#Theory Questions for Restful API & Flask


**1.What is a RESTful API?**

Ans:-A RESTful API (Representational State Transfer Application Programming Interface) is a type of web API that follows the principles of REST architecture, which is a set of guidelines for building scalable and stateless web services.

Here‚Äôs a breakdown of what makes an API "RESTful":

üîß Key Concepts of RESTful APIs
Stateless:
Each request from a client to the server must contain all the information needed to understand and process the request. The server does not store any client context between requests.

Resource-Based:
REST uses resources, typically represented as URLs. For example, /users, /products/123, or /orders/456.

HTTP Methods:
RESTful APIs use standard HTTP methods to perform actions on resources:

GET: Retrieve data

POST: Create a new resource

PUT: Update an existing resource

PATCH: Partially update a resource

DELETE: Remove a resource

Representation:
Resources are usually represented in JSON or XML formats. JSON is more common in modern REST APIs.

Stateless Communication:
Each call to a RESTful API should be independent. All the data needed must be included in the request.

Uniform Interface:
REST enforces a consistent interface for clients to interact with, making APIs predictable and easier to use.

**2. Explain the concept of API specification**


Ans:-An API specification is a formal document that defines how software components should interact through an Application Programming Interface (API). It outlines:

Endpoints (URLs)

Methods (GET, POST, etc.)

Request/response formats (data types, structure, parameters)

Authentication rules

Error codes and messages

**3.What is Flask, and why is it popular for building APIs?**

Ans:-Flask is a lightweight, Python-based web framework used for building web applications and APIs.

Why it's popular for APIs (short version):
Simple and minimal ‚Äì Easy to set up and understand.

Flexible ‚Äì Gives developers full control over components.

Extensible ‚Äì Supports many extensions for adding features.

Great for small to medium projects ‚Äì Ideal for quick development and prototyping.

Strong community ‚Äì Lots of resources and support.

It‚Äôs often chosen for building RESTful APIs due to its clarity and ease of use.






**4.What is routing in Flask?**

Ans:-In Flask, routing refers to mapping URLs (web addresses) to specific functions in your Python code. These functions are called view functions and they define what should happen when a user visits a particular URL.

Example:
python
Copy
Edit
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the homepage!"

**5.How do you create a simple Flask application?**

Ans:-Here's a quick and simple way to create a basic Flask application:

üîß 1. Install Flask
bash
Copy
Edit
pip install Flask
üìÑ 2. Create the App File (app.py)
python
Copy
Edit
from flask import Flask

app = Flask(__name__)

@app.route("/")
def home():
    return "Hello, Flask!"

if __name__ == "__main__":
    app.run(debug=True)
‚ñ∂Ô∏è 3. Run the App
bash
Copy
Edit
python app.py
Then open your browser and go to http://127.0.0.1:5000/

**6.What are HTTP methods used in RESTful APIs?**

Ans:-Here are the main HTTP methods used in RESTful APIs, in short:

GET ‚Äì Retrieve data from the server (read-only).

POST ‚Äì Send data to the server to create a new resource.

PUT ‚Äì Update an existing resource completely.

PATCH ‚Äì Partially update an existing resource.

DELETE ‚Äì Remove a resource from the server.

HEAD ‚Äì Same as GET but returns only headers (no body).

OPTIONS ‚Äì Describes the communication options for the target resource.

These methods align with CRUD operations:

Create ‚Üí POST

Read ‚Üí GET

Update ‚Üí PUT/PATCH

Delete ‚Üí DELETE

**7. What is the purpose of the @app.route() decorator in Flask?**

Ans:-The @app.route() decorator in Flask is used to map a URL to a specific function. It tells Flask what function to run when a user accesses a particular route (URL) on the web server.

**8.What is the difference between GET and POST HTTP methods?**

Ans:-Here‚Äôs a quick difference between GET and POST HTTP methods:

GET:

Requests data from a server.

Sends data via URL (query parameters).

Data is visible in the URL.

Used for retrieving data without side effects.

Limited data length.

POST:

Submits data to be processed by the server.

Sends data in the request body.

Data is not visible in the URL.

Used for creating/updating resources or actions with side effects.

No significant size limits for data.

**9.How do you handle errors in Flask APIs?**

Ans:-In Flask APIs, errors are typically handled by:

Using try-except blocks within your route functions to catch exceptions.

Defining error handlers with @app.errorhandler() for specific HTTP error codes or exceptions.

Returning JSON responses with appropriate status codes to inform the client.

