***Restful API & Flask***

1. What is a RESTful API?

 - A RESTful API (Representational State Transfer API) is an architectural style for designing networked applications, particularly web services, that uses HTTP requests to access and manipulate data.

2. Explain the concept of API specification?

- An **API specification** is a detailed document that outlines how an API should function and how developers can interact with it. It serves as a contract between the API provider and the users, describing all the available endpoints, the HTTP methods (like GET, POST, PUT, DELETE) that can be used, the required parameters, and the expected request and response formats. It also defines how errors are handled and what authentication methods are needed. Essentially, an API specification provides a clear and structured way to communicate the capabilities and behavior of an API, helping developers understand how to use it effectively. Common formats for API specifications include OpenAPI (formerly Swagger), RAML, and API Blueprint, which also support automatic documentation and tool integration. This ensures consistency, improves collaboration between teams, and enables better maintenance and scaling of applications.


3. What is Flask, and why is it popular for building APIs?

- **Flask** is a lightweight and flexible **web framework** written in Python, commonly used for building **web applications** and **RESTful APIs**. It is known for its simplicity, minimalism, and ease of use, making it especially popular among developers who want to quickly create small to medium-sized web services or prototypes.

Flask is popular for building APIs because it gives developers full control over the structure and components of their application without imposing strict rules or dependencies. It comes with a built-in development server and debugger, supports routing, and integrates easily with tools for handling requests, JSON, authentication, and more. Additionally, Flask has a large community, plenty of extensions (such as Flask-RESTful and Flask-JWT), and clear documentation, all of which make it an excellent choice for building APIs quickly and efficiently. Its simplicity allows developers to scale from basic APIs to more complex applications as needed.


4. What is routing in Flask?

- Routing in Flask refers to the process of defining URL patterns (routes) that are linked to specific functions in your application. When a user makes a request to a particular URL, Flask uses routing to determine which function (called a view function) should handle that request.

5. How do you create a simple Flask application?

- To create a simple Flask application, you first need to install Flask using the command `pip install Flask`. Then, create a Python file (e.g., `app.py`) and import the Flask module. Inside this file, you initialize the app using `Flask(__name__)` and define routes using the `@app.route()` decorator. For example, you can create a route for the homepage (`/`) that returns a simple message like "Hello, Flask!". Finally, you run the app with `app.run(debug=True)`, which starts a development server. When you visit `http://127.0.0.1:5000/` in your browser, you'll see the output of the function associated with that route. Flask's simplicity and flexibility make it easy to define multiple routes and quickly build web applications or APIs.


6. What are HTTP methods used in RESTful APIs?

- In RESTful APIs, **HTTP methods** are used to perform operations on resources. Each method represents a specific type of action that the client can request from the server. The most commonly used HTTP methods in RESTful APIs are:

1. **GET**: Used to **retrieve** data from the server. It is a **read-only** operation and does not change the state of the resource. For example, `GET /users` fetches a list of users.

2. **POST**: Used to **create** a new resource on the server. The data for the new resource is usually included in the request body. For example, `POST /users` can be used to add a new user.

3. **PUT**: Used to **update** an existing resource completely. It replaces the current representation of the resource with the new data provided. For example, `PUT /users/1` updates the user with ID 1.

4. **PATCH**: Used to **partially update** a resource. Unlike PUT, PATCH only changes the specified fields. For example, `PATCH /users/1` might update just the email address of the user.

5. **DELETE**: Used to **remove** a resource from the server. For example, `DELETE /users/1` deletes the user with ID 1.




7. What is the purpose of the @app.route() decorator in Flask?

- The purpose of the `@app.route()` decorator in Flask is to **bind a specific URL path to a Python function**, allowing that function to be executed when the URL is accessed by a client (such as a web browser or API consumer). This decorator defines a **route**—a URL endpoint—and tells Flask which function should handle requests to that endpoint. For example, if you write `@app.route('/hello')` above a function, Flask will call that function whenever someone visits `/hello` in the browser. It's an essential part of routing in Flask and is used to create clean and organized web applications or APIs by mapping URLs to functions.


8. What is the difference between GET and POST HTTP methods?

 - The main difference between the **GET** and **POST** HTTP methods lies in their purpose, how they handle data, and their effects on the server:

1. **Purpose**:

   * **GET** is used to **retrieve** data from the server. It is a **read-only** operation that doesn't modify the server’s state.
   * **POST** is used to **send data** to the server, typically to create or update a resource. It is a **write operation**.

2. **Data Handling**:

   * **GET** appends data to the URL as **query parameters** (e.g., `GET /users?id=1`). This means data is visible in the URL and has size limitations.
   * **POST** sends data in the **request body**, meaning it can send much larger amounts of data and it’s not exposed in the URL.

3. **Caching and Security**:

   * **GET** requests can be cached by the browser or stored in the browser history. Because the data is in the URL, it’s also **not secure** (e.g., usernames, passwords could be exposed).
   * **POST** requests are generally **not cached** and are more **secure** for transmitting sensitive data, as the data is sent in the request body rather than the URL.

4. **Idempotency**:

   * **GET** is **idempotent**, meaning that making multiple identical GET requests will have the same effect as making a single request (it should not change any state on the server).
   * **POST** is **not idempotent**, meaning making the same POST request multiple times can result in different outcomes, such as creating multiple resources or altering server state.



