In [None]:
#Flask
#Flask enables you to write python for the web
#We store it in a .py file rather than a Jupyter notebook

In [None]:
#library
from flask import Flask

In [None]:
#Create the app (the file you are using)
app = Flask(__name__)

In [None]:
#Define what to do when the user hits the index route (the home page)
@app.route("/")
def home():
    print("Whatever you want so long as you only expect to find it in the console")
    return("Public-facing web text")



In [None]:
#This initializes the app-- it makes it run
#It's found at the end of your code
if __name__ == "__main__":
    app.run(debug=True)

In [None]:
#To parse something to json format, use jsonify()
return jsonify(dictionary)
    #return jsonify(__________)
    #               (the dictionary you want to appear in json)

In [None]:
#Variable paths 
#Urls entered by the user

@app.route("/api.justice-league/and-so-on/<real_name>")
def justice_league_by_real_name(real_name)

    canonicalized = real_name.replace(" ", "".lower())
    for character in justice_league_members:
        search_term = character["real_name"].replace(" ", "").lower()
            
        if search_term == canonicalized:
            return jsonify(character)
        
    return jsonify({"error": "result not found"})    


In [None]:
#To serve html from another file
#Note: this method relies upon having a folder called "templates" in the same folder as the script running flask
#That then becomes the template for whatever you put in the text field (or variable)
@app.route("/whatever")
def echo():
    return render_template("index.html", text = "literally whatever")

#In html, the variables go in with double curly braces wherever you want them
<h1> {{text}} <h1>

#Doing a loop looks something like this:
{% for name in list %}
{{name}}
{% endfor %}

#To return a value in a dictionary, you call it like this in the html:
{{dict.player_1}}
    #{{_______________.____________}}
    #(dictionary name)    (key)

In [None]:
#You can connect to pymongo in flask to serve data to the web

conn = 'mongodb://localhost:27017'
client = pymongo.MongoClient(conn)

### Revision 12/23/19

More sophisticated code, including separation of concerns.

In [None]:
#Creating a package to run an application

#1) Create a folder called app. Inside it, create an __init__.py file

from flask import Flask

app = Flask(__name__)

from app import routes

In [None]:
#2) Create all routes in their own file within the app file

from app import app

@app.route('/')

@app.route('/home')
def home():
    return "Hello World!"

In [None]:
#3) Create a templates file in the app directory (app/templates). Your html files go in here.

In [None]:
#Create the main application file at the top level

from app import app

In [None]:
#To set flask as an environment variable in the console

export FLASK_APP=flaskapp.py
    #export FLASK_APP=______________
    #                (main application file name)

#To run the app
flask run

#To run a shell to input items directly into the database
flask shell

In [None]:
#Returning render template with variables

#Python
@app.route('/index')
def index():
    dictionary = {'variable' : 'example'}
    return render_template('index.html', title = 'Home', dictionary = dictionary)

#HTML
<html>
    <head>
        <title>{{ title }} - Website </title>
        #Returns home in the title bar
    </head>
    <body>
        <h1>Hello, {{dictionary.variable}}</h1>
        #Returns example in body of the webpage
    </body>
</html>

In [None]:
#Control statements with Jinja2
#Control statements are indicated in html with single curly braces {% ____ %}

#Conditionals
{% if variable %}

{% else %}

{% endif %}

#Loops

{% for post in posts %}
<div><p> {{ post.author.username }} says:
    <b>{{ post.body }}</b></p></div>
{% endfor %}


In [None]:
#Template Inheritance
#Flask allows you to create a base template for elements of a webpage that don't change (like a navbar)

#Base.html uses block statements to declare where the new content will go
{% block content %}{% endblock %}

#The inheritor page now gets a special modifier at the top

{% extends "base.html"%}

{% block content %}
WHATEVER YOU WANT IN HERE
{% endblock %}

In [None]:
#Subtemplates with jinja2

#A template stored in a separate html file can be added wherever it's necessary using {% include %}

#In HTML:
{% include '_post.html' %}

In [None]:
#Reusing templates

#A different route and function may call an already used template

@app.route('/duplicate')
def duplicate():
    return render_template('index.html', title="Different Title than Index.html")

#Use appropriate conditionals in the reused page to keep it from crashing
{% if form %}
...
{% endif %}

In [None]:
#@before_request decorator

#Registers the function to occur before the view function (should be at top of code)

@app.before_request
def before_request():
    #[...]
    

