 # **RESTFUL API & FLASK**

# Theory Questions

1. What is a RESTful API?
2. Explain the concept of API specification.
3. What is Flask, and why is it popular for building APIs?
4. What is routing in Flask?
5. How do you create a simple Flask application?
6. What are HTTP methods used in RESTful APIs?
7. What is the purpose of the @app.route() decorator in Flask?
8. What is the difference between GET and POST HTTP methods?
9. How do you handle errors in Flask APIs?
10. How do you connect Flask to a SQL database?
11. What is the role of Flask-SQLAlchemy?
12. What are Flask blueprints, and how are they useful?
13. What is the purpose of Flask's request object?
14. How do you create a RESTful API endpoint using Flask?
15. What is the purpose of Flask's jsonify() function?
16. Explain Flask's url_for() function.
17. How does Flask handle static files (CSS, JavaScript, etc.)?
18. What is an API specification, and how does it help in building a Flask API?
19. What are HTTP status codes, and why are they important in a Flask API?
20. How do you handle POST requests in Flask?
21. How would you secure a Flask API?
22. What is the significance of the Flask-RESTful extension?
23. What is the role of Flask's session object?

Answer 01
- A RESTful API follows REST (Representational State Transfer) principles,  
  using standard HTTP methods to perform operations on resources.
- Example
  - GET /users        -> Fetch users
  - POST /users       -> Create a user
  - GET /users/1      -> Get user with ID 1
  - PUT /users/1      -> Update user 1
  - DELETE /users/1   -> Delete user 1

Answer 02
- An API specification is a formal description of the structure and behavior of
  an API. It defines endpoints, request/response formats, and more.
- Tools: OpenAPI (Swagger)

Answer 03
- Flask is a micro web framework in Python. It's lightweight and easy to use  
  for small or large applications.
- Why popular:
  - Simple to set up
  - Flexible
  - Great extensions (e.g., Flask-RESTful)

Answer 04
- Routing maps URL paths to Python functions.

In [2]:
# Example

@app.route('/hello')
def hello():
    return "Hello!"

Answer 05
- Create a Simple Flask App

In [4]:
from flask import Flask
app = Flask(__name__)

@app.route('/')
def index():
    return "Welcome to Flask!"

if __name__ == '__main__':
    app.run(debug=True)

Answer 06
- GET: Retrieve data
- POST: Create new data
- PUT: Update data
- DELETE: Remove data
- PATCH: Partially update

Answer 07
- It defines which URL triggers which function.

In [None]:
# Example

@app.route('/about')
def about():
    return "About page"

Answer 08
- GET: Retrieves data, parameters in URL, safe and idempotent.
- POST: Sends data to server, parameters in body, not idempotent.

Answer 09
- Use error handlers or return custom responses.

In [None]:
# Example

@app.errorhandler(404)
def not_found(e):
    return {"error": "Not Found"}, 404

Answer 10
- Use Flask-SQLAlchemy:

In [None]:
from flask_sqlalchemy import SQLAlchemy

app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///test.db'
db = SQLAlchemy(app)

Answer 11
- It simplifies working with databases in Flask by using an ORM to manage  
  tables as Python classes.

In [None]:
# Example

class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(80))

Answer 12
- Blueprints allow app components (routes, models) to be organized into modules.

In [None]:
# Example

user.py
from flask import Blueprint
user_bp = Blueprint('user', __name__)

@user_bp.route('/profile')
def profile():
    return "User Profile"

In [None]:
# Then register in main app:

app.register_blueprint(user_bp)

Answer 13
- It gives access to incoming request data.

In [None]:
# Example

from flask import request

@app.route('/greet', methods=['POST'])
def greet():
    name = request.json['name']
    return f"Hello, {name}!"

Answer 14
- Create Restful API Endpoint through flask.

In [None]:
@app.route('/api/user/<int:id>', methods=['GET'])
def get_user(id):
    return {"id": id, "name": "John Doe"}

Answer 15
- It converts Python dictionaries to JSON response with proper headers.

In [None]:
# Example

from flask import jsonify

@app.route('/data')
def data():
    return jsonify({"msg": "Hello"})

Answer 16
- It builds a URL to a view function dynamically.

In [None]:
# Example

@app.route('/home')
def home():
    return "Home"

# somewhere else
url_for('home')  # returns '/home'

Answer 17
- It serves them from the /static folder automatically.