9. How do you handle errors in Flask APIs?

- In Flask, errors are handled using various mechanisms to ensure that the application provides meaningful responses and status codes when issues arise. You can use the `abort()` function to trigger errors manually, such as returning a `404 Not Found` or a `400 Bad Request` status when a resource is not found or when input is invalid. Flask also allows you to define **custom error handlers** using the `@app.errorhandler()` decorator, enabling you to handle specific HTTP errors globally and return structured JSON responses with error descriptions. Additionally, when dealing with user input, you can validate data (e.g., from JSON requests) and respond with appropriate error messages if the data is incomplete or incorrect. Custom exceptions can also be raised and caught in these handlers to manage application-specific errors more effectively. For applications built with Flask-RESTful, error handling is further streamlined with built-in tools like `abort()` and methods for catching and returning detailed error responses. This approach ensures that users and developers are always informed of any issues that arise during API interactions.


10. How do you connect Flask to a SQL database?

- To connect a Flask application to an SQL database, you typically use SQLAlchemy, which is a powerful Object Relational Mapper (ORM) for Python. SQLAlchemy allows you to interact with your SQL database using Python objects, making it easier to manage database connections and perform CRUD (Create, Read, Update, Delete) operations. Here’s a step-by-step guide to connecting Flask to an SQL database:

1. Install Flask-SQLAlchemy:
First, you need to install the necessary libraries. You can install Flask-SQLAlchemy using pip:

In [None]:
pip install flask-sqlalchemy


Collecting flask-sqlalchemy
  Downloading flask_sqlalchemy-3.1.1-py3-none-any.whl.metadata (3.4 kB)
Downloading flask_sqlalchemy-3.1.1-py3-none-any.whl (25 kB)
Installing collected packages: flask-sqlalchemy
Successfully installed flask-sqlalchemy-3.1.1


2. Configure Flask with SQLAlchemy:
In your Flask application, you need to configure the connection to your SQL database by setting the SQLALCHEMY_DATABASE_URI in the Flask app configuration. Here’s an example using a SQLite database (you can replace it with other databases like MySQL, PostgreSQL, etc.):

In [None]:
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)

# Set up the database URI (using SQLite in this example)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///mydatabase.db'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False  # Disable modification tracking (optional)

# Initialize the database connection
db = SQLAlchemy(app)


3. Define Database Models:
Next, you define your database models as Python classes. These classes represent tables in the SQL database, and SQLAlchemy will map them to the database. Here’s an example of defining a User model:

In [None]:
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(80), unique=True, nullable=False)
    email = db.Column(db.String(120), unique=True, nullable=False)

    def __repr__(self):
        return f'<User {self.username}>'


4. Create the Database:
Before interacting with the database, you need to create the tables defined by your models. You can use db.create_all() to create the tables in your database:

In [None]:
@app.before_first_request
def create_tables():
    db.create_all()


AttributeError: 'Flask' object has no attribute 'before_first_request'

5. Performing Database Operations:
Now that your Flask app is connected to the database, you can perform CRUD operations. Here are a few examples:

Create:

In [None]:
@app.route('/add_user', methods=['POST'])
def add_user():
    new_user = User(username="john_doe", email="john@example.com")
    db.session.add(new_user)
    db.session.commit()
    return f'User {new_user.username} added!'


Read:

In [None]:
@app.route('/get_user/<int:id>', methods=['GET'])
def get_user(id):
    user = User.query.get(id)
    if user:
        return f'User: {user.username}, Email: {user.email}'
    else:
        return 'User not found', 404


Update:

In [None]:
@app.route('/update_user/<int:id>', methods=['PUT'])
def update_user(id):
    user = User.query.get(id)
    if user:
        user.username = "new_username"
        db.session.commit()
        return f'User {user.id} updated!'
    return 'User not found', 404


Delete:

In [None]:
@app.route('/delete_user/<int:id>', methods=['DELETE'])
def delete_user(id):
    user = User.query.get(id)
    if user:
        db.session.delete(user)
        db.session.commit()
        return f'User {user.id} deleted!'
    return 'User not found', 404


6. Run the Flask App:
Finally, run the Flask application as usual:

In [None]:
if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


7. Using Other SQL Databases:
If you're using a different database like PostgreSQL or MySQL, you simply need to change the SQLALCHEMY_DATABASE_URI to the appropriate connection string. For example, for PostgreSQL:

In [None]:
app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql://username:password@localhost/mydatabase'


11. What is the role of Flask-SQLAlchemy?

 - **Flask-SQLAlchemy** is an extension for Flask that integrates the **SQLAlchemy** ORM (Object Relational Mapper) with Flask, providing an easy way to work with relational databases in a Flask application. Its role is to simplify the process of connecting to a database, defining data models, and performing database operations such as CRUD (Create, Read, Update, Delete). Flask-SQLAlchemy abstracts much of the complexity of working with databases by allowing developers to interact with databases using Python classes and objects instead of raw SQL queries. It manages database connections, handles transactions, and provides features like query building, migrations, and schema management, making it an essential tool for developers building data-driven applications with Flask.


12. What are Flask blueprints, and how are they useful?

- Flask Blueprints are a way to organize and structure your Flask application by breaking it into smaller, modular components. Each blueprint can define its own routes, views, templates, static files, and other functionalities, allowing you to group related features of your app into reusable modules. Blueprints are especially useful in larger applications or when you want to make your code more maintainable and easier to scale.

Here’s why Flask Blueprints are useful:

Modularization: Blueprints allow you to divide your app into separate logical components, such as user authentication, blog posts, or admin functionality. This separation of concerns makes the application more organized and easier to manage, especially when working with large codebases.

Reusability: Once you create a blueprint, you can reuse it across different Flask apps or different parts of the same app. This means that a blueprint encapsulates a set of related routes and views that can be shared between different apps.

Cleaner Code: Blueprints help in keeping the main application file (usually app.py) clean and concise by offloading specific routes and logic to their respective blueprints. This leads to a more readable and maintainable code structure.

Flexibility: Blueprints can be registered on the main application in a modular way, allowing you to conditionally enable or disable certain parts of your app, making it easier to handle complex features like API endpoints, authentication, or different app environments.