In [1]:
#Pagination (native with flask_sqlalchemy)

#Instead of querying with .all(), query with .paginate()

post = user.posts.paginate(page, app.config['POSTS_PER_PAGE'], False)
    #________.________.paginate(__________,   __________,    __________)
    # (db variables)         (starting page) (items per page) (T: returns 404 when page out of index, else empty list)


#1. Add the number of items per page in the config file
class Config(object):
    #...
    POSTS_PER_PAGE = 10
    
#Add the pagination to urls within the application
@app.route('/', methods = ['GET', 'POST'])
def index():
    page = request.args.get('page', 1, type=int)
    
#Add the .paginate() function (also on the routes page)
    #[...]
    posts = current_user.followed_posts().paginate(
        page, app.config['POSTS_PER_PAGE'], False)
    return render_template('index.html, posts=posts.items')

In [None]:
#Flask_WTF

#Flask_wtf allows you to create templates for forms (inside website html)

{% block content%}

<form action ="" method="post" novalidate>
#action = the website to submit the form info to. An empty string indicates that it should be submitted to the current webpage.
#novalidate = designates lack of client-side validation (aka this form uses server-side validation)

{{form.hidden_tag()}}
#protects from CSFF attacks. Uses the secret key defined in configuration files

#To display a form label (inside html):
{{ form.username.label }}
    # {{ form.______________.label}}
    #         (field name)

#To display the form:
{{ form.username(size = 32) }}
    # {{ form._____________(size = ______)}}
    #         (field name)       (size of form)
    #                      (This is also how you attach css classes and ids)

In [None]:
#POST Requests
#(GET requests are the default)
@app.route('/whatever', methods = ['GET', 'POST'])

### Blueprints

Using blueprints allows you to separate modules within your code

In [None]:
#A blueprint looks like this

app/
    errors/             #Blueprint package
        __init__.py     #Blueprint creation
        handlers.py     #Blueprint handlers
    templates/
        errors/
            404.html    #Error templates
            500.html
    __init__.py         #Blueprint registration

In [None]:
#Initializing the blueprint (in the file marked 'blueprint creation' above)

from flask import Blueprint

bp = Blueprint('errors', __name__)

from app.errors import handlers

In [None]:
#Import into main application initialization like this...

app = Flask(__name__)

from app.errors import bp as errors_bp
app.register_blueprint(errors_bp)

#You can add a prefix to the route:

from app.errors import bp as errors_bp
app.register_blueprint(errors_pb, url_prefix='/auth')

In [None]:
#Defining routes in a blueprint

@bp.route('/same-template-new-location')
def whatever():
    ....

In [None]:
#Url_for argument in a blueprint

url_for(blueprint.whatever)
    #url_for(_______________.___________)
    #    (blueprint package)   (route)

In [None]:
#Elimination of global app variable (in init.py)

In [None]:
#1) Import all packages
from flask import Flask
from config import Config
from flask_sqlalchemy import SQLAlchemy
from flask_migrate import Migrate

#2) Create an instance of the extensions you need

db = SQLAlchemy()
migrate = Migrate()

#3)Initialize the app inside a function

def create_app(config_class=Config):
    app = Flask(__name__)
    app.config.from_object(config_class)

#4) Initialize the instances of the classes (binding them to the app)

    db.init_app(app, db)
    migrate.init_app(app)
    
#5) Return the app

    return app

In [None]:
#current_app variable

#Acts as a context variable, works like a global variable, but is only available during request handling

from flask import current_app

app.config #-->
current_app.config

#Threading workaround
current_app._get_current_object()

### Command Line Customization in Flask

In [None]:
#Inside a module within your flask app
#Flask uses click to implement command line customizations

#(app/cli.py)

from app import app
import os
import click

@app.cli.group()
    def translate():
        """Translation and localization commands"""
        
@translate.command()
def update ():
    """Update all languages"""
    if os.system('pybabel extract -F babel.cfg -k _l -o messages.pot .'):
        raise RuntimeError('extract comand failed')
    if os.system('pybabel update -i messages.pot -d app/translations'):
        raise RuntimeError('update command failed')
    os.remove('messages.pot')

@translate.command()
@click.argument('lang')
def init(lang):
    """Initialize a new language"""
    if os.system('pybabel extract -F babel.cfg -k _l -o messages.pot .'):
        raise RuntimeError('extract command failed')
    if os.system('pybabel init -i messages.pot -d app/translations -l' + lang):
        raise RuntimeError('init command failed')
    os.remove('messages.pot')

