# Theory Question

### Question 1. What is a RESTful API?


Answer:- A RESTful API (Representational State Transfer) is an interface that allows applications to communicate over HTTP using standard methods like GET, POST, PUT, and DELETE. REST APIs treat everything as a resource, each identified by a URL, and operations are performed using HTTP methods.

### Question 2. Explain the concept of API specification.


Answer:- An API specification is a detailed description of how an API works. It defines endpoints, request formats, response formats, authentication methods, and error handling. Tools like OpenAPI (Swagger) are often used to create and share these specifications.

### Question 3. What is Flask, and why is it popular for building APIs?


Answer:- Flask is a lightweight Python web framework. It’s popular for APIs because:

- It’s minimal and easy to learn.

- Flexible, with no strict project structure.

- Supports extensions (like Flask-SQLAlchemy).

- Great for small to medium-sized projects and quick prototypes.

### Question 4. What is routing in Flask?


Answer:- Routing is the process of mapping URLs to specific functions in your application. For example, /users might map to a function that returns user data.

### Question 5. How do you create a simple Flask application?


Answer:-

In [18]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [19]:
%pip install Flask-SQLAlchemy



### Question 6. What are HTTP methods used in RESTful APIs?


Answer:-Main HTTP Methods

1. GET

- Used to retrieve data from the server.

- Example: GET /users/1 → fetch details of user with ID 1.

- Should not change anything on the server (read-only).

2. POST

- Used to create new resources.

- Example: POST /users with data { "name": "Sneha" } → creates a new user.

3. PUT

- Used to update an existing resource (replace the entire object).

- Example: PUT /users/1 with full user details → updates user with ID 1 completely.

4. PATCH

- Used to partially update a resource.

- Example: PATCH /users/1 with { "email": "new@mail.com" } → only updates the email field.

5. DELETE

- Used to remove a resource.

- Example: DELETE /users/1 → deletes the user with ID 1.

### Question 7. What is the purpose of the @app.route() decorator in Flask?


Anwer:- It tells Flask which URL should trigger a specific function. Example:

In [None]:
@app.route('/hello')
def hello():
    return "Hello World"


### Question 8. What is the difference between GET and POST HTTP methods?


Answer:- GET: Used for reading data. Parameters are passed in the URL. Safe and idempotent (doesn’t change server state).

POST: Used for creating data. Data is sent in the request body. Changes server state.

### Question 9.  How do you handle errors in Flask APIs?


Answer:- You can use error handlers:

In [None]:
from flask import jsonify

@app.errorhandler(404)
def not_found(e):
    return jsonify(error="Resource not found"), 404


### Question 10. How do you connect Flask to a SQL database?


Answer:- You can use Flask-SQLAlchemy (or raw SQL libraries). Example:

In [17]:
from flask_sqlalchemy import SQLAlchemy

app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'
db = SQLAlchemy(app)


### Question 11.What is the role of Flask-SQLAlchemy?


Answer:- It’s an extension that integrates SQLAlchemy with Flask. It allows you to work with databases using Python objects (ORM) instead of writing raw SQL.

### Question 12. What are Flask blueprints, and how are they useful?


Answer:- Blueprints let you structure a Flask app into smaller, reusable components. They help organize routes, views, and logic in large applications.
Example: an auth blueprint for login, and a blog blueprint for posts.

### Question 13. What is the purpose of Flask's request object?


Answer:- request gives access to incoming request data like headers, query parameters, and JSON body.
Example:

In [14]:
from flask import request

@app.route('/user', methods=['POST'])
def create_user():
    data = request.json
    return data


### Question 14. How do you create a RESTful API endpoint using Flask?


Answer:-

In [13]:
from flask import Flask, jsonify, request

app = Flask(__name__)

@app.route('/users', methods=['GET'])
def get_users():
    return jsonify({"users": ["Alice", "Bob"]})

@app.route('/users', methods=['POST'])
def add_user():
    data = request.json
    return jsonify({"message": "User added", "user": data}), 201


### Question 15. What is the purpose of Flask's jsonify() function?


Answer:- It converts Python dictionaries or lists into proper JSON responses with the correct Content-Type: application/json header.