13. What is the purpose of Flask's request object?

- Flask's **`request` object** is an integral part of the Flask framework, providing access to all the data sent by the client in an HTTP request. It allows the application to retrieve information such as form data, query parameters, request headers, and JSON payloads. This object plays a crucial role in handling incoming requests by enabling the developer to access various elements of the request, such as the HTTP method (GET, POST, etc.), data submitted by the user, and other relevant details like cookies and session data.

With the `request` object, you can access form data submitted through POST requests, query parameters in GET requests, and files uploaded by the client. It also gives you the ability to work with HTTP headers, which may include important information like authentication tokens or the client's user agent. The `request` object is essential for interacting with the client's input and processing the data in a way that responds appropriately to the user's request. Overall, it allows Flask applications to handle dynamic content and perform logic based on the request data received from the client.


14. How do you create a RESTful API endpoint using Flask?

 - Creating a **RESTful API endpoint** using Flask involves defining routes that correspond to specific HTTP methods (GET, POST, PUT, DELETE) and handling requests and responses in a structured way. The primary purpose of REST (Representational State Transfer) is to provide a simple, stateless way for clients to interact with resources, typically over HTTP.

To build a RESTful API in Flask, you begin by setting up routes using Flask's `@app.route()` decorator. Each route corresponds to an HTTP method, such as GET for retrieving data, POST for creating new data, PUT for updating existing data, and DELETE for removing data. Flask provides various utilities like `request` to handle incoming data and `jsonify` to format the response in JSON, which is the standard data format used in RESTful services.

For example, a typical Flask RESTful API endpoint would include:

* **GET** requests to fetch data from the server.
* **POST** requests to send data to the server and create resources.
* **PUT** requests to modify existing resources.
* **DELETE** requests to remove resources.

When a client sends a request to an API endpoint, Flask handles that request by processing the data (often in JSON format) and returning a response, usually in JSON as well. Flask’s request object allows you to access data from the request body, query parameters, and headers, while the response is sent back using the `jsonify()` function, which converts data to JSON.

This structure allows developers to create scalable, modular, and maintainable APIs for web and mobile applications, ensuring clients can interact with server-side data efficiently and in a predictable manner.


15. What is the purpose of Flask's jsonify() function?

 - Flask's `jsonify()` function is used to convert Python data structures, such as dictionaries or lists, into a properly formatted JSON response. This is particularly important when building RESTful APIs, where JSON is the standard format for data exchange between the client and the server. In addition to converting data into JSON, `jsonify()` also automatically sets the correct HTTP headers, specifically the `Content-Type` header to `application/json`, indicating that the response body contains JSON data. This eliminates the need for manually serializing data or setting headers, making the code cleaner and less error-prone. Overall, `jsonify()` streamlines the process of returning structured data from Flask routes, ensuring consistency and compliance with web standards for API responses.


16. Explain Flask’s url_for() function?

 - Flask’s `url_for()` function is used to dynamically generate URLs for specific routes in your application, based on the name of the view function associated with the route. This eliminates the need to hardcode URLs, making your application more flexible and maintainable. When you use `url_for()`, you pass the name of the view function and any necessary parameters, and Flask will generate the correct URL for that route. This is particularly useful for generating links to other parts of the app, such as user profiles or resource pages, and ensures that the URLs remain accurate even if route paths are changed. It also helps in managing routes with dynamic parts, like variables in the URL, and prevents errors that could arise from manually updating multiple links across the application. In essence, `url_for()` enhances the maintainability and scalability of Flask applications by allowing URLs to be generated automatically and consistently.


17. How does Flask handle static files (CSS, JavaScript, etc.)?

- Flask handles static files like CSS, JavaScript, and images through a special folder called the **`static`** folder. By default, Flask expects these files to be placed inside the `static` directory within the application structure. When a client requests a static resource (such as a CSS file or an image), Flask automatically serves that file from the `static` folder without needing to define a specific view for it. Static files are accessible via the `/static` URL prefix, allowing users to retrieve them by visiting URLs like `http://127.0.0.1:5000/static/css/styles.css`.

To link static files in HTML templates, Flask provides the `url_for()` function, which dynamically generates the correct URL for static resources. For example, `url_for('static', filename='css/styles.css')` will generate the appropriate URL for a CSS file located in the `static/css/` folder. This approach avoids hardcoding URLs and ensures that the paths to static files remain accurate, even if the directory structure changes.

Flask also allows for customization, such as changing the name of the static folder or modifying the URL prefix. Overall, Flask’s handling of static files simplifies the process of managing and serving resources like stylesheets, scripts, and images, while ensuring flexibility and maintainability in the application.


18.  What is an API specification, and how does it help in building a Flask API?

- An **API specification** is a detailed document or description that defines how an API (Application Programming Interface) should behave, including its endpoints, request and response formats, available HTTP methods, authentication methods, and other necessary details for interacting with the API. It serves as a blueprint for both the API developers and the consumers (clients) to ensure clear communication, consistency, and understanding of how the API will function.

API specifications can be created using standardized formats like **OpenAPI (formerly Swagger)** or **RAML**, which provide a structured way to describe the API’s functionality. These specifications are essential for providing a common understanding of how the API will work, what data it expects, and what it returns.

### How API Specification Helps in Building a Flask API:

1. **Clear API Design**: Having an API specification before development ensures that you have a clear understanding of the API's endpoints, their purpose, input parameters, and expected outputs. This reduces confusion and helps the development team focus on building the correct functionality from the start.

2. **Documentation**: An API specification acts as self-contained documentation. It can describe the available routes, required query parameters, headers, and possible responses in a structured way. Tools like **Swagger UI** can automatically generate interactive documentation from the API specification, allowing users to explore and test API endpoints directly through a web interface.