Example:

python
Copy
Edit
from flask import Flask, jsonify

app = Flask(__name__)

@app.errorhandler(404)
def not_found(error):
    return jsonify({"error": "Resource not found"}), 404

@app.route('/divide')
def divide():
    try:
        result = 10 / 0
        return jsonify({"result": result})
    except ZeroDivisionError:
        return jsonify({"error": "Cannot divide by zero"}), 400

if __name__ == '__main__':
    app.run()

**10.How do you connect Flask to a SQL database?**

Ans:-Here‚Äôs a quick way to connect Flask to a SQL database (e.g., SQLite or MySQL) using SQLAlchemy:

Install dependencies:

bash
Copy
Edit
pip install flask sqlalchemy flask_sqlalchemy
Basic Flask app with SQLAlchemy:

python
Copy
Edit
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)

# Configure the database URI
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///mydatabase.db'  # For SQLite
# For MySQL, it could be:
# app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql+pymysql://user:password@localhost/dbname'

db = SQLAlchemy(app)

# Define a model
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(80), nullable=False)

@app.route('/')
def index():
    return 'Hello, Flask with SQL!'

if __name__ == '__main__':
    db.create_all()  # Create tables
    app.run(debug=True)
Summary:

Set SQLALCHEMY_DATABASE_URI in app config.

Initialize SQLAlchemy with the app.

Define your models as classes.

Call db.create_all() to create tables.

**11.What is the role of Flask-SQLAlchemy?**

Ans:-Flask-SQLAlchemy is an extension for Flask that simplifies using SQL databases by providing an easy-to-use ORM (Object Relational Mapper). It helps you interact with the database using Python classes and objects instead of writing raw SQL queries.





**12. What are Flask blueprints, and how are they useful ?**

Ans:-Flask blueprints are a way to organize a Flask application into modular, reusable components. They let you group routes, templates, and static files by functionality (like user auth, blog, admin) instead of putting everything in one big app file.

Usefulness:

Helps keep code clean and manageable

Enables easy code reuse and sharing across projects

Supports scalable app development by dividing features into separate modules

**13.What is the purpose of Flask's request object ?**

Ans:-Flask's request object is used to access incoming HTTP request data‚Äîlike form inputs, query parameters, headers, and cookies‚Äîso your app can handle and respond to what the client sends.

**14.How do you create a RESTful API endpoint using Flask ?**

Ans:-Here‚Äôs a quick way to create a RESTful API endpoint using Flask:

python
Copy
Edit
from flask import Flask, jsonify, request

app = Flask(__name__)

@app.route('/api/items', methods=['GET', 'POST'])
def items():
    if request.method == 'GET':
        # Return some data
        return jsonify({"items": ["item1", "item2"]})
    elif request.method == 'POST':
        data = request.get_json()
        # Process data and create item (example)
        return jsonify({"message": "Item created", "item": data}), 201

if __name__ == '__main__':
    app.run(debug=True)
@app.route defines the endpoint URL and allowed HTTP methods.

jsonify sends JSON responses.

request.get_json() parses incoming JSON data.

**15.What is the purpose of Flask's jsonify() function?**

Ans:-Flask's jsonify() function is used to convert Python data (like dictionaries or lists) into a JSON-formatted HTTP response, setting the correct Content-Type header (application/json) automatically.





**16.Explain Flask‚Äôs url_for() function**

Ans:-Flask‚Äôs url_for() function is used to generate a URL to a specific function (view) in your Flask app based on its endpoint name. Instead of hardcoding URLs, url_for() dynamically builds the URL, making your code more maintainable and flexible‚Äîespecially when routes change. It also allows passing arguments for URL variables.

Example:

python
Copy
Edit
url_for('profile', username='john')
This returns the URL for the profile view with the username parameter set to 'john'

**17. How does Flask handle static files (CSS, JavaScript, etc.)?**

Ans:-Flask serves static files (like CSS, JavaScript, images) from a folder named static by default. When you place your static files inside the static directory in your project, you can reference them in your HTML using the /static/ URL path.

For example:

Put CSS in static/style.css

Access it in HTML as <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">

Flask automatically routes requests starting with /static/ to serve files from the static folder.



**18.What is an API specification, and how does it help in building a Flask API?**

Ans:-An API specification is a detailed document or format that defines how an API works‚Äîits endpoints, request/response formats, parameters, authentication, and error handling.

How it helps in building a Flask API:

Clear contract: Guides you on what routes to create and how they should behave.

Consistency: Ensures your API responses and requests follow a standard format.

Faster development: Helps avoid guesswork, making implementation smoother.

Documentation: Serves as a reference for both developers and users.