### Question 16. Explain Flask’s url_for() function.


Answer:- url_for() is used to generate URLs dynamically in Flask instead of hardcoding them. It makes code more maintainable.

Example:

In [12]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/profile/<username>')
def profile(username):
    return f"Profile: {username}"

@app.route('/')
def home():
    return f"Go to {url_for('profile', username='Sneha')}"


### Question 17. How does Flask handle static files (CSS, JavaScript, etc.)?


Answer:- Flask automatically looks for static files in a folder named static/.
You can reference them in templates like this:

### Question 18. What is an API specification, and how does it help in building a Flask API?


Answer:- An API specification is a detailed document describing the API:

- Endpoints (like /users)

- Request methods (GET, POST, etc.)

- Request/response formats (JSON structure)

- Authentication requirements

- Error codes

It helps because:

- Developers know how to use the API without guessing.

- Ensures consistency across endpoints.

- Makes testing and documentation easier (Swagger/OpenAPI are common tools).

### Question 19. What are HTTP status codes, and why are they important in a Flask API?


Answer:-HTTP status codes tell clients whether their request was successful or not.

Examples:

- 200 OK → Success

- 201 Created → Resource created successfully

- 400 Bad Request → Client sent invalid data

- 401 Unauthorized → Authentication required

- 404 Not Found → Resource doesn’t exist

- 500 Internal Server Error → Server problem

They’re important because they let clients handle responses properly instead of relying only on messages.

### Question 20. How do you handle POST requests in Flask?


Answer:- POST requests usually send data in JSON or form data. Example:

In [7]:
from flask import request, jsonify

@app.route('/add', methods=['POST'])
def add():
    data = request.json  # or request.form for form data
    return jsonify({"message": "Data received", "data": data}), 201


### Question 21. How would you secure a Flask API?


Answer:- Some common practices:

- Use HTTPS (TLS/SSL) for encrypted communication.

- Authentication & Authorization: JWT (JSON Web Tokens), OAuth, or API keys.

- Input Validation & Sanitization: Prevent SQL injection, XSS.

- Rate Limiting: Prevent abuse by limiting requests.

- CORS Handling: Control which domains can access your API.

- Error Handling: Avoid leaking sensitive info in error responses.

### Question 22. What is the significance of the Flask-RESTful extension?


Answer:- Flask-RESTful is an extension that simplifies building REST APIs.
Benefits:

Provides Resource classes to organize endpoints.

Built-in request parsing and validation.

Easy error handling and response formatting.

Example:

In [6]:
from flask import Flask
from flask_restful import Api, Resource

app = Flask(__name__)
api = Api(app)

class Hello(Resource):
    def get(self):
        return {"message": "Hello, World"}

api.add_resource(Hello, '/hello')


### Question 23.What is the role of Flask’s session object?


Answer:- The session object stores data across requests for a single user.

Stored on the client as a secure cookie (signed, not encrypted).

Useful for login sessions, shopping carts, etc.

Example:

In [3]:
from flask import session

@app.route('/login')
def login():
    session['username'] = 'Sneha'
    return "Logged in!"

@app.route('/profile')
def profile():
    return f"User: {session.get('username')}"


# Practical Question

### Question 1. How do you create a basic Flask application?

In [20]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


### Question 2.  How do you serve static files like images or CSS in Flask?

In [23]:
from flask import Flask, render_template, url_for

app = Flask(__name__)

@app.route('/')
def home():
    # url_for builds the correct URL for static files
    css_file = url_for('static', filename='style.css')
    image_file = url_for('static', filename='logo.png')
    return f"""
    <html>
        <head>
            <link rel="stylesheet" href="{css_file}">
        </head>
        <body>
            <h1>Hello, Flask!</h1>
            <img src="{image_file}" alt="Logo">
        </body>
    </html>
    """

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


### Question 3. How do you define different routes with different HTTP methods in Flask?

In [24]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/user', methods=['GET', 'POST'])
def user():
    if request.method == 'GET':
        return "This is a GET request - fetching user info"
    elif request.method == 'POST':
        data = request.form.get('name')  # example form data
        return f"This is a POST request - new user {data} created!"

