#**Restfil_APIs_and_flask assignment**

**1.What is a RESTful API?**

A RESTful API is a web service that allows clients (like browsers or apps) to interact with server resources using standard HTTP methods (GET, POST, PUT, DELETE). Each resource has a unique URL, and the API is stateless, meaning every request contains all the information needed. RESTful APIs return data in a structured format (usually JSON) and follow principles that make them predictable, scalable, and easy to integrate.

**2.Explain the concept of API specification.**

An API specification is a formal, detailed description of how an API works and how clients should interact with it. It defines the endpoints, request methods (GET, POST, etc.), required parameters, headers, request/response formats, authentication, and error responses. Essentially, it acts as a contract between the API provider and the consumer, ensuring developers know exactly how to use the API correctly without needing to look at the server’s internal code. Popular formats for API specifications include OpenAPI (Swagger) and RAML.

**3.What is Flask, and why is it popular for building APIs?**

Flask is a lightweight, open-source Python web framework used for building web applications and APIs. It provides the core tools to handle HTTP requests, routing, and responses, without enforcing a specific project structure or including unnecessary features.

Simplicity: Minimal setup; easy to learn and use.

Flexibility: Developers can choose their own database, authentication, and structure.

Extensible: Supports many extensions for authentication, database handling, and more.

Lightweight: Ideal for microservices and RESTful APIs where only essential components are needed.

Python ecosystem: Easy integration with Python libraries and tools.

**4.What is routing in Flask?**

In Flask, routing is the mechanism that maps a URL path to a specific Python function (called a view function) that should be executed when that URL is accessed. It determines what the user sees or what action happens when they visit a particular web address.

**5.How do you create a simple Flask application?**


A Flask application is a lightweight web application built using the Flask framework, which is a micro web framework in Python. To create a simple Flask application, you follow these steps:

Install Flask using pip install Flask.

Import Flask in a Python file and create an application

Define routes to handle different URLs using the @app.route() decorator. Each route is associated with a Python function that returns a response (text, HTML, JSON, etc.).

Run the application with app.run(), which starts a development server so you can access the app in a browser.

**6.What are HTTP methods used in RESTful APIs?**

In RESTful APIs, HTTP methods define the type of operation performed on a resource. The main methods are:

GET – Retrieve data from the server (read).

POST – Create a new resource on the server.

PUT – Update an existing resource completely.

PATCH – Partially update an existing resource.

DELETE – Remove a resource from the server.

**7.What is the purpose of the @app.route() decorator in Flask?**

In Flask, the @app.route() decorator is used to map a specific URL (route) to a Python function. It defines which function should be executed when a user accesses a particular path in the web application. This allows Flask to handle different requests and return appropriate responses for each URL. Essentially, @app.route() connects URLs to the logic that generates the response, making routing in web applications possible.

**8.What is the difference between GET and POST HTTP methods?**

The GET and POST HTTP methods are used differently in RESTful APIs. GET is used to retrieve or read data from the server, with parameters sent in the URL, making it visible and cacheable; it is idempotent, meaning repeated requests produce the same result without changing server data. POST, on the other hand, is used to send data to the server to create or update resources, with data sent in the request body; it is more secure for sensitive data and not necessarily idempotent. In short, GET is for fetching data, while POST is for submitting or creating data on the server.

**9. How do you handle errors in Flask APIs?**

In Flask APIs, errors are handled by returning appropriate HTTP status codes, defining custom error handlers, and using exceptions. Developers can return responses with status codes like 404 Not Found or 400 Bad Request along with error messages to inform clients. Custom error handlers can be defined using the @app.errorhandler() decorator to standardize error responses across the API. Additionally, Flask allows raising exceptions for invalid operations, which are automatically converted into HTTP error responses. Proper error handling ensures the API is robust, predictable, and user-friendly.

**10.How do you connect Flask to a SQL database?**

In Flask, you connect to a SQL database by configuring the database URI and using a library such as SQLAlchemy, which acts as an Object Relational Mapper (ORM). The steps include installing the required packages, setting the SQLALCHEMY_DATABASE_URI in the Flask app configuration, and initializing the database with SQLAlchemy(app). You define database tables as Python classes called models, and then perform CRUD (Create, Read, Update, Delete) operations using the db.session object. This approach allows Flask applications to interact with SQL databases like SQLite, MySQL, or PostgreSQL in a structured and efficient way.