**19.What are HTTP status codes, and why are they important in a Flask API?**

Ans:-HTTP status codes are standardized codes sent by a server to indicate the result of a client‚Äôs request. They tell the client whether the request was successful, resulted in an error, or needs further action.

In a Flask API, they‚Äôre important because they:

Communicate the outcome of API calls clearly to clients.

Help clients handle responses appropriately (e.g., retry on failure, show errors).

Make debugging and monitoring easier by indicating the type of response.

Examples:

200 OK ‚Äî request succeeded

404 Not Found ‚Äî resource doesn‚Äôt exist

500 Internal Server Error ‚Äî server issue

They ensure your API is predictable and user-friendly.




**20.How do you handle POST requests in Flask?**

Ans:-In Flask, you handle POST requests by specifying the methods parameter in the route decorator and then accessing the form or JSON data inside the view function. Here‚Äôs a short example:

python
Copy
Edit
from flask import Flask, request

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def submit():
    data = request.form  # for form data
    # or
    # data = request.get_json()  # for JSON data
    return 'Received POST request'

if __name__ == '__main__':
    app.run()

**21.How would you secure a Flask API ?**

Ans:-To secure a Flask API briefly, you can:

Use HTTPS ‚Äî Encrypt traffic with SSL/TLS.

Authenticate requests ‚Äî Implement token-based auth (e.g., JWT).

Validate inputs ‚Äî Prevent injection attacks by validating and sanitizing data.

Rate limit ‚Äî Prevent abuse by limiting request rates.

Use secure headers ‚Äî Set headers like Content-Security-Policy and X-Frame-Options.

Enable CORS carefully ‚Äî Restrict allowed origins.

Keep dependencies updated ‚Äî Patch known vulnerabilities

**22. What is the significance of the Flask-RESTful extension?**

Ans:-lask-RESTful is an extension for Flask that simplifies building REST APIs by providing tools and classes to quickly create RESTful routes, handle HTTP methods, and structure responses cleanly. It helps organize API code and reduce boilerplate, making REST API development faster and more maintainable.

**23.What is the role of Flask‚Äôs session object?**

Ans:-Flask‚Äôs session object is used to store and manage user-specific data (like login status or preferences) across multiple requests by saving it securely in cookies. It helps maintain state in a stateless HTTP environment.

#RESTful API & Flask Practical Questions


**1. How do you create a basic Flask application ?**

In [None]:
pip install Flask
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)


**2. How do you serve static files like images or CSS in Flask?**

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)


#HtMl Code executed backend

"""
<!DOCTYPE html>
<html lang="en">
<head>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
    <title>Static Files Example</title>
</head>
<body>
    <h1>Welcome!</h1>
    <img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
</body>
</html>"""


**3. How do you define different routes with different HTTP methods in Flask?**

In [None]:
from flask import Flask, request

app = Flask(__name__)

# Route that only accepts GET requests (default)
@app.route('/hello', methods=['GET'])
def hello_get():
    return "Hello, GET!"

# Route that only accepts POST requests
@app.route('/hello', methods=['POST'])
def hello_post():
    data = request.form.get('data')
    return f"Hello, POST! You sent: {data}"

# Route that accepts multiple methods
@app.route('/items', methods=['GET', 'POST'])
def items():
    if request.method == 'GET':
        return "Getting items"
    elif request.method == 'POST':
        return "Creating an item"

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


**4.How do you render HTML templates in Flask?**

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

#index.html

""" <!DOCTYPE html>
<html>
<head>
    <title>My Flask App</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>
</body>
</html>
"""
@app.route('/user/<name>')
def user(name):
    return render_template('user.html', username=name)

#user.html
"""
<!DOCTYPE html>
<html>
<head>
    <title>User Page</title>
</head>
<body>
    <h1>Hello, {{ username }}!</h1>
</body>
</html>
"""

**5.How can you generate URLs for routes in Flask using url_for?**

In [None]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home page'

@app.route('/user/<username>')
def profile(username):
    return f'User: {username}'
with app.test_request_context():
    print(url_for('home'))
    # Output: '/'

    print(url_for('profile', username='alice'))
    # Output: '/user/alice'


**6. How do you handle forms in Flask?**

In [None]:
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        # Access form data
        name = request.form.get('name')
        email = request.form.get('email')

        # Process the data (e.g., save to database, validate, etc.)
        return f"Received name: {name}, email: {email}"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)

#form.html code
"""<form method="POST" action="/submit">
  <label for="name">Name:</label>
  <input type="text" id="name" name="name">

  <label for="email">Email:</label>
  <input type="email" id="email" name="email">

  <input type="submit" value="Submit">
</form>"""


