 # Restful API & Flask (Theory)

1.What is a RESTful API?

  Ans: A RESTful API (Representational State Transfer API) is a way for computer systems to communicate over the internet using standard HTTP methods. It is a simple, scalable way to build web services using standard web protocols and operations. It’s widely used in web development for building backend services that can be accessed by web, mobile, or other client applications.

2.Explain the concept of API specification.

  Ans: An API specification is a detailed, formal description of how an API behaves and how developers should interact with it. Think of it as the blueprint or contract for the API—it defines what the API does, how to use it, and what to expect in return.

*   Endpoints (Routes)

    Define the URL paths where the API can be accessed.

    Example: /users, /products/{id}
*   HTTP Methods

    Specify what action to perform on each endpoint (e.g., GET, POST, PUT, DELETE).

*   Request Parameters

    Path parameters: e.g., /users/{id}

    Query parameters: e.g., /search?query=shoes

    Headers: e.g., Authorization, Content-Type

    Body: Data sent in requests (usually in JSON)
*   Request & Response Format

    Defines the structure of data expected in requests and returned in responses.

    Usually in JSON or XML.

*   Status Codes

    Defines what HTTP status codes will be returned in different situations (e.g., 200 OK, 404 Not Found, 500 Internal Server Error).
*   Authentication Requirements

    Details about how the API handles security, like OAuth2, API keys, tokens, etc.


3. What is Flask, and why is it popular for building APIs?

  Ans: Flask is a lightweight web framework for Python, widely used for building web applications and RESTful APIs. It’s known for its simplicity, flexibility, and minimalism, which makes it a popular choice—especially for small to medium projects, prototypes, and microservices.

  Flask is Popular for Building APIs as:

*   Minimal and Lightweight

    Flask doesn’t come with a lot of built-in tools or layers of abstraction.

    You start with just the core and add what you need, keeping your API lean.

*   Easy to Learn and Use

    The syntax is clean and Pythonic.

    Great for beginners and experienced developers alike.

    Quick to set up and run.
*   Powerful Routing System

    Easily map HTTP methods (GET, POST, etc.) to Python functions.
*   Extensible

    Supports plugins and extensions for things like:

    Authentication (e.g., Flask-JWT, Flask-Login)

    Database integration (e.g., Flask-SQLAlchemy)

    API documentation (e.g., Flask-RESTx, Flask-Swagger)

*   Good for REST APIs

    Its simplicity aligns well with REST principles: simple endpoints, HTTP methods, and JSON responses.

    Easy to build, test, and deploy RESTful services.
*   Strong Community and Ecosystem

    Lots of tutorials, tools, and community support.

    Many popular Python-based APIs and web apps use Flask under the hood.





4.What is routing in Flask?

  Ans: Routing in Flask is how you define what each URL in your web app or API should do. It connects URLs to Python functions and supports both static and dynamic routes, as well as various HTTP methods. It's one of the core features that makes Flask simple and powerful for web development..

5.How do you create a simple Flask application?

  Ans: Creating a simple Flask application is quick and easy. Here's a step-by-step guide to building a minimal Flask app that runs a web server and returns a basic message.

*   Step 1: Install Flask

    First, install Flask using pip (Python’s package manager)

*   Step 2: Create the Application File

    Create a Python file, e.g., app.py, with the following content
*   Step 3: Run the Application

    In your terminal, run the script


*   Step 4 (Optional): Add Another Route

    You can define more routes like this



6. What are HTTP methods used in RESTful APIs?

    Ans: In RESTful APIs, HTTP methods define the type of operation a client wants to perform on a resource (like creating, reading, updating, or deleting data). These methods map closely to CRUD operations (Create, Read, Update, Delete).

*   GET → retrieve
*   POST → create
*   PUT → replace
*   PATCH → modify
*   DELETE → remove

7.What is the purpose of the @app.route() decorator in Flask?

  Ans: The @app.route() decorator in Flask is used to map a URL path (route) to a specific function, called a view function. This tells Flask what code to run when a user visits a certain URL.