### Flask_WTF

In [None]:
#Form validation (#Flask WTF)

#To validate all form submissions according to a class (can be defined in a forms.py file and imported)
form.validate_on_submit()
    #________.validate on submit()
    #(Form Class)
#form.validate returns either True or False

#Example form class (dependencies: flask_wtf - FlaskForm; wtforms - StringField, PasswordField, BooleanField, SubmitField; wtforms.validators - DataRequired
class LoginForm(FlaskForm)
    username = StringField('Username', validators = [DataRequired()])
    password = PasswordField('Password', validators=[DataRequired()])
    remember_me = BooleanField('Remember Me')
    submit = SubmitField('Sign In')
    
#To display errors in html:
{% for error in form.username.errors %}
#                (field label)
    <span style:"color: red;">[{{ error }}]</span>
{% endfor %}

In [None]:
#Flask_WTF has built in password and email vaildators

import wtforms.validators import ValidationError, DataRequired, Email, EqualTo

class RegistrationForm(FlaskForm):
    ...
    email = StringField('Email', validators = [DataRequired(), Email()])
    password = PasswordField('Password', validators=[DataRequired()])
    password2 = PasswordField('Repeat Password', validators = [DataRequired(), EqualTo('password')])
    ...
    

In [None]:
#Code to ensure unique users and unique email addresses within a registration form

#methods that match the pattern validate_____________ are custom validators for WTForms
class RegistrationForm(FlaskForm):
    #...
    def validate_username(self, username):
        user = User.query.filter_by(username=username.data).first()
        if user is not None:
            raise ValidationError('Error, duplicate username')
    def validate_email():
        user = User.query.filter_by(email=email.data).first()
        if user is not None:
            raise ValidationError('Error, duplicate email')

In [None]:
#Flash function

#In python:
flash("I'm a message".format(form.username.data())

#In html
      {% with messages = get_flashed_messages() %}
          {% if messages %}
      
              {% for message in messages %}
                  {{ message }}
      
              {% endfor %}
          {% endif %}
      {% endwith%}

In [None]:
#url mapping

#In html:
<a href="{{ url_for('index')}}">Home</a>
    #<a href="{{ url_for('__________')}}">_________</a>
    #                 (name of function (not route))

#In python
return redirect(url_for('index'))
    #return redirect(url_for("___________")
    #                         (function name)

In [None]:
#Flask shell commands (for running database operations in the console)

#To set up (in main microblog.py file):

from app import app, db
from app.models import User, Post

@app.shell_context_processor
def make_shell_context():
    return {'db' : db, 'User' : User, 'Post' : Post}
    #return {'________' : ________, '________' : _________}
    #        (dictionary of text inputs matched to variables)

### Flask-Migrate (based on alembic)

In [None]:
#Alembic maintains a migration repository to track changes to the database
#The repository is essentially a bunch of sequentially ordered scripts

#Create a migration repository in the console:
#(flask environment variable must be already set [export FLASK_APP=____________.py])
flask db init

#To migrate the repository automatically
flask db migrate
#-to add a comment
flask db migrate -m "comments are cool"

#To actually change the database
#Push new changes
flask db upgrade
#Remove new changes
flask db downgrade

## Werkzeug (password hasher)

In [None]:
from werkzeug.security import generate_password_hash, check_password_hash

#To generate a password hash:
hash = generate_password_hash('whatever')

#To check whether the password and the hash match (Returns True or False)
check_password_hash(hash, 'password')

#####
#Inside a webapp, this belongs in the same class where the password is defined as a method of the class

class User(db.Model):
    password_hash = db.Column(db.String(128))
    
    def set_password(self, password):
        self.password_hash = generate_password_hash(password)
        
    def check_password(self, password):
        return check_password_hash(self.password_hash, password)

## Flask-Login

In [None]:
#has to be initialized after the application instance (in __init__.py):
from flask_login import LoginManager

app = Flask(__name__)
login = LoginManager(app)

#To implement generic login features:
from flask_login import UserMixin

class User(UserMixin, db.Model):
    #[...]

