# Flask

HTML, CSS and JavaScript are more and more commonly used stack for development not only Web applications, but also Desktop Applications and Mobile apps

There is language called Swift fot IOS applications development and Java for Android, but coding applications in Both of those languages means knowing twice as many languages and building twice as many applications 

So we increasingly seeing that the world is starting to standardize on HTML, CSS, JS coupled with other languages like Python, SQL (Backend)

http-server command we used before allows to create Static web pages, it does not allow to interact with user beyond simple clicks   
this server can not actually process the requests

In [None]:
https://www.example.com/path     =     https://www.example.com/route

this is canonical URL and after the final / the path or **Route** which is maybe a better generic description of what this is, because it does not have to map to specific folder or file

In [None]:
https://www.example.com/path?key=value

and if we want the input from user just like Google does in q= form  
however, before we could not work with these Q parameters in URL  

now we will get these parameters in form of Python Dictionary, using Flask

- Flask - is a framework that does a lot of job for us
    - for example it helps us to get URL parameters in form of Python Dictionary
    - find files or images which human wants to see, when visit our web site
    - even helps to send emails automatically, when for example someone fills out a form, we can dynamically send them email as well
    

and to do all of that we need some pretty minimalist requirements of this framework:
- app.py - where our web application is going to live 
- requirements.txt - dependencies on libraries. In this file we list names of those libraries
- static/ - folder, in which files, that are not going to change: Images, CSS, JS files
- templates/ - folder with HTML files for different web pages

do we have to build wep apps like that? - No  
however, it is convention for this particular framework

there are other frameworks like: Django, ASP.net etc

Flask is a very nice Micro Framework, with minimalist requirements

- __name__ - refers to the name of the current file

for the very 1st iteration of creating a simple web app - that only says Hello to user, we need this Python code in app.py:

In [None]:
from flask import Flask, render_template, request

# tells Flask: "turn this file into Flask application"
app = Flask(__name__)

# when to call index function:
@app.route("/")
# function, which when is called - returns result of rendering html file
def index():
    return render_template("index.html")

- render html file - print on users screen

@app.route("/") - Decorator in Python:  
- Decorator in Python - is a special type of function that modifies another function

@app.route("/") - define Route for "/" (i.e. default page on our web application)

after creating index.html file, which has nothing else than simply say hello, we then can Run our application  
http-server - is static, it does not know about Python, so if we would open app.py from that server, it would only show Python code and nothing else

- *flask run* - runs server Flask server

we see our static page, but what if we add : */?name=David* at the end of URL? - Nothing changed, but!  
the opportunity to get that input from that URL and start displaying it to the User

    <body>
        hello, ???
    </body>

in ??? we need some kind of placeholder to add there name of user from URL

    <body>
        hello, {{ name }}
    </body>

In [None]:
    name = request.args.get("name") # go to the current request, into its arguments in URL, and get value of Name parameter
    return render_template("index.html", name=name)

that is how we can get value from URL parameters

to ensure that the form is filled, we could add "required" parameter to form tag:  


In [None]:
<input autocomplete="off" autofocus name="name" placeholder="Name" required type="tex">

however, we should never rely logic on Client side, since if curious user change HTML code, it can let it then go the page without filling this form

# Design

when we add "greet.html" and "index.html", we can see that this is Bad design, since there are so much repetition out there,  
what if we have 100 different scenarios?  
if we would want to change something in one place, we then would need to change this in 100 places!

so we need ability to factor out commonalities

We can create one file "layout.html" - and add Placeholder for blocks in body:

In [None]:
<!DOCTYPE html>

<html lang="en">
    <head>
        <meta name="viewport" content="initial-scale=1, width=device-width">
        <title>hello</title>
    </head>
    <body>
        {% block body %}{% endblock %}
    </body>
</html>

and then we need to change our index.html file:

In [None]:
{% extends "layout.html" %}

{% block body %}

    <form action="/greet" method="get">
        <input autocomplete="off" autofocus name="name" placeholder="Name" required type="text">
        <input type="submit">
    </form>

{% endblock %}

this means that this file extends Layout.html

{% ... %} - example of **Jinja** syntax

- Jinja language - was invented for Templates

it is better in design

# Privacy

When the form is filled and submitted, the result is added into URL

this might be dangerous, since we do not want to share some sensitive information with Browser history, we want to provide it in more safety manner

we can change method from GET to POST:

In [None]:
    <form action="/greet" method="post">

however, we then will se error : "Method Not Allowed"  
because Flask supports GET method by default,  
we then can change its behavior:

In [None]:
@app.route("/greet", methods=["POST"])

and then to get value from POST requests, we need to use *request.form*

In [None]:
    name = request.form.get("name", "world") # world - default value, if nothing passed

# MVC (Model View Controller) paradigm

Flask is just one of available frameworks that all represent the same Paradigm  
![](./pic/MVC.png)

- Controller - app.py - code that implements Business Logic (makes all decisions: what to render, what values to show etc)
- View - layout.html, greet.html, ... - templates or Visualizations that Users see (UI), those things are dumb - they just say "plop some values here"
- Model - csv files or DataBases, where we keep data

# First year intramural sports app

we create web app that stores your name, email and sport that you want to register for in DataBase and sends you email confirmation

# Session

- Session - is a feature that is similar to Shopping Cart - when we add things to shopping cart, they follow us from page to page

When we are logged in to some wep-site during some time we still logged in

### Cookies  
The similar term is Cookies - something that remembers information

Gmail gives a very long session time to its users

Cookie - is some big number that is put on your computer by a web site to know that you is you, when you receive HTTP response from wep site  
since it is very big and random, there is very very low probability that someone can just guess it and pretend to be you

this part web-site sends to us: *Set-Cookie: session=value*  
and then in subsequent requests we send *Cookie: session=value*

to illustrate this we can create simple Log in app

Sessions are supported in Flask Framework

Session Configuration: there are different ways to Server can store Cookies in:
- DataBase
- File
- Memory
- RAM
- other places

in our example we are telling Server to store these Cookies in Server's Hard drive

- When we connect to API - it would return JSON data to us
    - We can convert it to HTML code to show on a page
- HTML and CSS are user to present the data (view)
- Python - to send or get data on the Backend server 
- JavaScript is used to make things Dynamic and Interactive

- we can use GitHub to store code
- Netlify - to store web-site on Internet
- Heroku - to host more dynamic web site, which takes inputs etc