  Purpose of @app.route():

*   Defines routes (URLs) in your application.
*   Connects URLs to Python functions that return responses (like HTML, JSON, etc.).
*   Specifies which HTTP methods (GET, POST, etc.) the route supports (optionally).

8.What is the difference between GET and POST HTTP methods?

  Ans: The difference between GET and POST HTTP methods lies in how they send data and what they are used for in RESTful APIs and web applications.


| Feature        | `GET`                     | `POST`                       |
| -------------- | ------------------------- | ---------------------------- |
| **Purpose**    | Retrieve data (read-only) | Send data (create or update) |
| **Data sent**  | In URL (query string)     | In request body              |
| **Visible?**   | Yes (in browser & logs)   | No (hidden)                  |
| **Idempotent** |  Yes                     | No                         |
| **Use for**    | Reading/searching data    | Creating or submitting data  |




9.How do you handle errors in Flask APIs?

  Ans: In Flask APIs, you handle errors using:

*   @app.errorhandler() Decorator:

    Catch specific error types (like 404 or 500) and return custom responses.
*   Using abort() for Manual Errors:
    Use abort() to stop the request and return an error.
*   Custom Exceptions:
    Define your own exceptions and handle them globally.

10.How do you connect Flask to a SQL database?

  Ans: To connect Flask to a SQL database, the most common approach is using Flask-SQLAlchemy, which integrates SQLAlchemy (a powerful ORM) with Flask.

  Steps to Connect Flask to a SQL Database:

*   Install Flask-SQLAlchemy
*   Set Up Flask and Configure the Database
*   Define a Model (Table)
*   Create the Database Tables (Run db.create_all())
*   Insert and Query Data (Use db.session to interact with the database)

11.What is the role of Flask-SQLAlchemy?

  Ans: Flask-SQLAlchemy is an extension for Flask that simplifies working with SQL databases by integrating the powerful SQLAlchemy ORM (Object Relational Mapper) into Flask applications.

  Role of Flask-SQLAlchemy:

*   ORM Integration: Maps Python classes (models) to database tables so you can use Python instead of SQL to work with your data.

*   Simplified Setup: Makes configuring and using SQLAlchemy in Flask much easier.

*   Session Management: Handles database sessions and transactions through db.session.
*   Model Management: Allows you to define models using db.Model and manage tables with db.create_all().

*   Cross-DB Support: Works with SQLite, PostgreSQL, MySQL, and others using a unified interface.

12. What are Flask blueprints, and how are they useful?

    Ans: Flask Blueprints are a way to organize and structure large Flask applications by grouping related routes, templates, and static files into modular components.

*   Modular Code: Keeps code organized by separating features (e.g., auth, admin, blog).
*   Reusable Components: Blueprints can be reused across different projects.
*   Easier Maintenance: Makes large apps easier to navigate, test, and maintain.
*   Cleaner Main App: Keeps app.py or main.py clean by offloading routes and logic.

13. What is the purpose of Flask's request object?

    Ans: Flask’s request object represents the incoming HTTP request sent by the client. It gives your Flask app access to all the data the client sent with that request.

    Purpose of request object:

*   Access request data like form inputs, JSON payload, query parameters.
*   Read HTTP headers, cookies, and files uploaded by the client.
*   Check the HTTP method used (GET, POST, etc.).
*   Get information about the client (like IP address).

14.How do you create a RESTful API endpoint using Flask?

  Ans:Creating a RESTful API endpoint in Flask involves defining a route that handles HTTP requests and returns data, usually in JSON format.

  Use @app.route() to define URL paths and allowed HTTP methods (GET, POST, etc.).

  Use jsonify() to return JSON responses.

  Use request.get_json() to parse incoming JSON data in POST.

  Return appropriate HTTP status codes (200 for success, 201 for created, 404 for not found).

15.What is the purpose of Flask's jsonify() function?

  Ans: Flask’s jsonify() function is used to convert Python data (like dictionaries or lists) into a JSON-formatted HTTP response.

