#Restful Api & Flask

1. What is a RESTful API?
- A RESTful API (Representational State Transfer API) is an architectural style for building web services that use HTTP methods to access and manipulate data. It allows different systems to communicate over the web using a consistent and stateless approach. RESTful APIs are easy to use, scalable, and platform-independent, making them ideal for modern web and mobile applications.

2. Explain the concept of API specification.
- An API specification is a detailed document or format that defines how an API works. It includes information about available endpoints, request and response formats, supported methods (like GET, POST), data types, authentication methods, and error codes. It serves as a contract between the API provider and the consumers, helping developers understand how to use the API correctly without accessing the codebase.

3. What is Flask, and why is it popular for building APIs?
- Flask is a lightweight and flexible Python web framework that is commonly used to build web applications and RESTful APIs. It is popular because it is easy to learn, has a simple syntax, and allows developers to create APIs quickly with minimal code. Flask supports extensions like Flask-RESTful and Flask-SQLAlchemy, which make development more efficient and scalable.

4. What is routing in Flask?
- Routing in Flask refers to mapping URLs (web addresses) to specific functions in your application. These functions are called view functions and are executed when a matching URL is requested. Using @app.route(), you can define the URL path and the associated function, allowing your app to handle different requests and serve the appropriate responses.

5. How do you create a simple Flask application?
- To create a simple Flask app, you start by importing Flask, creating an app instance, and defining routes using decorators. Then, you run the app using app.run(). A minimal example includes defining a route like '/' that returns a message, such as “Hello, World!”. This helps in getting started quickly and expanding later as the app grows.

6. What are HTTP methods used in RESTful APIs?
- Common HTTP methods used in RESTful APIs include GET (to retrieve data), POST (to send data), PUT (to update existing data), DELETE (to remove data), and PATCH (to partially update data). Each method has a specific role and is used according to the type of operation you want to perform on the resource.

7. What is the purpose of the @app.route() decorator in Flask?
- The @app.route() decorator in Flask is used to define the URL path that a view function will handle. It connects a specific URL to a Python function so that when that URL is accessed, the function gets executed and returns a response. This is the foundation of routing in Flask applications.

8. What is the difference between GET and POST HTTP methods?
- GET is used to request and retrieve data from the server without making any changes. The data is sent via the URL, and it is considered safe and idempotent. POST, on the other hand, is used to send data to the server to create or update a resource. Data is sent in the body of the request, making it more secure for sensitive information.

9. How do you handle errors in Flask APIs?
- In Flask, errors can be handled using try-except blocks, custom error handlers, or by returning specific HTTP status codes with error messages. You can define handlers for specific exceptions or status codes using @app.errorhandler() and return custom JSON responses, making your API more user-friendly and informative.

10. How do you connect Flask to a SQL database?
- Flask can be connected to a SQL database using extensions like Flask-SQLAlchemy. You configure the database URI in your Flask app settings and then initialize the SQLAlchemy object. This allows you to define models, interact with the database using Python code, and perform CRUD operations easily.

11. What is the role of Flask-SQLAlchemy?
- Flask-SQLAlchemy is an extension that integrates SQLAlchemy, a powerful ORM (Object Relational Mapper), with Flask. It simplifies database interactions by allowing developers to work with Python classes and objects instead of writing raw SQL queries. It handles session management, table creation, and querying efficiently.

12. What are Flask blueprints, and how are they useful?
- Flask Blueprints are a way to organize your application into smaller, modular components. Each blueprint can represent a part of your app (like user management, admin, or API). This makes the code more maintainable, reusable, and easier to manage as your project grows in complexity.

13. What is the purpose of Flask's request object?
- Flask’s request object provides access to incoming request data, such as form inputs, query parameters, JSON payloads, and headers. It is essential for reading data sent by the client in methods like POST or GET and allows you to interact with the request dynamically in your view functions.

14. How do you create a RESTful API endpoint using Flask?
- To create a RESTful API endpoint in Flask, you define a route using @app.route() and write a function that handles the request. You can specify the HTTP methods it supports (GET, POST, etc.) and return data, usually in JSON format using Flask's jsonify() function.

15. What is the purpose of Flask's jsonify() function?
- jsonify() is used to convert Python data types (like dictionaries and lists) into a JSON response. It automatically sets the correct content-type (application/json) for the response, which is important for RESTful APIs, and makes sure the client can understand the response format.

16. Explain Flask’s url_for() function.
- Flask’s url_for() function is used to dynamically build URLs for a given function name instead of hardcoding paths. It helps in avoiding broken links when routes change and makes the application more flexible and easier to maintain, especially when redirecting or linking to other pages.

17. How does Flask handle static files (CSS, JavaScript, etc.)?
- Flask serves static files from the static folder by default. You can link to these files in your templates using url_for('static', filename='style.css'). Flask automatically handles requests to static resources, making it easy to include CSS, JavaScript, and images in your app.

18. What is an API specification, and how does it help in building a Flask API?
- An API specification defines the structure, endpoints, request methods, and data formats of an API. It acts as a blueprint for development and communication between teams. For Flask APIs, it helps ensure consistency, supports automatic documentation generation (e.g., using Swagger), and speeds up integration and testing.

19. What are HTTP status codes, and why are they important in a Flask API?
- HTTP status codes are three-digit numbers returned by the server to indicate the result of a client’s request. For example, 200 means success, 404 means not found, and 500 indicates a server error. In Flask APIs, sending proper status codes helps clients understand the outcome of their request and handle errors gracefully.