In [None]:
#Configure a user-loader function to interact with the database of users
from app import login

@login.user_loader
def load_user(id):
    return User.query.get(int(id))

In [None]:
#Logging-in users
from flask_login import current_user, login_user
from app.models import User

@app.route('/login', methods=['GET', 'POST'])
def login():
    #Redirect current users to index
    if current_user.is_authenticated:
        return redirect(url_for('index'))
    #Already instantiated form class
    form = LoginForm()
    ##conditional statement comes from flask-wtf
    if form.validate_on_submit():
        #Query the database withe the form entry
        user = User.query.filter_by(username=form.username.data).first()
        #If the user's name or password is incorrect, return an error message 
        if user is None or not user.check_password(form.password.data):
            flash('Invalid username or password')
            return redirect(url_for('login'))
        #login the user and return them to the homepage
        return redirect(url_for_('index'))
    return render_template('login.html')

In [None]:
#Logging out users
from flask_login import logout_user

@app.route('/logout')
def logout():
    logout_user()
    return redirect(url_for('index'))


In [None]:
#Requiring Users to Login
#Putting this in the init.py file tells flask where it should redirect people who aren't signed in
login = LoginManager(app)
login.login_view = 'login'
    #login.login_view = '____________'
    #                    (endpoint variable- what you would put inside a 'url_for()' tag)
    
#To actually restrict access to an endpoint

@app.route('/index')
@login_required
    def index():
        # ...

In [None]:
#Redirects with required logins

#Using the @login_required decorator will communicate the website where a user was before redirect

#The next query string tells the redirect where to point
#(URL becomes /login?next=/index)

def login():
    if form.validate_on_submit():
        user = User.query.filter_by(username=form.username.data).first()
        if user is None or not user.check_password(form.password.data):
            flash('Invalid Username or Password')
            return redirect(url_for('login'))
        #Call the function that logs a user in
        login_user(user, remember=form.remember_me.data)
        #Set the next_page to tell the next function where to redirect
        #1) Retrieve the info the client sent with the request (in dictionary form)
        next_page = request.args.get('next')
        #2) Case Statements for security
            #1)If no next statement, send to index. If statement isn't a relative url, send to index. Else, send to appropriate redirect location.
        if not next_page or url_parse(next_page).netlog != '':
            next_page = url_for('index')
        return redirect(next_page)

In [None]:
#Variable urls 

#Text between < > takes the argument of the subfunction 
@app.route('/user/<username>')
def user(username):
    return render_template('user.html')
    #@app.route('_______/<________>')
    #            (path)  (variable)
    #def ______________(________________________)
    #   (function name) (same variable as above)
        #return render_template('________.html')
        #                         (path)
    
#To link to an address like this in html, the url_for argument is rendered:
{{ url_for('user', username=current_user.username) }}
    #{{ url_for('__________' _________ = __________________)}}
    #            (path)     (variable)  (value of variable)

## Error-handling

In [None]:
#Debug mode can be set in console as:

export FLASK_DEBUG=1

In [None]:
#Flask's @errorhandler decorator lets you install custom error pages

@app.errorhandler(404)
def not_found_error(error):
    return render_template('404.html'), 404

#You also may want to issue a rollback to prevent database errors from breaking everything

@app.errorhandler(500)
def internal_error(error):
    db.session.rollback()
    return render_template('500.html'), 500

In [None]:
#To set up the application to send you an email when an error occurs

#In your config file:
class Config(object):
    # ...
    MAIL_SERVER = os.environ.get('MAIL_SERVER')
    MAIL_PORT = int(os.environ.get('MAIL_PORT') or 25)
    MAIL_USE_TLS = os.environ.get('MAIL_USE_TLS') is not None
    MAIL_USERNAME = os.environ.get('MAIL_USERNAME')
    MAIL_PASSWORD = os.environ.get('MAIL_PASSWORD')
    ADMINS = ['your-email@example.com']
    
#In your init file:
import logging
from logging.handlers import SMTPHandler

# ...

if not app.debug:
    if app.config['MAIL_SERVER']:
        auth = None
        if app.config['MAIL_USERNAME'] or app.config['MAIL_PASSWORD']:
            auth = (app.config['MAIL_USERNAME'], app.config['MAIL_PASSWORD'])
        secure = None
        if app.config['MAIL_USE_TLS']:
            secure = ()
        mail_handler = SMTPHandler(
            mailhost=(app.config['MAIL_SERVER'], app.config['MAIL_PORT']),
            fromaddr='no-reply@' + app.config['MAIL_SERVER'],
            toaddrs=app.config['ADMINS'], subject='Microblog Failure',
            credentials=auth, secure=secure)
        mail_handler.setLevel(logging.ERROR)
        app.logger.addHandler(mail_handler)