  Purpose of jsonify():

*   Automatically serializes Python objects to JSON.
*   Sets the Content-Type header to application/json.
*   Returns a Flask Response object ready to send to the client.
*   Handles things like proper encoding and response formatting.

16.Explain Flask’s url_for() function.

  Ans: Flask’s url_for() function is used to build URLs dynamically for your application’s routes based on the function names (endpoint names).

  Purpose of url_for():

*   Generates a URL for a given view function.
*   Helps avoid hardcoding URLs, making your app more flexible.
*   Automatically handles URL building with parameters.
*   Works well with URL changes (you only change the route once, not everywhere it’s used).

17.How does Flask handle static files (CSS, JavaScript, etc.)?

   Ans: Flask handles static files (like CSS, JavaScript, images) through a special folder named static in your project directory.

   How Flask Serves Static Files:

*   By default, Flask looks for a folder called static in your project root.
*   Files inside static are accessible via the URL path /static/<filename>.
*   For example, a CSS file static/style.css is served at http://yourdomain.com/static/style.css.

18.What is an API specification, and how does it help in building a Flask API?\

  Ans: An API specification is a formal, structured document that defines how an API should behave — including its endpoints, request/response formats, data types, authentication, and error handling.

  How API Specification Helps in Building a Flask API:

*   Clear Contract: Defines exactly what the API expects and returns, reducing misunderstandings between frontend and backend.

*   Standardization: Helps keep APIs consistent and predictable.
*   Faster Development: Provides a blueprint to implement routes, inputs, and outputs in Flask.
*   Better Documentation: Serves as up-to-date API docs for developers.

*   Testing & Validation: Enables automatic testing and validation tools to check API correctness.

19.What are HTTP status codes, and why are they important in a Flask API?

  Ans: HTTP status codes are standardized three-digit numbers sent by the server in response to a client’s HTTP request. They indicate whether the request was successful, failed, or needs further action.

  Why Are HTTP Status Codes Important in a Flask API-

*   Communicate Result: Tell the client if the request succeeded or failed (e.g., 200 OK, 404 Not Found).
*    Guide Client Behavior: Help clients decide what to do next (retry, show error, redirect).
*   Standardization: Provide a common language understood by browsers, apps, and tools.
*   Debugging & Monitoring:	Makes it easier to identify issues by looking at response codes.

20.How do you handle POST requests in Flask?

  Ans: Handling POST requests in Flask involves defining a route that accepts POST method and accessing the data sent by the client.

*   Use methods=['POST'] in route decorator.
*   Use request.get_json() or request.form to read POSTed data.
*   Return appropriate response (usually JSON with status code like 201).

21.How would you secure a Flask API?

  Ans: Securing a Flask API involves multiple layers of protection to ensure only authorized users can access your endpoints, data is safe, and the app is resilient to common attacks.

*   Authenticate & authorize users properly.
*   Use HTTPS.
*   Validate inputs.List item
*   Limit request rates.
*   Handle errors safely.
*   Control cross-origin access.

22.What is the significance of the Flask-RESTful extension?

  Ans: Flask-RESTful is an extension that simplifies building RESTful APIs with Flask by providing useful abstractions and tools tailored for API development.It streamlines REST API development by organizing endpoints as resources, andling input parsing, and managing responses — making Flask APIs easier and faster to build and maintain.

23. What is the role of Flask’s session object?

    Ans: Flask’s session object is used to store data specific to a user’s session between requests. It allows you to keep user information (like login status or preferences) across multiple HTTP requests.

    Key Points About session:

*   Stores data on the server-side but sends a session ID cookie to the client.
*   Uses signed cookies to ensure data integrity (client can’t tamper with the session data).
*   Data persists as long as the session lasts (usually until the browser is closed or session expires).