**11. What is the role of Flask-SQLAlchemy?**

Flask-SQLAlchemy is an extension for Flask that simplifies working with SQL databases. It integrates SQLAlchemy, a powerful Object Relational Mapper (ORM), with Flask, allowing developers to interact with databases using Python classes and objects instead of writing raw SQL queries.

Roles and Benefits:

ORM Functionality: Map Python classes to database tables for easier data manipulation.

Simplified Configuration: Integrates seamlessly with Flask’s app configuration.

CRUD Operations: Provides a convenient interface for creating, reading, updating, and deleting records.

Database-Agnostic: Works with SQLite, MySQL, PostgreSQL, and other SQL databases.

Session Management: Handles database sessions and transactions automatically.

**12.What are Flask blueprints, and how are they useful?**

Flask Blueprints are a way to organize a Flask application into modular components. A blueprint is essentially a collection of routes, templates, static files, and other application logic that can be registered on the main Flask app.

Why They Are Useful:

Modularity: Allows splitting a large application into smaller, manageable pieces.

Reusability: Blueprints can be reused across multiple projects or apps.

Organized Routing: Keeps related routes together, making the code easier to maintain.

Separation of Concerns: Helps separate different functionalities (e.g., user management, admin panel, API routes).

Scalability: Makes it easier to scale large applications without creating a monolithic codebase.

**13.What is the purpose of Flask's request object?**

In Flask, the request object represents the incoming HTTP request sent by a client (browser, app, or other service) to the server. It provides all the information about the request, allowing the Flask app to access data sent by the client.

Purpose:

Access Form Data: Retrieve data sent via POST forms using request.form.

Query Parameters: Get URL query parameters using request.args.

Headers: Access HTTP headers via request.headers.

JSON Data: Read JSON payloads using request.get_json().

Cookies and Files: Access cookies (request.cookies) or uploaded files (request.files).

Request Metadata: Check method (request.method), URL, or client IP.

**14.How do you create a RESTful API endpoint using Flask?**

In Flask, a RESTful API endpoint is created by defining a route using the `@app.route()` decorator, specifying the URL path and allowed HTTP methods such as GET or POST. The endpoint function handles incoming requests and returns data, usually in JSON format, using `jsonify()`. For example, a GET endpoint can retrieve a list of resources, while a POST endpoint can accept JSON data to create a new resource. This approach allows Flask to serve predictable, structured responses that conform to REST principles, making it easy for clients to interact with the API.


**15.What is the purpose of Flask's jsonify() function?**

In Flask, the jsonify() function is used to convert Python data structures (like dictionaries or lists) into JSON-formatted responses that can be sent to clients. It also automatically sets the Content-Type header to application/json, ensuring the client interprets the response correctly.

Purpose:

Return data from API endpoints in JSON format.

Ensure the response has the correct HTTP headers.

Simplify creating RESTful APIs in Flask.

**16.Explain Flask’s url_for() function.**

In Flask, the url_for() function is used to dynamically generate URLs for routes defined in your application. Instead of hardcoding URLs in templates or Python code, url_for() ensures that URLs remain correct even if the route paths change.

Purpose:

Avoid hardcoding URLs: Makes your app more maintainable.

Generate URLs for routes and static files: Works for both dynamic endpoints and static assets.

Supports dynamic parameters: Automatically inserts values for route variables.

**17. How does Flask handle static files (CSS, JavaScript, etc.)?**

In Flask, static files like CSS, JavaScript, and images are served from a special folder named static by default. Flask automatically maps this folder to the URL path /static/, allowing clients to access files without additional routing.

**18.What is an API specification, and how does it help in building a Flask API?**

An **API specification** is a formal description of how an API works, detailing its endpoints, HTTP methods, request parameters, response formats, authentication, and error handling. It serves as a contract between the API developer and consumers, ensuring everyone knows how to interact with the API correctly. In building a Flask API, an API specification helps by defining routes and expected behavior, standardizing request and response formats, reducing errors, and facilitating testing and documentation. Essentially, it provides a clear blueprint for designing and implementing Flask APIs efficiently.


**19.What are HTTP status codes, and why are they important in a Flask API?**

HTTP status codes are standardized numeric codes sent by a server in response to a client’s HTTP request, indicating the outcome of the request. For example, 200 means success, 404 means the resource was not found, and 500 indicates a server error.