In [None]:
#To log errors to a file

#In the config file:
from logging.handlers import RotatingFileHandler
import os

#Only runs if the server's in production mode
if not app.debug:
    #Creates the log path if it doesn't already exist
    if not os.path.exists('logs'):
        os.mkdir('logs')
    #Rotating file handler manages the size of the logs - 10k size max, last 10 backups
    file_handler = RotatingFileHandler('logs/microblog.log', maxBytes=10240, backupCount=10)
    #Custom formatting for log messages (what to include)
    file_handler.setFormatter(logging.Formatter(
        #Time stamp, Logging Level, Message, Source file, and Line Number
        '%(asctime)s %(levelname)s: %(message)s [in %(pathname)s:%(lineno)d]'))
    #Logs only INFO category and above
    file_handler.setLevel(logging.INFO)
    app.logger.addHandler(file_handler)
    #Writes a startup line every time the server starts
    app.logger.setLevel(logging.INFO)
    app.logger.info('Microblog startup')

### Flask-Mail

In [None]:
#To configure the extension as part of your webapp

class Config(object)
    MAIL_SERVER = os.environ.get('MAIL_SERVER')
    MAIL_PORT = int(os.environ.get('MAIL_PORT') or 25)
    MAIL_USE_TLS = os.environ.get('MAIL_USE_TLS') is not None
    MAIL_USERNAME = os.environ.get('MAIL_USERNAME')
    MAIL_PASSWORD = os.environ.get('MAIL_PASSWORD')
    ADMINS = ["email@email.com"]

In [None]:
#Create instance of flask mail (in init.py file)

from flask_mail import Mail

app = Flask(__name__)
# ...
mail = Mail(app)

In [None]:
#Create a wrapper function to use to send emails

from flask_mail import Message
from app import mail

def send_email(subject, sender, recipients, text_body, html_body):
    msg = Message(subject, sender=sender, recipients=recipients)
    msg.body = text_body
    msg.html = html_body
    mail.send(msg)

### Encoding with JSON Web Tokens (JWT)

In [None]:
#Useful for sending encrypted password reset links

#Create a method of the user class to call when necessary

import jwt
from time import time

class User(UserMixin, db.Model):
    
    #Generates the token
    def get_token(self, expires_in=600):
        return jwt.encode(
        {'reset_password' : self.id, 'exp' : time() + expires_in},
            app.config['SECRET_KEY'], algorithm='HS256').decode('utf-8')
    
    #Reads the token to determine if it's correct
    @staticmethod
    def verify_token(token):
        try:
            id = jwt.decode(token, app.config['SECRET_KEY'],
                           algorithms=['hHS256'])['reset_password']
        except:
            return
        return User.query.get(id)
        

### Flask Bootstrap

Library that implements bootstrap within an existing flask app 

In [None]:
#Initializing the package (in init.py file)

#This creates a bootstrap/base.html template that can be referenced within the application (w/ extends)

from flask_bootstrap import Bootstrap

app = Flask(__name__)
bootstrap = Bootstrap(app)

In [None]:
#Flask bootstrap can render forms using bootstrap styling with a single macro

{% import 'bootstrap/wtf.html' as wtf %}

{% block content %}

<div class="col-md-4">
    {{ wtf.quick_form(form) }}
</div>

{% endblock %}

### Flask-Moment (w/ moment.js)

Time-zone handling 

In [None]:
#Initialization (in init.py)

from flask_moment import Moment

moment = Moment(app)

In [None]:
#Include moment via script tag or as a function call in your base template

#The scripts block is inherited from the flask-bootstrap library. It won't work if you're not also using that.
{% block scripts %}
    {{ super() }}
    {{ moment.include_moment() }}

{% endblock %}

#The super call above preserves the content in the base template

In [None]:
#Moment formatting options

moment('2017-09-28T21:45:23Z').format('L')
"09/28/2017"
moment('2017-09-28T21:45:23Z').format('LL')
"September 28, 2017"
moment('2017-09-28T21:45:23Z').format('LLL')
"September 28, 2017 2:45 PM"
moment('2017-09-28T21:45:23Z').format('LLLL')
"Thursday, September 28, 2017 2:45 PM"
moment('2017-09-28T21:45:23Z').format('dddd')
"Thursday"
moment('2017-09-28T21:45:23Z').fromNow()
"7 hours ago"
moment('2017-09-28T21:45:23Z').calendar()
"Today at 2:45 PM"