3. **Consistency**: By defining the API structure upfront, an API specification ensures that all developers are on the same page. It helps maintain consistency across different endpoints and methods, especially when working in teams. For example, it standardizes the way error messages are returned, how data is formatted, and which HTTP status codes are used.

4. **Version Control**: An API specification allows for better versioning control. As the API evolves, the specification can be updated, ensuring backward compatibility or signaling breaking changes clearly. This helps both developers and clients keep track of what features are available at any given time.

5. **Testing and Validation**: An API specification can be used to automate the process of testing the API. Tools like **Postman** or **Swagger** can read the API specification and automatically generate tests to ensure that the API behaves as described. This helps catch discrepancies and errors early in the development process.

6. **Client Integration**: For clients consuming the API, an API specification acts as a contract that describes how to interact with the API. It allows developers to build API clients or SDKs that are tailored to the API’s design without having to manually explore and reverse-engineer how the API works.

### Example in Flask:

In Flask, having an API specification could involve defining the routes and their expected inputs/outputs. For instance, if your API is designed to manage a collection of users, the specification might include an endpoint like `/users`, which supports **GET** (to retrieve the list of users) and **POST** (to create a new user). The specification would define the required parameters, such as the user’s name and email, and specify that the response will be a JSON object containing user data.

With tools like **Flask-RESTPlus** (or **Flask-RESTful**), you can integrate OpenAPI specifications directly into your Flask application. This allows for automatic generation of documentation and endpoint validation.




19. What are HTTP status codes, and why are they important in a Flask API?

- HTTP status codes are standardized three-digit codes returned by a web server to indicate the outcome of a client's request. In a Flask API, these codes play a crucial role in communication between the server and client. They help the client understand whether a request was successful (e.g., 200 OK), resulted in an error (e.g., 404 Not Found or 500 Internal Server Error), or requires further action (e.g., 401 Unauthorized or 302 Found). Using appropriate status codes improves the clarity, maintainability, and reliability of the API by clearly signaling the result of each request. This helps developers quickly identify issues and ensures that clients can programmatically handle responses based on the status.


20. How do you handle POST requests in Flask?

- In Flask, handling POST requests involves creating a route that accepts the POST method and then accessing the submitted data within the route function. This is typically done using the `@app.route()` decorator with the `methods=['POST']` parameter. Inside the route function, you can use `request.form` to access form data, `request.json` for JSON data, or `request.data` for raw data, depending on the content type of the request. It's important to import the `request` object from Flask. POST requests are commonly used to create new resources or submit data to the server, and proper handling includes validating the input and sending an appropriate response, often with a relevant HTTP status code like 201 Created or 400 Bad Request if there's an error.


21. How would you secure a Flask API?

- Securing a Flask API involves implementing several key practices to protect it from unauthorized access, data breaches, and common web vulnerabilities. First, authentication and authorization mechanisms such as API keys, OAuth2, or JWT (JSON Web Tokens) should be used to control who can access the API and what they can do. Second, input validation and sanitization are crucial to prevent attacks like SQL injection and cross-site scripting (XSS). Third, HTTPS should be enforced to encrypt data in transit, ensuring that sensitive information like passwords and tokens are not exposed. Additionally, rate limiting and throttling can help protect against denial-of-service (DoS) attacks by restricting the number of requests a client can make. Other best practices include using secure headers, regularly updating dependencies to patch vulnerabilities, and implementing proper error handling to avoid exposing sensitive information in error messages. Together, these measures help ensure the API remains secure and reliable.


22. What is the significance of the Flask-RESTful extension?

- The Flask-RESTful extension is significant because it simplifies the process of building RESTful APIs with Flask. It provides a structured and organized way to define resources and handle HTTP methods like GET, POST, PUT, and DELETE using Python classes. This promotes cleaner, more maintainable code by encouraging a resource-based approach rather than defining all logic in route functions. Flask-RESTful also includes helpful features such as automatic input parsing, request argument handling, and standardized error responses, making it easier to develop consistent and robust APIs. Overall, it enhances the development experience by reducing boilerplate code and aligning closely with REST principles.


23. What is the role of Flask’s session object?

 - Flask’s `session` object plays a crucial role in maintaining user-specific data across multiple requests in a web application. It allows the server to store information, such as user login status or preferences, on a per-client basis. Flask's session uses a secure cookie to store data on the client side, and the data is signed cryptographically to prevent tampering. This makes sessions lightweight and efficient, as no server-side storage is required by default. The session object is especially useful in scenarios where persistent interaction with the user is needed, such as keeping users logged in or tracking their activity throughout their visit to the site.


***Practical***

1. How do you create a basic Flask application?

- To create a basic Flask application, you start by installing Flask and writing a simple Python script that defines the app and its routes. First, install Flask using pip install Flask. Then, create a file (e.g., app.py) and write the following code:

In [8]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def index():
    return 'Welcome to my first Flask app!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. How do you serve static files like images or CSS in Flask?

- In Flask, static files such as images, CSS, and JavaScript are served from a directory named static, which Flask looks for by default. To serve these files, you create a folder called static in your project directory and place the required files inside it. For example, an image named logo.png should be stored like this: static/logo.png. These files can then be accessed in the browser through a URL like /static/logo.png. When using templates, you can reference static files using Flask’s url_for() function, such as:


In [12]:
<img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">


SyntaxError: invalid syntax (<ipython-input-12-7c6f816734e1>, line 1)

3. How do you define different routes with different HTTP methods in Flask?

- In Flask, you can define different routes with different HTTP methods by using the @app.route() decorator with the methods parameter. This allows you to specify which HTTP methods (like GET, POST, PUT, or DELETE) a route should respond to.