In a Flask API, status codes are important because they:

Communicate the result of a request clearly to clients.

Help clients handle responses programmatically (e.g., retry on errors, show messages).

Make the API predictable and RESTful, following standard web conventions.

Differentiate between success, client errors, and server errors, improving debugging and reliability.

**20.How do you handle POST requests in Flask?**

In Flask, POST requests are handled by defining a route with the methods=['POST'] parameter and using the request object to access data sent by the client. POST requests typically send data in the request body, such as form data or JSON.

**21.How would you secure a Flask API?**

Securing a Flask API involves implementing measures to protect data and ensure that only authorized users can access or modify resources. This includes **authentication** methods like API keys, JWT, or OAuth2 to verify users, and **authorization** to control what each user can do. Using **HTTPS** encrypts communication between the client and server, while **input validation** prevents attacks like SQL injection or XSS. Additional measures such as **rate limiting** prevent abuse, **CORS management** controls which domains can access the API, and careful **error handling** avoids exposing internal server details. Together, these practices make a Flask API safe, reliable, and robust.


**22.What is the significance of the Flask-RESTful extension?**

The Flask-RESTful extension is a Flask add-on that simplifies building RESTful APIs by providing tools and abstractions specifically for API development.

Significance:

Resource-Based Routing: Allows defining API endpoints as classes (resources), making code more organized.

Automatic Request Parsing: Provides built-in support for parsing JSON and form data using reqparse.

Built-in Error Handling: Simplifies returning proper HTTP status codes and error messages.

Serialization: Makes it easier to convert Python objects into JSON responses.

Cleaner Code: Reduces boilerplate compared to using plain Flask, especially for large APIs.

**23.What is the role of Flask’s session object?**

In Flask, the **`session` object** is used to store data specific to a user across multiple requests, enabling the server to remember information such as login status or user preferences. Each client has its own session, and the data persists until the session expires or is cleared. By default, session data is stored in a signed cookie, ensuring it cannot be tampered with. Common uses include managing user authentication, flash messages, or temporary settings. Overall, the session object allows Flask applications to maintain **stateful behavior** and provide a personalized experience for each user.


#**Practicals**

**1.How do you create a basic Flask application?**

In [39]:
!pip install Flask




In [None]:
# @title Default title text
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)

**2. How do you serve static files like images or CSS in Flask?**

In [None]:
my_flask_app/
├─ app.py
├─ static/
│   ├─ style.css
│   └─ logo.png
└─ templates/
    └─ index.html

In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Static Example</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Welcome!</h1>
    <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">
</body>
</html>


**3.How do you define different routes with different HTTP methods in Flask?**

In [None]:
!pip install Flask

In [34]:
from flask import Flask, request

app = Flask(__name__)

@app.route("/", methods=["GET"])
def home():
    return "This is a GET request"

@app.route("/submit", methods=["POST"])
def submit():
    data = request.form.get("name", "No name provided")
    return f"Hello, {data}!"




In [9]:
@app.route("/user", methods=["GET", "POST"])
def user():
    if request.method == "GET":
        return "You sent a GET request!"
    elif request.method == "POST":
        return "You sent a POST request!"


In [11]:
@app.route("/item/<int:item_id>", methods=["GET", "PUT", "DELETE"])
def item(item_id):
    if request.method == "GET":
        return f"Fetching item {item_id}"
    elif request.method == "PUT":
        return f"Updating item {item_id}"
    elif request.method == "DELETE":
        return f"Deleting item {item_id}"


**4. How do you render HTML templates in Flask?**

In [None]:
my_flask_app/
│── app.py
│── templates/
│     ├── index.html
│     ├── about.html

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    name = "Alice"
    return render_template('index.html', username=name)

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Home</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>
    <p>This is the homepage.</p>
    <a href="/about">Go to About Page</a>
</body>
</html>

**5.How can you generate URLs for routes in Flask using url_for?**

In [None]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route("/")
def home():
    return "Home Page"

@app.route("/about")
def about():
    return "About Page"

with app.test_request_context():
    print(url_for("home"))     # Output: /
    print(url_for("about"))    # Output: /about


/
/about


**6.How do you handle forms in Flask?**

In [17]:
from flask import Flask, request
app = Flask(__name__)