### Internationalization and Localization

Working with different languages

In [None]:
#Initialize flask-babel

from flask_babel import Babel

babel = Babel(app)

In [None]:
#Configure language options in the config object

class Config(object):
    # ...
    LANGUAGES = ['en', 'es']

In [None]:
#Language preferences are returned on the client-side. Babel can access them with the decorator @localeselector

from flask import request

@babel.localeselector
def get_locale():
    return request.accept_languages.best_match(app.config['LANGUAGES'])

In [None]:
#Babel scans for marked texts and extracts them using the gettext file.

from flask_babel import _

#Basic text
flash(_('Your post is now live!'))

#with a {} in the middle
flash(_('User %(username)s not found.', username=username))

#In html/jinja
<h1> I'm a header </h1>
#becomes
<h1>{{ _('File Not Found') }}

#To implement as lazy (called after the text)
from flask_babel import lazy_gettext as _1

class LoginForm(FlaskForm):
    username = StringField(_1('Username'), validators=[DataRequired()])

In [None]:
#Extracting text

#Create configuration file to tell pybabel where to stroe the translatable texts
#babel.cfg
[python: app/**.py]
[jinja2: app/templates/**.html]
extensions=jinja2.ext.autoescape,jinja2.ext.with_

#To extract files (in command line)
pybabel extract -F babel.cfg -k _1 -o messages.pot .
#-F babel.cfg is flag for configuration file
#-k _1 marks theflag as nondefault (_ is default)
#-o passes the name of the translation file

In [None]:
#Generating a language catalogue

#Command line
pybabel init -i messages.pot -d app/translations -l es
#-i specifies the file to translate
#-d specifies where to put the translation
#-l specifies the language

In [1]:
#Translation can be done via third party app (like poedit or po.vim or can be done manually)

In [None]:
#Compiling the translated file

#Command line
pybabel compile -d app/translations

In [None]:
#To update language catalogue:

#Generate new .pot file
pybabel extract -F babel.cfg -k _l -o messages.pot .
#Update existing .po files 
pybabel update -i messages.pot -d app/translations

In [None]:
#Using flask_babel to implement localization in moment
from flask import g
from flask_babel import get_locale

#In routes.py file
@app.before_request
def before_request():
    g.locale = str(get_locale())

#In base.html file (assuming it's configured w/ flask bootstrap):
{% block scripts %}
    {{ super() }}
    {{ moment.include_moment() }}
    {{ moment.lang(g.locale) }}
{% endblock %}
    
    

### Working with Javascript

In [None]:
#Javascript within script tags can take python variables passed to it

<script>

    function translate(sourceElem, destElem, sourceLang, destLang) {
        #AJAX POST CALL. Requires target url followed by a JS Object (Python dictionary) containing the data parameters
        $.post('/translate', {
            text: $(sourceElem).text(),
            source_language: sourceLang,
            dest_language: destLang
        }).done(function(response) {
            $(destElem).text(response['text'])
        }).fail(function() {
            $(destElem).text("Error: No server response");
        })''
    }

</script>

#This can be called in a corresponding html function by passing it as a hyperlink and providing the necessary arguments

<a href="javascript:translate(
    '#post{{ post.id }})'"
    '#translation{{ post.id }}';"> Link </a>

### Basic Work-Flow

##### Adding a feature (user input, storage, and display):

1. Add a class in your forms file to define a new input sheet.

    class UserInput(FlaskForm):
        input1 = StringField('label', validators=...)
        input2 = ...
        submit = SubmitField('Submit')

2. Add the form to corresponding html page.
    
    <form action="", method="post">
        {{ form.post.label }}
        {{ form.post(size=...)}}
        {{ form.submit() }}
    </form>

3. Add form & handling to the view function (routes.py)

    @app.route('/', methods=['GET', 'POST'])
    def index():
        form = UserInput()
        if form.validate_on_submit():
            db_variable = DB_Class(instance=form.db_variable.data. ...)
            db.session.add(db_variable)
            db.session.commit()
            return redirect(url_for('index'))
            
            ...
            
        return render_template('index.html, title="Title", form=form")