Here’s a basic example:

In [14]:
@app.route('/item', methods=['GET', 'POST'])
def item():
    if request.method == 'GET':
        return 'Fetching item'
    elif request.method == 'POST':
        return 'Creating item'


4.  How do you render HTML templates in Flask?

- In Flask, HTML templates are rendered using the render_template() function, which allows you to return dynamic HTML content instead of plain text. Flask looks for these templates inside a folder named templates by default. To use it, you first create an HTML file (like home.html) and place it in the templates directory. Then, in your Flask route, you return render_template('home.html').

For example:



In [20]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def homepage():
    return render_template('home.html')


5.  How can you generate URLs for routes in Flask using url_for?

- In Flask, you can generate URLs for routes using the url_for() function, which is a built-in way to create URLs dynamically based on the name of the view function. This is useful because it avoids hardcoding URLs and ensures they update automatically if your route changes.

Example:
Suppose you have a route like this:

In [21]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/profile')
def profile():
    return 'This is the profile page'


You can generate the URL for this route using url_for():



In [22]:
@app.route('/')
def home():
    profile_url = url_for('profile')
    return f'Go to your <a href="{profile_url}">profile</a>'


6. How do you handle forms in Flask?

- In Flask, handling forms involves receiving data submitted by the user through an HTML form, processing it on the server, and sending a response. Here's a general process for handling forms in Flask:

1. Create the HTML Form
You first need to create an HTML form where users can submit data. The form should specify the method (typically POST) and an action (URL endpoint to which the form data will be sent).

Example form (templates/form.html):

In [None]:
<form method="POST" action="/submit">
    <label for="username">Username:</label>
    <input type="text" id="username" name="username" required>
    <button type="submit">Submit</button>
</form>


. Define a Route to Handle the Form
In your Flask app, you define a route that will display the form and another route that will handle the form submission (usually with the POST method).

Example of Flask app (app.py):

In [29]:
from flask import Flask, render_template, request, redirect, url_for

app = Flask(__name__)

# Route to display the form
@app.route('/form', methods=['GET'])
def show_form():
    return render_template('form.html')

# Route to handle form submission
@app.route('/submit', methods=['POST'])
def submit_form():
    if request.method == 'POST':
        username = request.form['username']  # Access form data using request.form
        return f'Hello, {username}!'
    return redirect(url_for('show_form'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


3. Handling Form Data
Flask provides the request object to handle form data:

request.form['key']: This is used to get form data from a POST request (e.g., username = request.form['username']).

request.method: This helps to check the type of HTTP request (GET, POST).

In the example above:

The show_form route renders the HTML form.

The submit_form route processes the submitted data and displays a greeting message with the submitted username.

4. Redirect or Render After Form Submission
Once the form is processed, you can either render another template or redirect the user to another route (usually to avoid resubmitting the form on page refresh). In the example, redirect(url_for('show_form')) ensures that the user is redirected back to the form after submitting.

Example of Running the Application
When you visit http://127.0.0.1:5000/form, the form will be displayed.

After you submit the form, the submit_form() function will capture the POST data and show the username as a greeting.

7. How can you validate form data in Flask?

- In Flask, you can validate form data to ensure that the user input meets certain criteria (e.g., required fields, correct format). Flask provides several methods to handle validation, from simple manual checks to more advanced validation using external libraries like WTForms.

1. Manual Validation with request.form
For simple form validation, you can manually check the form data in your route function. Here’s how you can validate basic input, such as checking if a field is empty:

Example:

In [30]:
from flask import Flask, render_template, request, flash, redirect, url_for

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required for flash messages

@app.route('/form', methods=['GET'])
def show_form():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit_form():
    username = request.form.get('username')
    email = request.form.get('email')

    # Validate that the fields are not empty
    if not username or not email:
        flash('Both fields are required!', 'error')
        return redirect(url_for('show_form'))

    # Simple email format validation (not very comprehensive, but good for basic checks)
    if '@' not in email:
        flash('Please enter a valid email address!', 'error')
        return redirect(url_for('show_form'))

    # If everything is valid, process the data
    return f"Form submitted successfully with username: {username} and email: {email}"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. Using Flask-WTF for Advanced Validation
For more robust and easier-to-manage form validation, you can use the Flask-WTF extension, which integrates with WTForms. This allows you to define forms and validate them declaratively.

Steps to Install Flask-WTF:

In [31]:
pip install Flask-WTF


Collecting Flask-WTF
  Downloading flask_wtf-1.2.2-py3-none-any.whl.metadata (3.4 kB)
Collecting wtforms (from Flask-WTF)
  Downloading wtforms-3.2.1-py3-none-any.whl.metadata (5.3 kB)
Downloading flask_wtf-1.2.2-py3-none-any.whl (12 kB)
Downloading wtforms-3.2.1-py3-none-any.whl (152 kB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m152.5/152.5 kB[0m [31m5.1 MB/s[0m eta [36m0:00:00[0m
[?25hTraceback (most recent call last):
  File "/usr/local/lib/python3.11/dist-packages/pip/_internal/cli/base_command.py", line 179, in exc_logging_wrapper
    status = run_func(*args)
             ^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/dist-packages/pip/_internal/cli/req_command.py", line 67, in wrapper
    return func(self, options, args)
           ^^^^^^^^^^^^^^^^^^^^^^^^^
  File "/usr/local/lib/python3.11/dist-packages/pip/_internal/commands/install.py", line 447, in run
    conflicts = self._determine_conflicts(to_install)
                ^^^^^^^^^^^^^^^^^^^^^^^^^^

Example Using Flask-WTF:

In [36]:
from flask import Flask, render_template, redirect, url_for, flash
from flask_wtf import FlaskForm
from wtforms import StringField, EmailField
from wtforms.validators import DataRequired, Email, Length

app = Flask(__name__)
app.secret_key = 'your_secret_key'

class MyForm(FlaskForm):
    username = StringField('Username', validators=[DataRequired(), Length(min=3, max=50)])
    email = EmailField('Email', validators=[DataRequired(), Email()])

@app.route('/form', methods=['GET', 'POST'])
def show_form():
    form = MyForm()
    if form.validate_on_submit():
        # If the form is valid, process the data
        return f"Form submitted successfully with username: {form.username.data} and email: {form.email.data}"
    return render_template('form.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)


ModuleNotFoundError: No module named 'flask_wtf'

3. Flask-WTF Template Integration
To display validation errors in your template, Flask-WTF automatically generates error messages for invalid fields. Here’s how you can handle that in the template:

In [38]:
<form method="POST" action="/form">
    {{ form.hidden_tag() }}

    <label for="username">Username:</label>
    {{ form.username() }}
    {% if form.username.errors %}
        <ul>
            {% for error in form.username.errors %}
                <li>{{ error }}</li>
            {% endfor %}
        </ul>
    {% endif %}

    <label for="email">Email:</label>
    {{ form.email() }}
    {% if form.email.errors %}
        <ul>
            {% for error in form.email.errors %}
                <li>{{ error }}</li>
            {% endfor %}
        </ul>
    {% endif %}

    <button type="submit">Submit</button>
</form>


SyntaxError: invalid syntax (<ipython-input-38-96aad77a86f6>, line 1)

8. How do you manage sessions in Flask?

- In Flask, managing sessions involves storing and accessing user-specific data across multiple requests. Flask uses a secure cookie-based system to store session data on the client side, making it lightweight and easy to use. The session data is encrypted and signed to prevent tampering.

Here’s how you can manage sessions in Flask:

1. Setting Up Sessions
Flask provides a session object that works like a dictionary and is used to store data. Before using sessions, you need to set a secret key, which Flask uses to sign the session cookie for security purposes.

Example:

In [39]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)

# Set a secret key to encrypt session data
app.secret_key = 'your_secret_key'

@app.route('/')
def index():
    # Check if the user is logged in (session is set)
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in.'

@app.route('/login', methods=['POST'])
def login():
    username = request.form['username']
    # Set session data
    session['username'] = username
    return redirect(url_for('index'))

@app.route('/logout')
def logout():
    # Remove session data to log out the user
    session.pop('username', None)
    return redirect(url_for('index'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. Using Sessions for User Authentication
You can use sessions to manage user authentication. After logging in, you store the user’s data (like their username) in the session, which is then accessible across all routes.

Example of User Authentication with Sessions:

In [40]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key'

@app.route('/')
def home():
    # Check if the user is logged in
    if 'username' in session:
        return f'Hello, {session["username"]}!'
    return redirect(url_for('login'))

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form['username']
        session['username'] = username  # Store username in session
        return redirect(url_for('home'))
    return '''
        <form method="POST">
            Username: <input type="text" name="username"><br>
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/logout')
def logout():
    # Remove the username from session to log out
    session.pop('username', None)
    return redirect(url_for('home'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


3. Session Expiration
By default, Flask sessions last as long as the browser is open. If you want to set a specific expiration time for the session, you can use session.permanent and configure a session lifetime.

Example:

In [41]:
from flask import Flask, session
from datetime import timedelta

app = Flask(__name__)
app.secret_key = 'your_secret_key'

# Set session lifetime
app.permanent_session_lifetime = timedelta(minutes=5)  # 5 minutes

@app.route('/')
def index():
    session.permanent = True  # Make the session permanent, which applies the lifetime
    session['username'] = 'john_doe'
    return f'User {session["username"]} is logged in!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


4. Security Considerations
Secret Key: The secret_key must be kept safe and secret. Do not hard-code it in production; instead, use environment variables to load it.

Secure Cookies: Flask’s session uses cookies to store session data on the client side, and Flask signs the cookies to ensure the integrity of the data. However, make sure your app runs over HTTPS to prevent session data from being exposed to man-in-the-middle attacks.

Session Fixation: To prevent session fixation (where attackers can set a session ID), you can regenerate session IDs on login using session.clear() or session.pop() to ensure that old session data is cleared.

9.  How do you redirect to a different route in Flask?

- In Flask, you can redirect to a different route using the redirect() function, combined with url_for(). The redirect() function sends an HTTP redirect response to the client, and url_for() generates the URL for the specified route based on its name.

1. Basic Redirection
Here's how you can redirect to another route

In [42]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Welcome to the Home Page!'

@app.route('/login')
def login():
    return 'Please login to continue.'

@app.route('/redirect-to-login')
def redirect_to_login():
    # Redirects to the '/login' route
    return redirect(url_for('login'))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. Redirect After a Form Submission (Post-Redirect-Get Pattern)
A common pattern is to redirect the user after a form submission, often called the Post-Redirect-Get (PRG) pattern. This prevents form resubmissions if the user refreshes the page.

Here's an example where the user is redirected to a confirmation page after submitting a form:

In [43]:
from flask import Flask, render_template, request, redirect, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return 'Welcome to the Index Page!'

@app.route('/submit', methods=['POST'])
def submit():
    # After processing form data, redirect to another route
    return redirect(url_for('thank_you'))

@app.route('/thank-you')
def thank_you():
    return 'Thank you for your submission!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


3. Redirect with URL Parameters
You can also redirect to a route with parameters. For example, after a user logs in, you might redirect them to their profile page using a dynamic URL with the username.

In [44]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Welcome Home!'