# Practical

1. How do you create a basic Flask application?

In [27]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello_world():
    return 'Hello World!!'

if __name__ == '__main__':
    app.run(debug = True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


2.  How do you serve static files like images or CSS in Flask?

In [10]:
import os

os.makedirs('static', exist_ok=True)

with open('static/style.css', 'w') as f:
    f.write('body {background-color: lightblue;}')

from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return '''
    <html>
    <head>
        <link rel="stylesheet" href="{}">
    </head>
    <body>
        <h1>Hello, styled Flask!</h1>
    </body>
    </html>
    '''.format(url_for('static', filename='style.css'))

if __name__ == '__main__':
    app.run()

 * Serving Flask app '__main__'
 * Debug mode: off


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m


3.  How do you define different routes with different HTTP methods in Flask?

In [11]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/')
def home():
    return "This is a GET request"

@app.route('/submit', methods=['POST'])
def submit():
    data = request.form.get('data')
    return f"Received POST data: {data}"


@app.route('/both', methods=['GET', 'POST'])
def both_methods():
    if request.method == 'POST':
        return "POST request received"
    else:
        return "GET request received"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


4. How do you render HTML templates in Flask?

In [15]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
      app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


5.  How can you generate URLs for routes in Flask using url_for?

In [16]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Home Page"

@app.route('/user/<username>')
def profile(username):
    return f"User: {username}"

@app.route('/links')
def links():
    # Generate URLs dynamically
    home_url = url_for('home')
    profile_url = url_for('profile', username='alice')
    return f'Home URL: {home_url} <br> Profile URL: {profile_url}'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


6. How do you handle forms in Flask?

In [17]:
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/form', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        name = request.form['name']
        email = request.form['email']
        return f"Received: Name={name}, Email={email}"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


7.  How can you validate form data in Flask?

In [19]:
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/form', methods=['GET', 'POST'])
def form():
    error = None
    if request.method == 'POST':
        name = request.form.get('name')
        email = request.form.get('email')

        if not name or not email:
            error = "Both name and email are required!"
        else:
            return f"Form submitted: Name = {name}, Email = {email}"

    return render_template('form.html', error=error)

8. How do you manage sessions in Flask?

In [20]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required to use sessions securely

@app.route('/')
def index():
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in.'

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']
        return redirect(url_for('index'))
    return '''
        <form method="post">
            <input type="text" name="username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/logout')
def logout():
    session.pop('username', None)
    return redirect(url_for('index'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


9.  How do you redirect to a different route in Flask?

In [21]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/login')
def login():
    return 'Login Page'

@app.route('/go-to-login')
def go_to_login():
    return redirect(url_for('login'))  # Redirects to /login

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


10.  How do you handle errors in Flask (e.g., 404)?

In [23]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return 'Welcome to the homepage!'

# Handle 404 errors (Page Not Found)
@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404


11.  How do you structure a Flask app using Blueprints?

In [29]:
from flask import Blueprint, render_template

auth_bp = Blueprint('auth', __name__, url_prefix='/auth')

@auth_bp.route('/login')
def login():
    return render_template('login.html')
from flask import Flask
from auth.routes import auth_bp  # Import your blueprint

app = Flask(__name__)
app.secret_key = 'your_secret'

# Register blueprint
app.register_blueprint(auth_bp)

@app.route('/')
def home():
    return "Home Page"

ModuleNotFoundError: No module named 'auth'

12.  How do you define a custom Jinja filter in Flask?

In [30]:
def reverse_string(s):
    return s[::-1]
from flask import Flask

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_string(s):
    return s[::-1]
app.jinja_env.filters['reverse'] = reverse_string

13. How can you redirect with query parameters in Flask?

In [31]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    return redirect(url_for('greet', name='Alice', lang='en'))

@app.route('/greet')
def greet():
    name = request.args.get('name')
    lang = request.args.get('lang')
    return f"Hello {name}, language: {lang}"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


14. How do you return JSON responses in Flask?

In [32]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    return jsonify({
        'name': 'Alice',
        'age': 30,
        'status': 'active'
    })

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


15. How do you capture URL parameters in Flask?

In [34]:
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f'Hello, {username}!'
