## Overview

This lab will use *flask* to create a simple web application.  The application will have a simple API that processes a request parameter and echoes it back to the user.  

Initially, the application is susceptible to a reflected XSS attack.  


### Step 1: Create a simple web application
Create and run a simple web application.

> **Note**: The application will be running on port 5000.  The cell will run forever, so you will need to interrupt the kernel to stop the application.

```python
from flask import Flask, request

app = Flask(__name__)
@app.route("/")
def say_hello():
    your_name = request.args.get('name')
    return "Hello %s" % your_name
```
Add this code to the cell below and run it.

Now, run the applicationm.  Remember, the application will run forever, so you will need to interrupt the kernel to stop the application.

```python
app.run()
```
Add this code to the cell below and run it.

Now, open a browser and navigate to `http://localhost:5000/?name=world`.  You should see the message `Hello world` displayed in the browser.

### Step 2: Reflected XSS attack
Now, let's see how the application is susceptible to a reflected XSS attack.  In the browser, navigate to `http://localhost:5000/?name=<script>alert('XSS')</script>`.  You should see an alert box displayed in the browser.

### Step 3: Fix the reflected XSS attack
To fix the reflected XSS attack, we need to escape the user input.  Modify the code to escape the user input.

```python
from flask import Flask, request
from markupsafe import escape

app = Flask(__name__)
@app.route("/")
def say_hello():
    your_name = request.args.get('name')
    return "Hello %s" % escape(your_name)
app.run()
```
Modify the code in the previous code cell to escape the user input and rerun the application.

Now, the hostile script is simply echoed back to the user, rather than being executed.  We should also validate the input to ensure that it is safe to use.  We can use the `re` module to validate the input.

```python
import re
from flask import Flask, request
from markupsafe import escape

app = Flask(__name__)
@app.route("/")
def say_hello():
    your_name = request.args.get('name')
    if re.match("^[a-zA-Z0-9]*$", your_name):
        return "Hello %s" % escape(your_name)
    else:
        return "Invalid input"
app.run()
```

Modify the code in the previous code cell to validate the input and rerun the application.