@app.route('/user/<username>')
def profile(username):
    return f'Welcome to the profile of {username}'

@app.route('/login/<username>')
def login(username):
    # Redirect to the user's profile after logging in
    return redirect(url_for('profile', username=username))

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


10. How do you handle errors in Flask (e.g., 404)?

- In Flask, handling errors such as 404 or other HTTP errors can be done using custom error handlers. Flask provides a way to define how specific HTTP errors should be handled globally by registering error handling functions for different error codes.

Here's how you can handle common errors like 404 in Flask:

1. Basic Error Handling with @app.errorhandler
You can use the @app.errorhandler decorator to create a custom error handler for specific HTTP status codes. For example, to handle a 404 error:

In [45]:
from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(error):
    # You can return a custom message or render a custom template
    return render_template('404.html'), 404

@app.route('/')
def home():
    return "Welcome to the Home Page!"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. Handle Multiple Errors
You can also handle multiple error codes in one function by checking the error type:

In [46]:
@app.errorhandler(404)
@app.errorhandler(500)
def handle_error(error):
    if isinstance(error, HTTPException):
        return render_template(f'{error.code}.html'), error.code
    return render_template('generic_error.html'), 500


3. Handling Unhandled Errors with a Default Error Handler
Flask's default behavior is to display a generic error page for unhandled errors. You can also create a global error handler that catches all errors, including those that aren't specifically handled:

In [47]:
@app.errorhandler(Exception)
def handle_exception(error):
    # This will handle all exceptions that aren't already handled
    return render_template('generic_error.html'), 500


4. Custom Error Messages with abort()
If you want to trigger an error manually (e.g., to simulate a 404 or another HTTP error in your routes), you can use abort():

In [48]:
from flask import abort

@app.route('/trigger_404')
def trigger_404():
    abort(404)


5. Flask’s HTTPException for Error Details
You can customize error handling based on the details of the HTTPException:

In [49]:
from werkzeug.exceptions import HTTPException

@app.errorhandler(HTTPException)
def handle_http_exception(error):
    return f"Custom error message: {error}", error.code


6. Logging Errors
For better debugging and monitoring, you can log errors using Flask’s logging facilities:

In [50]:
import logging

@app.errorhandler(Exception)
def handle_exception(error):
    app.logger.error(f"An error occurred: {error}")
    return render_template('generic_error.html'), 500


11. How do you structure a Flask app using Blueprints?

- Directory Structure for Flask Application Using Blueprints
A clean, organized structure for your Flask app, based on Blueprints, could look something like this:

In [58]:
my_flask_app/
│
├── app/
│   ├── __init__.py                # Application factory function
│   ├── config.py                  # Application configuration
│   ├── models.py                  # Database models (optional, if using ORM like SQLAlchemy)
│   ├── main/                      # Main blueprint (e.g., homepage, general routes)
│   │   ├── __init__.py
│   │   ├── routes.py              # Routes for the main blueprint
│   │   └── templates/
│   │       └── home.html
│   ├── auth/                      # Authentication blueprint (e.g., login, register)
│   │   ├── __init__.py
│   │   ├── routes.py              # Routes for the auth blueprint
│   │   ├── forms.py               # Form definitions (e.g., login, register forms)
│   │   └── templates/
│   │       └── login.html
│   ├── errors/                    # Error handling blueprint
│   │   ├── __init__.py
│   │   ├── routes.py              # Custom error pages (e.g., 404, 500)
│   │   └── templates/
│   │       └── error.html
│   ├── static/                    # Static files (CSS, JavaScript, images)
│   └── utils/                     # Utility files (e.g., email utils, common functions)
│       └── email.py
├── migrations/                    # Database migrations, if using Flask-Migrate
├── run.py                         # Entry point to run the app
├── requirements.txt               # Python dependencies
└── .env                            # Environment variables (e.g., DB credentials, secret keys)


SyntaxError: invalid character '│' (U+2502) (<ipython-input-58-9726eab2a0e1>, line 2)

12. How do you define a custom Jinja filter in Flask?

- In Flask, you can define custom Jinja filters to modify data before it is rendered in templates. A Jinja filter is a function that modifies the value of a variable within a template. For example, you might define a custom filter to format dates or convert text to uppercase.

Here's how you can define and use a custom Jinja filter in Flask:

1. Define a Custom Jinja Filter Function
The first step is to define the Python function that will act as the filter. This function will take one or more arguments and return a modified value.

For example, let’s create a filter that converts a string to title case (capitalizing the first letter of each word).


In [59]:
# app/filters.py

def title_case(value):
    """Convert a string to title case."""
    if isinstance(value, str):
        return value.title()
    return value


2. Register the Custom Filter in Your Flask App
To make the custom filter available in your templates, you need to register it with your Flask app. You do this in the create_app function or wherever you're initializing your app.



In [60]:
# app/__init__.py

from flask import Flask
from .filters import title_case  # Import your custom filter

def create_app():
    app = Flask(__name__)

    # Register the custom Jinja filter
    app.jinja_env.filters['title_case'] = title_case  # Register the filter with a name

    return app


ImportError: attempted relative import with no known parent package

3. Use the Custom Filter in Templates
Once the filter is registered, you can use it in your Jinja templates just like any other built-in filter.

Here’s an example template that uses the title_case filter:

In [61]:
<!-- templates/index.html -->

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Custom Jinja Filter Example</title>
</head>
<body>
    <h1>{{ 'hello world' | title_case }}</h1>  <!-- Using the custom filter -->
</body>
</html>


SyntaxError: invalid syntax (<ipython-input-61-ade56c123d5b>, line 1)

4. Running the Application
Ensure everything is correctly set up in the run.py (or your main entry point file) to run the app.