20. How do you handle POST requests in Flask?
- In Flask, handling POST requests involves defining a route that allows the POST method using the methods parameter in the @app.route() decorator. Within the associated view function, you use the request object from flask to access the data sent by the client. This can be form data (request.form), JSON (request.get_json()), or query parameters. After processing the data—such as inserting it into a database or performing some logic—you typically return a response using jsonify() along with an appropriate HTTP status code like 200 (OK) or 201 (Created). It's important to validate and sanitize user inputs to maintain the integrity and security of the application.

21. How would you secure a Flask API?
- Securing a Flask API involves several best practices to protect against unauthorized access, data breaches, and common web vulnerabilities. Authentication methods like API keys, OAuth, or JWT (JSON Web Tokens) are commonly implemented to verify user identity. HTTPS should be enforced to encrypt data in transit. Input validation and sanitization are critical to prevent injection attacks. Rate limiting can be added to prevent abuse and denial-of-service (DoS) attacks. You should also enable Cross-Origin Resource Sharing (CORS) policies carefully to control which domains can access your API. Additionally, Flask extensions like Flask-JWT-Extended or Flask-Login can help manage authentication and sessions securely.

22. What is the significance of the Flask-RESTful extension?
- Flask-RESTful is a powerful Flask extension that simplifies the process of building REST APIs by providing a more structured and object-oriented approach. It allows you to define resources as Python classes with methods that correspond to HTTP verbs (GET, POST, PUT, DELETE, etc.). This leads to cleaner and more maintainable code, especially for large applications. It also offers built-in support for request parsing, input validation, error handling, and automatic HTTP status code management. Flask-RESTful promotes reusable logic and helps developers build robust and scalable APIs with minimal boilerplate code.

23. What is the role of Flask’s session object?
- The session object in Flask is used to store data that you want to persist across multiple requests for a particular user, such as login status, user preferences, or shopping cart contents. It acts like a temporary memory storage that lasts for the duration of the user's session. Flask's session data is stored client-side in a secure cookie that is cryptographically signed using the app’s secret key to prevent tampering. This makes session management both lightweight and secure. Since the session is stored as a dictionary, you can easily set and retrieve values using standard key-value syntax, making it simple to maintain user-specific data between requests.

In [None]:
# 1. How do you create a basic Flask application?


from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

# Output: Hello, Flask!

In [None]:
# 2. How do you serve static files like images or CSS in Flask?


# Place your CSS/images in a folder named 'static'
# Example usage in HTML template:
# <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">

In [None]:
# 3. How do you define different routes with different HTTP methods in Flask?


from flask import Flask, request
app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return 'Posted'
    return 'Got it'

# Output: Posted or Got it

In [None]:
# 4. How do you render HTML templates in Flask?


from flask import Flask, render_template
app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

# Output: Contents of index.html

In [None]:
# 5. How can you generate URLs for routes in Flask using url_for?


from flask import Flask, url_for
app = Flask(__name__)

@app.route('/user/<name>')
def user(name):
    return f'User {name}'

@app.route('/')
def home():
    return url_for('user', name='Shubham')

# Output: /user/Shubham

In [None]:
# 6. How do you handle forms in Flask?


from flask import Flask, request
app = Flask(__name__)

@app.route('/form', methods=['POST'])
def form():
    name = request.form['name']
    return f'Hello {name}'

# Output: Hello <name>

In [None]:
7. How can you validate form data in Flask?


from flask import Flask, request
app = Flask(__name__)

@app.route('/validate', methods=['POST'])
def validate():
    name = request.form.get('name')
    if name:
        return 'Valid'
    return 'Invalid'

# Output: Valid or Invalid

In [None]:
# 8. How do you manage sessions in Flask?


from flask import Flask, session
app = Flask(__name__)
app.secret_key = 'secret'

@app.route('/')
def set_session():
    session['user'] = 'Shubham'
    return 'Session set'

@app.route('/get')
def get_session():
    return session.get('user', 'Not Found')

# Output: Session set or Shubham

In [None]:
# 9. How do you redirect to a different route in Flask?


from flask import Flask, redirect, url_for
app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('success'))

@app.route('/success')
def success():
    return 'Redirected!'

# Output: Redirected!

In [None]:
# 10. How do you handle errors in Flask (e.g., 404)?


from flask import Flask
app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(e):
    return '404 Error', 404

# Output: 404 Error

In [None]:
11. How do you structure a Flask app using Blueprints?


# main.py
from flask import Flask
from my_blueprint import my_bp

app = Flask(__name__)
app.register_blueprint(my_bp)

# my_blueprint.py
from flask import Blueprint

my_bp = Blueprint('my_bp', __name__)

@my_bp.route('/')
def index():
    return 'Blueprint Works'

# Output: Blueprint Works

In [None]:
12. How do you define a custom Jinja filter in Flask?


from flask import Flask, render_template_string
app = Flask(__name__)

@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

@app.route('/')
def index():
    return render_template_string("{{ 'hello' | reverse }}")

# Output: olleh

In [None]:
13. How can you redirect with query parameters in Flask?


from flask import Flask, redirect, url_for
app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('hello', name='Shubham'))

@app.route('/hello')
def hello():
    return 'Hello!'

# Output: Hello!

In [None]:
14. How do you return JSON responses in Flask?


from flask import Flask, jsonify
app = Flask(__name__)

@app.route('/data')
def data():
    return jsonify({'name': 'Shubham', 'age': 25})

# Output: {"name": "Shubham", "age": 25}


In [None]:
15. How do you capture URL parameters in Flask?


from flask import Flask
app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f'Hello {username}'

# Output: Hello Shubham (if /user/Shubham is visited)