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


### Question 4. How do you render HTML templates in Flask?

In [25]:
from flask import render_template

@app.route('/hello')
def hello():
    return render_template('hello.html', name="Sneha")


### Question 5. How can you generate URLs for routes in Flask using url_for?

In [26]:
@app.route('/profile/<username>')
def profile(username):
    return f"Profile of {username}"

@app.route('/')
def home():
    return url_for('profile', username='Sneha')


### Question 6. How do you handle forms in Flask?

In [27]:
@app.route('/form', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form['name']
        return f"Hello {name}"
    return render_template('form.html')


### Question 7.  How can you validate form data in Flask?

In [28]:
@app.route('/signup', methods=['POST'])
def signup():
    username = request.form.get('username')
    if not username:
        return "Username required", 400
    return f"Welcome {username}"


### Question 8. How do you manage sessions in Flask?

In [35]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)

# Secret key for signing session cookies
app.secret_key = "supersecretkey"

@app.route('/')
def home():
    if 'username' in session:
        return f"Logged in as {session['username']}"
    return "You are not logged in"

@app.route('/login', methods=['POST', 'GET'])
def login():
    if request.method == 'POST':
        # store data in session
        session['username'] = request.form['username']
        return redirect(url_for('home'))
    return '''
        <form method="post">
            <input type="text" name="username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/logout')
def logout():
    # remove session data
    session.pop('username', None)
    return redirect(url_for('home'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


### Question 9. How do you redirect to a different route in Flask?

In [36]:
from flask import redirect, url_for

@app.route('/go')
def go():
    return redirect(url_for('profile', username='Sneha'))


### Question 10. How do you handle errors in Flask (e.g., 404)?

In [37]:
@app.errorhandler(404)
def not_found(e):
    return "Page not found", 404


### Question 11. How do you structure a Flask app using Blueprints?

In [39]:
from flask import Blueprint

auth = Blueprint('auth', __name__)

@auth.route('/login')
def login():
    return "Login page"


In [41]:
from flask import Flask, Blueprint

# Define the blueprint here (moved from previous cell)
auth = Blueprint('auth', __name__)

@auth.route('/login')
def login():
    return "Login page"

app = Flask(__name__)
app.register_blueprint(auth, url_prefix='/auth')

### Question 12. How do you define a custom Jinja filter in Flask?

In [43]:
from flask import Flask, render_template_string

app = Flask(__name__)

@app.template_filter('capitalize')
def capitalize_filter(s):
    return s.capitalize()

# Define a simple route to render a template using the filter
@app.route('/filtered')
def show_filtered():
    template = 'Hello, {{ "sneha" | capitalize }}!'
    return render_template_string(template)

# You would typically run the app here if this were your main script:
# if __name__ == "__main__":
#     app.run(debug=True)

### Question 13. How can you redirect with query parameters in Flask?

In [44]:
@app.route('/redirect')
def redirect_with_params():
    return redirect(url_for('search', q='flask'))

@app.route('/search')
def search():
    query = request.args.get('q')
    return f"Search results for {query}"


### Question 14. How do you return JSON responses in Flask?

In [45]:
from flask import jsonify

@app.route('/api')
def api():
    return jsonify({"user": "Sneha", "age": 25})


### Question 15. How do you capture URL parameters in Flask?

In [46]:
@app.route('/user/<username>')
def user(username):
    return f"Hello {username}"

@app.route('/post/<int:post_id>')
def post(post_id):
    return f"Post ID: {post_id}"
