# Biblioteka Flask

Strony internetowe, aplikacje i API.

[Dokumentacja](https://flask.palletsprojects.com/en/2.1.x/)


Biblioteka Flask zajmuje się tworzeniem "aplikacji" internetowych, czyli takich które oglądasz w przeglądarce, albo takich do których odnosisz się jedynie aby dokonać przesyłu danych.

Level 1

Level 2

**Minimalny przykład aplikacji Flask ze stroną www** (najpierw uruchom komórkę z `!pip3` aby pobrać bibliotekę Flask).

In [None]:
!pip3 install Flask

In [20]:
from flask import Flask

app = Flask(__name__)

@app.route("/")
def index():
    return "<p>k</p>"

if __name__ == '__main__':
    app.run()

 * Serving Flask app '__main__' (lazy loading)
 * Environment: production
[2m   Use a production WSGI server instead.[0m
 * Debug mode: off


 * Running on http://127.0.0.1:5000 (Press CTRL+C to quit)


## Level 1

In [11]:
from flask import Flask

#### Flask app

**`Flask()`** - Tworzy instancję klasy Flask zwaną app. `__name__` wskazuje na bierzący moduł Flask.

In [12]:
app = Flask(__name__)

#### reprezentacja strony www - `@app.route("/strona")`

Minimaply przykład strony www o treści `k`. Kojarzy stronę `/strona` z treścią `return` - którym jest zwykle plik `HTML` ze stroną www.

In [13]:
@app.route("/strona")
def index():
    return "<p>k</p>"

#### Uruchomienie aplikacji Flask

`app.run()` uruchamia aplikację i umożliwia otworzenie 

In [19]:
if __name__ == '__main__':
    app.run()

 * Serving Flask app '__main__' (lazy loading)
 * Environment: production
[2m   Use a production WSGI server instead.[0m
 * Debug mode: off


 * Running on http://127.0.0.1:5000 (Press CTRL+C to quit)


In [None]:


from markupsafe import escape

@app.route('/user/<username>')
def show_user_profile(username):
    # show the user profile for that user
    return f'User {escape(username)}'

@app.route('/post/<int:post_id>')
def show_post(post_id):
    # show the post with the given id, the id is an integer
    return f'Post {post_id}'

@app.route('/path/<path:subpath>')
def show_subpath(subpath):
    # show the subpath after /path/
    return f'Subpath {escape(subpath)}'



In [None]:
redirect(url_for('blog.index'))


In [None]:
from flask import url_for

print(url_for('index'))
print(url_for('login'))
print(url_for('profile', username='John Doe'))
with app.test_request_context():
    print(url_for('index'))
    print(url_for('login'))
    print(url_for('login', next='/'))
    print(url_for('profile', username='John Doe'))

In [None]:
from flask import request

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        return do_the_login()
    else:
        return show_the_login_form()

In [None]:
url_for('static', filename='style.css')

In [None]:
from flask import render_template

@app.route('/hello/')
@app.route('/hello/<name>')
def hello(name=None):
    return render_template('hello.html', name=name)


In [None]:
from flask import request

with app.test_request_context('/hello', method='POST'):
    # now you can do something with the request until the
    # end of the with block, such as basic assertions:
    assert request.path == '/hello'
    assert request.method == 'POST'

In [None]:
searchword = request.args.get('key', '')

In [None]:
from flask import request

@app.route('/upload', methods=['GET', 'POST'])
def upload_file():
    if request.method == 'POST':
        f = request.files['the_file']
        f.save('/var/www/uploads/uploaded_file.txt')
    ...

In [None]:
from werkzeug.utils import secure_filename

@app.route('/upload', methods=['GET', 'POST'])
def upload_file():
    if request.method == 'POST':
        file = request.files['the_file']
        file.save(f"/var/www/uploads/{secure_filename(file.filename)}")
    ...


In [None]:
# Cookies
from flask import request

@app.route('/')
def index():
    username = request.cookies.get('username')
    # use cookies.get(key) instead of cookies[key] to not get a
    # KeyError if the cookie is missing.
    
    from flask import make_response

@app.route('/')
def index():
    resp = make_response(render_template(...))
    resp.set_cookie('username', 'the username')
    return resp

In [None]:
# redirect

from flask import abort, redirect, url_for

@app.route('/')
def index():
    return redirect(url_for('login'))

@app.route('/login')
def login():
    abort(401)
    this_is_never_executed()

In [None]:
# abort
from flask import abort

In [None]:
from flask import render_template

@app.errorhandler(404)
def page_not_found(error):
    return render_template('page_not_found.html'), 404

In [None]:
from flask import render_template

@app.errorhandler(404)
def not_found(error):
    return render_template('error.html'), 404

In [None]:
from flask import make_response

@app.errorhandler(404)
def not_found(error):
    resp = make_response(render_template('error.html'), 404)
    resp.headers['X-Something'] = 'A value'
    return resp

In [None]:
APIs with JSON

@app.route("/me")
def me_api():
    user = get_current_user()
    return {
        "username": user.username,
        "theme": user.theme,
        "image": url_for("user_image", filename=user.image),
    }

In [None]:
from flask import jsonify

@app.route("/users")
def users_api():
    users = get_all_users()
    return jsonify([user.to_json() for user in users])

In [None]:
#### Sessions

from flask import session

# Set the secret key to some random bytes. Keep this really secret!
app.secret_key = b'_5#y2L"F4Q8z\n\xec]/'

@app.route('/')
def index():
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in'

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']
        return redirect(url_for('index'))
    return '''
        <form method="post">
            <p><input type=text name=username>
            <p><input type=submit value=Login>
        </form>
    '''

@app.route('/logout')
def logout():
    # remove the username from the session if it's there
    session.pop('username', None)
    return redirect(url_for('index'))

In [None]:
with current_app.open_resource('schema.sql') as f:
    db.executescript(f.read().decode('utf8'))


In [None]:

from flask import (
    Blueprint, flash, g, redirect, render_template, request, session, url_for
)
from werkzeug.security import check_password_hash, generate_password_hash

In [None]:

bp = Blueprint('auth', __name__, url_prefix='/auth')
'''
@bp.route associates the URL /register with the register view function. When Flask receives a request to /auth/register, it will call the register view and use the return value as the response.
'''

def create_app():
    app = ...
    # existing code omitted

    from . import auth
    app.register_blueprint(auth.bp)

    return app



In [None]:
request.form is a special type of dict mapping submitted form keys and values. The user will input their username and password.

In [None]:
@bp.route associates the URL /register with the register view function. When Flask receives a request to /auth/register, it will call the register view and use the return value as the response.

In [None]:
@bp.route('/login', methods=('GET', 'POST'))
def login():
    if request.method == 'POST':
        username = request.form['username']
        password = request.form['password']
        db = get_db()
        error = None
        user = db.execute(
            'SELECT * FROM user WHERE username = ?', (username,)
        ).fetchone()

        if user is None:
            error = 'Incorrect username.'
        elif not check_password_hash(user['password'], password):
            error = 'Incorrect password.'

        if error is None:
            session.clear()
            session['user_id'] = user['id']
            return redirect(url_for('index'))

        flash(error)

    return render_template('auth/login.html')

In [None]:
redirect(url_for("auth.login"))

In [None]:
generate_password_hash(password)
check_password_hash(user['password'], password)