In [62]:
# run.py

from app import create_app

app = create_app()

if __name__ == "__main__":
    app.run(debug=True)


ModuleNotFoundError: No module named 'app'

5. Testing Your Filter
Start the application by running python run.py, then navigate to the route that renders the template (e.g., / for a home page). You should see the output from the custom filter applied.

Example with a More Complex Filter
Let’s define a more advanced filter, one that formats a date into a specific string format.

In [63]:
# app/filters.py
from datetime import datetime

def format_date(value, date_format='%Y-%m-%d'):
    """Format a datetime object to a string."""
    if isinstance(value, datetime):
        return value.strftime(date_format)
    return value


Then, register it similarly in your app:

In [64]:
# app/__init__.py

from flask import Flask
from .filters import title_case, format_date

def create_app():
    app = Flask(__name__)

    # Register multiple custom filters
    app.jinja_env.filters['title_case'] = title_case
    app.jinja_env.filters['format_date'] = format_date

    return app


ImportError: attempted relative import with no known parent package

13. How can you redirect with query parameters in Flask?

- In Flask, you can redirect to another route with query parameters by using the redirect function along with the url_for function. The url_for function generates the URL for a specific route, and you can pass query parameters as part of the URL.

Here’s how you can redirect with query parameters in Flask:

1. Using url_for to Generate the URL with Query Parameters
You can use the url_for function to build the URL for a route, and then pass the query parameters using the **args syntax.

Example 1: Redirecting to a Route with Query Parameters
Let’s say you have a route /search where users can search for items. You can redirect to this route with query parameters like query and page.

In [65]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    # Redirect to the /search route with query parameters
    return redirect(url_for('search', query='flask', page=2))

@app.route('/search')
def search():
    query = request.args.get('query')  # Get the query parameter
    page = request.args.get('page')    # Get the page parameter
    return f'Search results for "{query}" on page {page}'

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. Using Dynamic Query Parameters
You can also dynamically pass query parameters from the request or other variables.

Example 2: Passing Dynamic Query Parameters

In [67]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    # Dynamic query parameters
    search_query = request.args.get('query', 'flask')  # Default to 'flask' if not provided
    page_number = request.args.get('page', 1)  # Default to page 1 if not provided
    return redirect(url_for('search', query=search_query, page=page_number))

@app.route('/search')
def search():
    query = request.args.get('query')
    page = request.args.get('page')
    return f'Search results for "{query}" on page {page}'

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


3. Multiple Query Parameters
You can pass multiple query parameters in the url_for function as needed.

Example 3: Redirecting with Multiple Query Parameters

In [68]:
@app.route('/redirect_example')
def redirect_example():
    # Redirect to another route with multiple query parameters
    return redirect(url_for('destination', param1='value1', param2='value2'))

@app.route('/destination')
def destination():
    param1 = request.args.get('param1')
    param2 = request.args.get('param2')
    return f"Received param1: {param1}, param2: {param2}"


14. How do you return JSON responses in Flask?

- n Flask, you can return JSON responses using the built-in jsonify() function, which safely serializes your data to JSON and sets the correct response headers.

✅ Basic Example with jsonify()

In [69]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    data = {'name': 'Alice', 'age': 30, 'location': 'USA'}
    return jsonify(data)


What happens:

Flask converts the dictionary to JSON.

Sets the Content-Type header to application/json.

Response:

In [70]:
{
  "name": "Alice",
  "age": 30,
  "location": "USA"
}


{'name': 'Alice', 'age': 30, 'location': 'USA'}

✅ Returning JSON with Status Code
You can also return a custom HTTP status code:

In [71]:
@app.route('/api/user')
def user_info():
    user = {'id': 1, 'username': 'admin'}
    return jsonify(user), 200  # 200 OK


✅ Returning JSON with Headers
You can add custom headers if needed:

In [72]:
@app.route('/api/headers')
def custom_headers():
    response = jsonify({'message': 'Hello'})
    response.headers['X-Custom-Header'] = 'FlaskApp'
    return response


✅ Manually Creating a JSON Response (Advanced)
Although jsonify() is preferred, you can also create a response manually:

In [73]:
import json
from flask import Response

@app.route('/api/manual')
def manual_response():
    data = {'status': 'ok'}
    response = Response(json.dumps(data), mimetype='application/json')
    return response


✅ Automatic JSON with Flask 2.x+ (Optional)
In newer Flask versions (2.x+), you can directly return a dictionary, and Flask will automatically convert it to JSON:

In [74]:
@app.route('/api/auto')
def auto_json():
    return {'message': 'Auto JSON'}  # Flask auto-converts to JSON


15. How do you capture URL parameters in Flask?

- In Flask, you can capture URL parameters (also called route parameters or path variables) directly in your route definitions using angle brackets (< >). These parameters are then passed as arguments to your view functions.

✅ Basic Syntax

In [75]:
@app.route('/user/<username>')
def show_user(username):
    return f'User: {username}'


✅ Capturing Different Data Types
You can specify the data type of the parameter:

Syntax	Description
<string:var>	Default, matches any text string
<int:var>	Only matches integers
<float:var>	Only matches floating-point numbers
<path:var>	Like string but allows slashes /

Examples:

In [76]:
@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post ID: {post_id}'


✅ Multiple Parameters

In [77]:
@app.route('/user/<username>/post/<int:post_id>')
def user_post(username, post_id):
    return f'User {username} - Post {post_id}'


✅ Using Parameters in Templates
You can generate URLs with url_for():

In [78]:
from flask import url_for

@app.route('/profile/<username>')
def profile(username):
    return f'Welcome, {username}'

# elsewhere
url_for('profile', username='alice')  # /profile/alice


RuntimeError: Working outside of application context.

This typically means that you attempted to use functionality that needed
the current application. To solve this, set up an application context
with app.app_context(). See the documentation for more information.