# Theory Questions : Restful API & Flask Assignment


# **1. What is a RESTful API?**

A **RESTful API** is an **Application Programming Interface** that follows the **Representational State Transfer (REST)** architectural style.

### **Key Characteristics:**

* Uses **HTTP methods** (GET, POST, PUT, DELETE).
* Works on **resources** identified by **URLs**.
* Communication is **stateless** (each request is independent).
* Responses are usually in **JSON** or **XML** format.
* Supports **CRUD operations**:

  * **Create** → POST
  * **Read** → GET
  * **Update** → PUT/PATCH
  * **Delete** → DELETE

---

# **2. Explain the concept of API specification**

An **API specification** is a **blueprint** that defines how an API works. It provides:

* **Endpoints** (URLs) and supported methods.
* **Request formats** (headers, query parameters, body).
* **Response formats** (status codes, JSON schema).
* **Authentication methods** (API keys, OAuth, JWT).

### **Why important?**

* Acts as a **contract** between frontend and backend teams.
* Enables **API documentation** (Swagger/OpenAPI).
* Helps in **automated testing** and **client SDK generation**.

---

# **3. What is Flask, and why is it popular for building APIs?**

**Flask** is a **lightweight web framework** in Python used to build web applications and APIs.

### **Why popular?**

* **Minimalistic & Flexible**: Unlike Django, Flask does not enforce strict structure.
* **Extensible**: Supports plugins (Flask-SQLAlchemy, Flask-RESTful).
* **Easy to Learn**: Perfect for beginners and small projects.
* **Supports REST APIs** easily.

---

# **4. What is routing in Flask?**

Routing in Flask maps **URLs (endpoints)** to **Python functions (views)**.

* Example: `/home` → `home()` function.
* Routes are defined using the `@app.route()` decorator.

---

# **5. How do you create a simple Flask application?**

```python
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)
```

✔ Run this code → Access in browser at **[http://127.0.0.1:5000/](http://127.0.0.1:5000/)**

---

# **6. What are HTTP methods used in RESTful APIs?**

* **GET** → Fetch data from the server.
* **POST** → Send new data to the server.
* **PUT** → Replace/Update existing data.
* **PATCH** → Partially update existing data.
* **DELETE** → Remove data.

---

# **7. Purpose of @app.route() in Flask**

`@app.route()` maps a URL to a function. Example:

```python
@app.route('/hello')
def hello():
    return "Hello World!"
```

---

# **8. Difference between GET and POST**

| Feature   | GET                   | POST                       |
| --------- | --------------------- | -------------------------- |
| Purpose   | Retrieve data         | Send data to the server    |
| Data sent | URL query string      | Request body               |
| Security  | Less secure (visible) | More secure                |
| Use case  | Read-only requests    | Form submissions, API POST |

---

# **9. How do you handle errors in Flask APIs?**

Use **error handlers** or `abort()`:

```python
from flask import abort

@app.route('/secure')
def secure():
    abort(403)  # Forbidden
```

Custom error response:

```python
@app.errorhandler(404)
def page_not_found(e):
    return {"error": "Page not found"}, 404
```

---

# **10. How to connect Flask to SQL database?**

Using **Flask-SQLAlchemy**:

```python
from flask_sqlalchemy import SQLAlchemy

app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'
db = SQLAlchemy(app)
```

---

# **11. Role of Flask-SQLAlchemy**

* Acts as an **ORM** (Object Relational Mapper).
* Allows you to interact with database using **Python classes** instead of raw SQL.
* Example:

```python
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(80))
```

---

# **12. What are Flask Blueprints?**

Blueprints are a way to **organize large Flask apps** into smaller, reusable modules.
Example:

* **auth routes** → `auth.py`
* **API routes** → `api.py`

---

# **13. Purpose of Flask's request object**

`request` contains **incoming HTTP request data**:

* `request.args` → Query params
* `request.form` → Form data
* `request.json` → JSON data

---

# **14. How to create a RESTful API endpoint in Flask?**

```python
@app.route('/api/data', methods=['GET'])
def get_data():
    return {"message": "Hello API"}
```

---

# **15. Purpose of Flask's jsonify()**

`jsonify()` converts Python data (dict/list) into a **JSON response** with `Content-Type: application/json`.