In [None]:
# Example folder

# /static/css/style.css

In [None]:
# Access in HTML

# <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">

Answer 18
- It describes API structure. It helps:
 - Standardize development
 - Auto-generate documentation
 - Improve team collaboration
 - Tool: Swagger/OpenAPI

Answer 19
- They indicate the result of a request.
- Examples:
  - 200 OK
  - 201 Created
  - 400 Bad Request
  - 404 Not Found
  - 500 Internal Server Error



In [None]:
# Flask Example

# return {"msg": "Success"}, 200

Answer 20
- Handle POST Request in flask

In [None]:
@app.route('/submit', methods=['POST'])
def submit():
    data = request.json
    return {"received": data}, 201

Answer 21
- Use HTTPS
- Authentication (e.g., JWT)
- Input validation
- Rate limiting (e.g., Flask-Limiter)
- Avoid exposing secrets

In [None]:
# Example

from flask_jwt_extended import jwt_required

@app.route('/secure')
@jwt_required()
def secure():
    return "Protected data"

Answer 22
- It simplifies API development by supporting resource-based routing.

In [None]:
# Example

from flask_restful import Resource, Api

api = Api(app)

class Hello(Resource):
    def get(self):
        return {"msg": "Hello"}

api.add_resource(Hello, '/hello')

Answer 23
- It stores user-specific data across requests (cookies).

In [None]:
# Example

from flask import session

@app.route('/login')
def login():
    session['user'] = 'john'
    return "Logged in"

@app.route('/dashboard')
def dashboard():
    user = session.get('user', 'Guest')
    return f"Welcome, {user}"

# Practical Questions

1. How do you create a basic Flask application?
2. How do you serve static files like images or CSS in Flask?
3. How do you define different routes with different HTTP methods in Flask?
4. How do you render HTML templates in Flask?
5. How can you generate URLs for routes in Flask using url_for?
6. How do you handle forms in Flask?
7. How can you validate form data in Flask?
8. How do you manage sessions in Flask?
9. How do you redirect to a different route in Flask?
10. How do you handle errors in Flask (e.g., 404)?
11. How do you structure a Flask app using Blueprints?
12. How do you define a custom Jinja filter in Flask?
13. How can you redirect with query parameters in Flask?
14. How do you return JSON responses in Flask?
15. How do you capture URL parameters in Flask?

In [None]:
# Solution 01

from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
# Solution 02

# Flask automatically serves files in the /static folder.

# Folder Structure

# /static/css/style.css

# HTML Usage

# <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">

In [None]:
# Solution 03

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return "Form submitted"
    return "Submit Form"

In [None]:
# Solution 04

# Put templates in a /templates folder.

from flask import render_template

@app.route('/hello')
def hello():
    return render_template('hello.html', name='John')

In [None]:
# templates/hello.html:

<h1>Hello, {{ name }}!</h1>

In [None]:
# Solution 05

from flask import url_for

@app.route('/dashboard')
def dashboard():
    return "Dashboard"

@app.route('/link')
def link():
    return url_for('dashboard')  # returns '/dashboard'

In [None]:
# Solution 06

from flask import request

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form['username']
        return f"Welcome, {username}"
    return '''
        <form method="post">
            <input name="username">
            <input type="submit">
        </form>
    '''

In [None]:
# Solution 07

# Use Flask-WTF or manually validate:

@app.route('/register', methods=['POST'])
def register():
    email = request.form.get('email')
    if not email or "@" not in email:
        return "Invalid email", 400
    return "Registered!"

In [None]:
# Solution 08

from flask import session

app.secret_key = 'your_secret_key'

@app.route('/set')
def set_session():
    session['username'] = 'john'
    return "Session set"

@app.route('/get')
def get_session():
    return session.get('username', 'Not logged in')

In [None]:
# Solution 09

from flask import redirect

@app.route('/old')
def old():
    return redirect('/new')

@app.route('/new')
def new():
    return "This is the new page"

In [None]:
# Solution 10

@app.errorhandler(404)
def not_found(e):
    return render_template('404.html'), 404

In [None]:
# templates/404.html

<h1>Page Not Found</h1>

In [None]:
# Solution 11

# user.py

from flask import Blueprint

user_bp = Blueprint('user', __name__)

@user_bp.route('/profile')
def profile():
    return "User Profile"

In [None]:
# app.py

from user import user_bp

app.register_blueprint(user_bp, url_prefix='/user')


In [None]:
# Solution 12

@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

In [None]:
# In template

{{ 'hello'|reverse }}

In [None]:
# Solution 13

from flask import redirect, url_for

@app.route('/go')
def go():
    return redirect(url_for('search', q='flask'))

@app.route('/search')
def search():
    return f"Search query: {request.args.get('q')}"

In [None]:
# Solution 14

from flask import jsonify

@app.route('/api/data')
def data():
    return jsonify({"name": "Alice", "age": 25})

In [None]:
# Solution 15

@app.route('/user/<username>')
def show_user(username):
    return f"User: {username}"

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f"Post ID: {post_id}"