@app.route("/", methods=["GET", "POST"])
def form():
    if request.method == "POST":
        name = request.form["name",alice]
        return f"Hello {name}"
    return '<form method="POST"><input name="name"><input type="submit"></form>'

**7.How can you validate form data in Flask?**

In [33]:
from flask import Flask, request
app = Flask(__name__)

@app.route("/", methods=["GET", "POST"])
def form():
    if request.method == "POST":
        name = request.form["name"]
        if not name:              # validation check
            return "Name is required"
        return f"Hello {name}"
    return '<form method="POST"><input name="name"><input type="submit"></form>'

**8.How do you manage sessions in Flask?**

In [19]:
from flask import Flask, session, redirect, url_for, request
app = Flask(__name__)
app.secret_key = "secret123"   # required for sessions

@app.route("/login", methods=["POST", "GET"])
def login():
    if request.method == "POST":
        session["user"] = request.form["name"]
        return redirect(url_for("welcome"))
    return '<form method="POST"><input name="name"><input type="submit"></form>'

@app.route("/welcome")
def welcome():
    if "user" in session:
        return f"Welcome {session['user']}"
    return "You are not logged in"

**9.How do you redirect to a different route in Flask?**

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Home Page"

@app.route('/login')
def login():
    return "Login Page"

@app.route('/go-login')
def go_login():
    # Redirect to the login route
    return redirect(url_for('login'))

if __name__ == '__main__':
    app.run(debug=True)

**10.How do you handle errors in Flask (e.g., 404)?**

In [None]:
from flask import Flask, jsonify, request

app = Flask(__name__)

# Sample route
@app.route('/')
def home():
    return "Welcome to the Home Page!"

# Route with conditional error
@app.route('/user/<int:id>')
def get_user(id):
    if id != 1:
        return jsonify({"error": "User not found"}), 404
    return jsonify({"id": 1, "name": "Alice"})

# Custom 404 error handler
@app.errorhandler(404)
def not_found(error):
    return jsonify({"error": "Resource not found"}), 404

if __name__ == '__main__':
    app.run(debug=True)


**11.How do you structure a Flask app using Blueprints?**

In [None]:
my_flask_app/
├─ app.py
├─ users.py
└─ products.py

from flask import Blueprint, jsonify

users_bp = Blueprint('users', __name__)

@users_bp.route('/profile/<username>')
def profile(username):
    return jsonify({"message": f"Profile page of {username}"})

In [23]:
from flask import Blueprint, jsonify

users_bp = Blueprint('users', __name__)

@users_bp.route('/profile/<username>')
def profile(username):
    return jsonify({"message": f"Profile page of {username}"})


In [24]:
from flask import Blueprint, jsonify

products_bp = Blueprint('products', __name__)

@products_bp.route('/list')
def product_list():
    return jsonify({"products": ["Apple", "Banana", "Orange"]})


**12.How do you define a custom Jinja filter in Flask?**

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

# Custom filter to reverse a string
@app.template_filter('reverse')
def reverse_string(s):
    return s[::-1]

@app.route('/')
def home():
    name = "Flask"
    return render_template('index.html', name=name)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Custom Filter Example</title>
</head>
<body>
    <p>Original: {{ name }}</p>
    <p>Reversed: {{ name | reverse }}</p>
</body>
</html>


**13.How can you redirect with query parameters in Flask?**

In [27]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def index():
    # Redirect to /search?q=flask
    return redirect(url_for('search', q='flask'))

@app.route('/search')
def search():
    # Access query parameter: request.args.get('q')
    from flask import request
    query = request.args.get('q')
    return f"Search results for: {query}"


In [28]:
@app.route('/redirect_example')
def redirect_example():
    return redirect(url_for('search', q='flask', page=2))


In [29]:
@app.route('/google')
def google():
    return redirect("https://www.google.com/search?q=flask+python")


**14. How do you return JSON responses in Flask?**

In [30]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route("/api/data")
def get_data():
    data = {"name": "Alice", "age": 30, "city": "New York"}
    return jsonify(data)


**15.How do you capture URL parameters in Flask?**

In [31]:
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f"Hello, {username}!"



In [32]:
@app.route('/book/<string:title>/<int:chapter>')
def show_book(title, chapter):
    return f"Book: {title}, Chapter: {chapter}"