**7.How can you validate form data in Flask?**

In [None]:
from flask import Flask, request, render_template_string

app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        username = request.form.get('username')
        email = request.form.get('email')

        errors = []

        if not username or len(username) < 3:
            errors.append("Username must be at least 3 characters.")
        if not email or '@' not in email:
            errors.append("Invalid email address.")

        if errors:
            return render_template_string('<p>{{ errors }}</p>', errors=errors)

        return "Form submitted successfully!"

    return '''
        <form method="post">
            Username: <input name="username"><br>
            Email: <input name="email"><br>
            <input type="submit">
        </form>
    '''

if __name__ == '__main__':
    app.run(debug=True)


**8.How do you manage sessions in Flask?**

In [None]:
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key_here'  # Keep this secret and random!
"""Using the session object
You can treat session like a Python dictionary."""
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'supersecretkey'

@app.route('/login', methods=['POST'])
def login():
    username = request.form['username']
    # Authenticate user here...
    session['username'] = username  # Save user info in session
    return redirect(url_for('profile'))

@app.route('/profile')
def profile():
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in'

@app.route('/logout')
def logout():
    session.pop('username', None)  # Remove user info from session
    return 'You have been logged out'

"""Using Flask-Session for server-side session management (optional)"""

from flask import Flask, session
from flask_session import Session

app = Flask(__name__)
app.config['SESSION_TYPE'] = 'filesystem'  # Could be 'redis', 'memcached', etc.
app.secret_key = 'supersecretkey'

Session(app)  # Initialize the session extension

@app.route('/')
def index():
    session['key'] = 'value'
    return 'Session set!'


**9. How do you redirect to a different route in Flask?**

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/go-to-about')
def go_to_about():
    # Redirects to the 'about' route
    return redirect(url_for('about'))

@app.route('/about')
def about():
    return 'About Page'

if __name__ == '__main__':
    app.run(debug=True)


**10.How do you handle errors in Flask (e.g., 404)?**

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(error):
    # You can return a custom HTML template or a simple string message
    return render_template('404.html'), 404

@app.route('/')
def home():
    return "Welcome to the homepage!"

if __name__ == "__main__":
    app.run(debug=True)
@app.errorhandler(500)
def internal_error(error):
    return render_template('500.html'), 500


**11. How do you structure a Flask app using Blueprints?**

In [None]:
#1. app.py ‚Äî Main app and registering blueprints
from flask import Flask
from blueprints.auth import auth_bp
from blueprints.blog import blog_bp

def create_app():
    app = Flask(__name__)

    # Config here if needed
    app.config['SECRET_KEY'] = 'your_secret_key'

    # Register blueprints
    app.register_blueprint(auth_bp, url_prefix='/auth')
    app.register_blueprint(blog_bp, url_prefix='/blog')

    return app

if __name__ == '__main__':
    app = create_app()
    app.run(debug=True)

#2. blueprints/auth/__init__.py
from flask import Blueprint

auth_bp = Blueprint('auth', __name__, template_folder='templates')

from . import routes

#3. blueprints/auth/routes.py
from flask import render_template, redirect, url_for
from . import auth_bp

@auth_bp.route('/login')
def login():
    return render_template('auth/login.html')

#4. blueprints/blog/__init__.py
from flask import Blueprint

blog_bp = Blueprint('blog', __name__, template_folder='templates')

from . import routes

#5. blueprints/blog/routes.py
from flask import render_template
from . import blog_bp

@blog_bp.route('/post/<int:id>')
def post(id):
    return render_template('blog/post.html', post_id=id)


**12.How do you define a custom Jinja filter in Flask?**

In [None]:
#Method 1: Using the decorator
from flask import Flask

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

# Now you can use {{ some_string|reverse }} in your templates

#Method 2: Adding the filter directly to jinja_env.filters
def reverse_filter(s):
    return s[::-1]

app.jinja_env.filters['reverse'] = reverse_filter



**13.How can you redirect with query parameters in Flask?**

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def index():
    # Redirect to /search with query parameters
    return redirect(url_for('search', q='flask', page=2))

@app.route('/search')
def search():
    q = request.args.get('q')
    page = request.args.get('page')
    return f"Search query: {q}, Page: {page}"

if __name__ == '__main__':
    app.run(debug=True)


**14. How do you return JSON responses in Flask?**

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    data = {
        "name": "Alice",
        "age": 30,
        "city": "Wonderland"
    }
    return jsonify(data)

if __name__ == '__main__':
    app.run(debug=True)


**15.How do you capture URL parameters in Flask?**

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user_profile(username):
    return f'User: {username}'

from flask import Flask, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q')
    return f'Searching for: {query}'