---

# **16. Explain Flask’s url\_for()**

Generates **dynamic URLs**:

```python
@app.route('/home')
def home():
    return "Home Page"

# Somewhere else
url_for('home')  # returns '/home'
```

---

# **17. Handling static files**

* Place files in `static/` folder.
* Access:

```html
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
```

---

# **18. API specification in Flask**

Helps define:

* Endpoints
* Methods
* JSON request/response
  Tools: **Swagger (Flasgger), OpenAPI**

---

# **19. HTTP Status Codes**

* **200 OK** → Success
* **201 Created** → Resource created
* **400 Bad Request** → Invalid input
* **404 Not Found**
* **500 Internal Server Error**

---

# **20. Handling POST requests**

```python
@app.route('/submit', methods=['POST'])
def submit():
    data = request.json
    return {"received": data}, 201
```

---

# **21. How to secure Flask API**

* Use **HTTPS**
* Authentication → **JWT, OAuth**
* Validate inputs
* Use **CORS control**
* Apply **rate limiting**

---

# **22. Flask-RESTful**

Extension to simplify REST APIs:

* Provides **Resource classes**
* Built-in input parsing
* Cleaner code for HTTP methods

---

# **23. Flask session object**

* Stores **user-specific data** between requests.
* Uses **secure cookies**.
* Example:

```python
from flask import session
session['username'] = 'John'
```



# Practical Questions : Restful API & Flask Assignment

In [None]:
# 1. How do you create a basic Flask application?
# - Use Flask class, define routes using @app.route(), and run the app.
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)


In [18]:
# 2. How do you serve static files like images or CSS in Flask?
# - Place static files in the "static/" folder and use url_for() to reference them in templates.
# Example HTML:
# <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">


In [28]:
# 3. How do you define different routes with different HTTP methods in Flask?
# - Specify allowed methods in @app.route(methods=[]).
from flask import request

@app.route('/data', methods=['GET', 'POST'])
def data():
    if request.method == 'GET':
        return "GET request"
    elif request.method == 'POST':
        return "POST request"


In [23]:
# 4. How do you render HTML templates in Flask?
# - Use render_template() and place HTML files inside a "templates" folder.
from flask import render_template

@app.route('/hello')
def hello():
    return render_template('index.html', name="John")
# Example index.html:
# <h1>Hello, {{ name }}!</h1>


In [24]:
# 5. How can you generate URLs for routes in Flask using url_for()?
# - Use url_for('function_name', param=value) to dynamically create URLs.
from flask import url_for

@app.route('/profile/<username>')
def profile(username):
    return f"Profile: {username}"

@app.route('/link')
def link():
    return url_for('profile', username='john')


In [25]:
# 6. How do you handle forms in Flask?
# - Use request.form to get form data submitted via POST.
from flask import request

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form.get('name')
    return f"Hello, {name}"


In [26]:
# 7. How can you validate form data in Flask?
# - Perform manual checks or use Flask-WTF for advanced validation.
@app.route('/validate', methods=['POST'])
def validate():
    name = request.form.get('name')
    if not name:
        return "Name is required", 400
    return f"Valid name: {name}"


In [29]:
# 8. How do you manage sessions in Flask?
# - Use session dictionary. Requires app.secret_key.
from flask import session

app.secret_key = 'mysecret'

@app.route('/set')
def set_session():
    session['username'] = 'John'
    return "Session set"

@app.route('/get')
def get_session():
    return session.get('username', 'Not set')


In [30]:
# 9. How do you redirect to a different route in Flask?
# - Use redirect() with url_for().
from flask import redirect

@app.route('/login')
def login():
    return redirect(url_for('home'))


In [11]:
# 10. How do you handle errors in Flask (e.g., 404)?
# - Use @app.errorhandler() to define custom error responses.
@app.errorhandler(404)
def page_not_found(e):
    return "Custom 404 Page", 404


In [10]:
# 11. How do you structure a Flask app using Blueprints?
# - Use Blueprint objects to modularize routes.
from flask import Blueprint

auth_bp = Blueprint('auth', __name__)

@auth_bp.route('/login')
def auth_login():
    return "Auth Login"

app.register_blueprint(auth_bp, url_prefix='/auth')


In [9]:
# 12. How do you define a custom Jinja filter in Flask?
# - Use @app.template_filter() decorator.
@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]
# In template: {{ 'hello'|reverse }} -> olleh


In [8]:
# 13. How can you redirect with query parameters in Flask?
# - Pass arguments to url_for().
@app.route('/redirect_query')
def redirect_query():
    return redirect(url_for('home', user='John'))


In [7]:
# 14. How do you return JSON responses in Flask?
# - Use jsonify() to return a JSON response.
from flask import jsonify

@app.route('/api')
def api():
    return jsonify({"message": "Hello API"})


In [31]:
# 15. How do you capture URL parameters in Flask?
# - Use <param> in route and access it in the function.
@app.route('/user/<username>')
def user_profile(username):
    return f"User: {username}"

@app.route('/post/<int:id>')
def post(id):
    return f"Post ID: {id}"
