difference between GET and POST HTTP methods?
- **GET**: Used to retrieve data from the server. Data is sent in the URL, making it visible and limited in length.
- **POST**: Used to send data to the server to create or update resources. Data is sent in the body of the request, which is more secure and not visible in the URL.

### 9. How do you handle errors in Flask APIs?
Flask allows custom error handling using error handlers. For example:
```python
@app.errorhandler(404)
def not_found(error):
    return {"error": "Not found"}, 404
```
You can handle different HTTP error codes like 404, 500, etc., and return custom JSON responses.

### 10. How do you connect Flask to a SQL database?
You can connect Flask to a SQL database using libraries like Flask-SQLAlchemy. Example:
```python
from flask_sqlalchemy import SQLAlchemy
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///mydb.db'
db = SQLAlchemy(app)
```
This configuration enables Flask to use SQLite as the backend database.

### 11. What is the role of Flask-SQLAlchemy?
Flask-SQLAlchemy is an extension that integrates SQLAlchemy with Flask. It simplifies database operations like model creation, querying, and migrations. It uses Object Relational Mapping (ORM), allowing developers to interact with the database using Python classes.

### 12. What are Flask blueprints, and how are they useful?
Flask Blueprints are a way to organize large applications into smaller, manageable components. They allow code related to specific functionalities (e.g., authentication, user management) to be grouped together, improving modularity and maintainability.

### 13. What is the purpose of Flask’s request object?
The `request` object in Flask is used to access data sent by the client to the server. This includes form data, query parameters, JSON data, headers, and more. For example:
```python
from flask import request
name = request.args.get('name')
```

### 14. How do you create a RESTful API endpoint using Flask?
```python
@app.route('/api/data', methods=['GET'])
def get_data():
    return jsonify({"data": "Sample"})
```
This defines a simple API endpoint that returns JSON data when accessed using the GET method.

### 15. What is the purpose of Flask’s jsonify() function?
The `jsonify()` function converts Python dictionaries or lists into JSON responses. It also sets the correct MIME type (`application/json`) for the response.

### 16. Explain Flask’s url_for() function
The `url_for()` function dynamically generates URLs for a given function name. It is useful for avoiding hardcoding URLs and ensures flexibility if routes change. Example:
```python
url_for('home')
```

### 17. How does Flask handle static files (CSS, JavaScript, etc.)?
Flask serves static files from the `static/` directory by default. You can access a static file like this:
```html
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
```

### 18. What is an API specification, and how does it help in building a Flask API?
An API specification outlines the structure and behavior of an API. It defines endpoints, input parameters, data formats, and response codes. It acts as a blueprint for both the backend and frontend teams, ensuring consistent communication and smooth integration.

### 19. What are HTTP status codes, and why are they important in a Flask API?
HTTP status codes indicate the result of a client’s request. Examples:
- 200: OK
- 201: Created
- 400: Bad Request
- 404: Not Found
- 500: Server Error
Returning appropriate status codes helps clients understand the outcome of their requests.

### 20. How do you handle POST requests in Flask?
You can handle POST requests like this:
```python
@app.route('/submit', methods=['POST'])
def submit():
    data = request.get_json()
    return jsonify(data), 201
```
This reads JSON data from the request and returns it with a status code.

### 21. How would you secure a Flask API?
Security measures include:
- Input validation and sanitization
- Using HTTPS
- Token-based authentication (e.g., JWT)
- Rate limiting
- CORS management
- Secure session handling

### 22. What is the significance of the Flask-RESTful extension?
Flask-RESTful is an extension that simplifies the creation of REST APIs with Flask. It adds support for class-based views and automatic request parsing. It makes API development more structured and reusable.

### 23. What is the role of Flask’s session object?
The `session` object in Flask allows you to store information specific to a user across requests. It uses cookies and is often used to manage login sessions or temporary user data.
```python
from flask import session
session['username'] = 'Kamran'
```

---
Let me know if you want the practical section answered or if you'd like this saved as a downloadable `.ipynb` file.


#Practical

1. **How do you create a basic Flask application?**  
   In Colab, create the Flask app and run it in a separate thread to avoid blocking the notebook:  
   ```python
   from flask import Flask
   app = Flask(__name__)

   @app.route('/')
   def home():
       return "Hello, Flask!"

   # Run Flask in a thread
   def run():
       app.run(host='0.0.0.0', port=5000)

   threading.Thread(target=run).start()
   ```  
   Access the app using the `ngrok` public URL printed earlier (e.g., `http://<ngrok-url>`).

2. **How do you serve static files like images or CSS in Flask?**  
   Create a `static` folder in Colab (you may need to upload files manually):  
   ```python
   !mkdir -p static
   # Upload a file (e.g., style.css) to the static folder via Colab's file upload
   from google.colab import files
   files.upload()  # Upload style.css to the static folder
   ```  
   Serve it as usual:  
   ```html
   <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
   ```  
   Access via the `ngrok` URL.

3. **How do you define different routes with different HTTP methods in Flask?**  
   Same as before, just ensure the app is running in a thread:  
   ```python
   from flask import Flask, request
   app = Flask(__name__)

   @app.route('/submit', methods=['GET', 'POST'])
   def submit():
       if request.method == 'POST':
           return "Form submitted!"
       return "Show form"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Use the `ngrok` URL to test GET/POST requests.

4. **How do you render HTML templates in Flask?**  
   Create a `templates` folder in Colab and write an HTML file:  
   ```python
   !mkdir -p templates
   with open('templates/index.html', 'w') as f:
       f.write('<h1>Hello, Flask!</h1>')
   ```  
   Render it:  
   ```python
   from flask import Flask, render_template
   app = Flask(__name__)

   @app.route('/')
   def home():
       return render_template('index.html')

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Access via the `ngrok` URL.

5. **How can you generate URLs for routes using url_for() in Flask?**  
   Same as the original, just ensure the app runs in Colab:  
   ```python
   from flask import Flask, url_for
   app = Flask(__name__)

   @app.route('/')
   def home():
       return f"Link to about: {url_for('about')}"

   @app.route('/about')
   def about():
       return "About page"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Test the links via the `ngrok` URL.

6. **How do you handle forms in Flask?**  
   Create a form in `templates/form.html`:  
   ```python
   with open('templates/form.html', 'w') as f:
       f.write('<form method="POST"><input name="name"><input type="submit"></form>')
   ```  
   Handle it:  
   ```python
   from flask import Flask, request, render_template
   app = Flask(__name__)

   @app.route('/form', methods=['GET', 'POST'])
   def form():
       if request.method == 'POST':
           name = request.form['name']
           return f"Hello, {name}!"
       return render_template('form.html')

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Access via `ngrok` URL.

7. **How do you validate form data in Flask?**  
   Install `flask-wtf`:  
   ```python
   !pip install flask-wtf
   ```  
   Use it in Colab:  
   ```python
   from flask import Flask, render_template
   from flask_wtf import FlaskForm
   from wtforms import StringField
   from wtforms.validators import DataRequired

   app = Flask(__name__)
   app.config['SECRET_KEY'] = 'secret'

   class MyForm(FlaskForm):
       name = StringField('name', validators=[DataRequired()])

   with open('templates/form.html', 'w') as f:
       f.write('{% if form.errors %}Errors: {{ form.errors }}{% endif %}<form method="POST">{{ form.csrf_token }}{{ form.name.label }}: {{ form.name() }}<input type="submit"></form>')

   @app.route('/form', methods=['GET', 'POST'])
   def form():
       form = MyForm()
       if form.validate_on_submit():
           return f"Hello, {form.name.data}!"
       return render_template('form.html', form=form)

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Test via `ngrok`.

8. **How do you manage sessions in Flask?**  
   Same as before, with a secret key:  
   ```python
   from flask import Flask, session
   app = Flask(__name__)
   app.config['SECRET_KEY'] = 'secret'

   @app.route('/login')
   def login():
       session['user'] = 'username'
       return "Logged in"

   @app.route('/logout')
   def logout():
       session.pop('user', None)
       return "Logged out"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Access via `ngrok`.

9. **How do you redirect to a different route in Flask?**  
   Same as original:  
   ```python
   from flask import Flask, redirect, url_for
   app = Flask(__name__)

   @app.route('/go')
   def go():
       return redirect(url_for('home'))

   @app.route('/')
   def home():
       return "Home"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```

10. **How do you handle errors (e.g., 404) in Flask?**  
   Same as before:  
   ```python
   from flask import Flask
   app = Flask(__name__)

   @app.errorhandler(404)
   def page_not_found(e):
       return "Page not found", 404

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```

11. **How do you structure a Flask app using Blueprints?**  
   In Colab, you can define a blueprint in a cell:  
   ```python
   from flask import Flask, Blueprint
   app = Flask(__name__)

   auth = Blueprint('auth', __name__)
   @auth.route('/login')
   def login():
       return "Login page"

   app.register_blueprint(auth, url_prefix='/auth')

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```  
   Access via `ngrok` URL (e.g., `/auth/login`).

12. **How do you define a custom Jinja filter in Flask?**  
   Same as before:  
   ```python
   from flask import Flask
   app = Flask(__name__)

   def reverse_filter(s):
       return s[::-1]
   app.jinja_env.filters['reverse'] = reverse_filter

   @app.route('/')
   def home():
       return render_template_string('{{ "hello"|reverse }}')  # Outputs 'olleh'

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```

13. **How can you redirect with query parameters in Flask?**  
   Same as before:  
   ```python
   from flask import Flask, redirect, url_for, request
   app = Flask(__name__)

   @app.route('/search')
   def search():
       return redirect(url_for('results', query='flask'))

   @app.route('/results')
   def results():
       query = request.args.get('query')
       return f"Search for: {query}"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```

14. **How do you return JSON responses in Flask?**  
   Same as before:  
   ```python
   from flask import Flask, jsonify
   app = Flask(__name__)

   @app.route('/api')
   def api():
       return jsonify({'message': 'Hello, Flask!'})

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```

15. **How do you capture URL parameters in Flask?**  
   Same as before:  
   ```python
   from flask import Flask
   app = Flask(__name__)

   @app.route('/user/<username>')
   def user(username):
       return f"Hello, {username}!"

   threading.Thread(target=lambda: app.run(host='0.0.0.0', port=5000)).start()
   ```
