#Theory Questions

1. What is a RESTful API?

--> A RESTful API is an application programming interface that follows the architectural style known as Representational State Transfer (REST), allowing communication between computer systems over the internet using standard web protocols like HTTP.

Key Characteristics

RESTful APIs organize resources (such as data objects) into clear, unique URLs that represent specific entities, with actions performed using standardized HTTP methods like GET, POST, PUT, and DELETE.

The communication is stateless, meaning each request from a client must contain all necessary information, with the server not retaining previous session data.

Responses are typically delivered in formats like JSON or XML, making the APIs platform-agnostic and easily consumable across web and mobile applications

2. Explain the concept of API specification.

--> An API specification is a formal and detailed blueprint or technical description of an API's behavior, structure, and functionality. It defines the elements that an API must contain, including its accessible endpoints, operations, input and output data formats, and the relationships between different API components. This specification is typically created before the API development process begins to guide developers in building an API that meets the defined standards and expectations.

Key Aspects of API Specification

It provides a broad understanding of how the API behaves and interacts with other APIs, describing the expected results from each API call.

API specifications are often written in machine-readable formats such as YAML or JSON, using standardized frameworks like the OpenAPI Specification, allowing automation in generating documentation, client libraries, and test cases.

The specification acts as a contract for both humans (developers) and machines, ensuring consistent and accurate implementation of the API.

It also helps outline the design philosophy, supported data types, security requirements, and data flows of the API.

3. What is Flask, and why is it popular for building APIs?

--> Flask is a lightweight and flexible web framework for Python designed to make web development quick and easy while allowing for scalability in complex applications. It is often referred to as a "microframework" because it provides only the essential components needed to build web applications without imposing dependencies or certain pre-built features like ORMs or form validation, which developers can add as needed through extensions.

Why Flask is Popular for Building APIs

Simplicity and Minimalism: Flask has a simple, intuitive API and minimal base code requirements, making it easy for beginners to learn and start building APIs quickly.

Flexibility and Extensibility: It lets developers choose the tools they want, such as databases or templating engines, and add functionality through extensions without enforcing a strict project structure.

Lightweight and Fast: Because it only includes core essentials by default, Flask applications are lightweight and performant, ideal for creating RESTful APIs and microservices.

Built-in Development Server and Debugger: Flask comes with a built-in server for local testing and debug features that speed up development.

Powerful Routing: Flask uses simple decorators to define URL routes, making API endpoint creation straightforward and readable.

Large Community and Ecosystem: It has robust documentation and a wide array of extensions, making it easy to get support and add features like authentication or database integration.



4.  What is routing in Flask?

--> Routing in Flask is the process of mapping URLs to specific functions in the web application that handle the logic and return responses for those URLs. When a user visits a certain URL or sends a request to an API endpoint, Flask uses routing to determine which function to execute to serve that request.

How Routing Works in Flask

Routes are defined using the @app.route() decorator in Flask, where app is the Flask application instance. The decorator specifies the URL path that triggers the decorated function.

Each route corresponds to a function, called a view function, that contains the logic to process the request and provide a response, which could be HTML content, JSON data, or other outputs.

Routes support dynamic parameters, allowing variable parts of URLs to be captured and passed to the view function for processing. For example, a URL like /user/<username> can capture the username part dynamically.

Flask routes can also handle different HTTP methods like GET, POST, PUT, and DELETE, essential for building RESTful APIs.

Multiple routes can point to the same function, and routes can have optional parameters as well.



```
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Homepage"

@app.route('/hello')
def hello():
    return "Hello, World!"

@app.route('/user/<username>')
def show_user(username):
    return f"User: {username}"

if __name__ == '__main__':
    app.run(debug=True)

```




5.  How do you create a simple Flask application?

--> To create a simple Flask application, follow these steps:

    a. Install Flask

Use pip to install Flask if it is not already installed:

*pip install flask*





    b. Create a Python script (e.g., app.py)


```
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)
Run the Flask application
```


    c. Execute the script:

*python app.py*


    d. Access the app


Open a web browser and go to http://127.0.0.1:5000/  to see the message "Hello, Flask!".

6. What are HTTP methods used in RESTful APIs?

--> The HTTP methods commonly used in RESTful APIs are:

GET
Retrieves data from the server without modifying it. It is a safe and idempotent method used to request a representation of a resource.

POST
Sends data to the server to create a new resource or submit data for processing. It is not idempotent and can change the server state.

PUT
Updates or replaces an existing resource with the provided data. It is idempotent, meaning multiple identical requests have the same effect as a single one.

DELETE
Removes a specified resource from the server. It is idempotent, although repeated deletion of the same resource will return success even if the resource no longer exists.

PATCH
Applies partial modifications to a resource. Unlike PUT, which replaces the entire resource, PATCH updates only the specified fields. It is not necessarily idempotent, depending on implementation.

7. What is the purpose of the @app.route() decorator in Flask?

--> The purpose of the @app.route() decorator in Flask is to bind a specific URL (or route) to a Python function, called a view function, that will handle requests to that URL. This decorator tells Flask which URL should trigger the execution of the decorated function, effectively mapping URL paths to code that responds to those paths.

How It Works

When a request comes in to the URL specified in @app.route(), Flask looks up the function associated with that route and calls it to generate the response.

The decorator registers the function with Flask’s internal routing system, associating the path you give it (e.g., "/") with the function that follows the decorator.

This mechanism enables Flask to serve different content or API responses depending on the requested URL without the function being explicitly called in the code; Flask handles calling the function internally when the route is accessed.

```
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the homepage!"

if __name__ == '__main__':
    app.run(debug=True)

```



8. What is the difference between GET and POST HTTP methods?

--> The GET HTTP method is used to request data from a specified resource on a server. It is designed to retrieve information without causing any side effects or changes to the resource. GET requests pass data through the URL as query parameters, making the data visible in the address bar. Because of this, GET requests are typically used for retrieving non-sensitive information. They can be cached, bookmarked, and stored in browser history. However, GET requests are limited in length due to URL length restrictions and only allow data to be sent in ASCII format. GET is considered a safe and idempotent method as it does not change the server state.

On the other hand, the POST HTTP method is used to send data to a server to create or update a resource. Unlike GET, POST requests pass data in the body of the HTTP request rather than in the URL, allowing for larger amounts of data and a wider variety of content types including binary data. Because POST data is not visible in the URL, it offers relatively better security for sensitive data. POST requests are not cached or bookmarked and do not remain in browser history. They are not idempotent since submitting the same POST request multiple times may cause different effects, such as creating multiple records. POST is commonly used for submitting form data, uploading files, and triggering server-side modifications or processes

9. How do you handle errors in Flask APIs?

--> In Flask APIs, errors are handled by defining custom error handlers that return appropriate responses when specific types of errors occur. This can be done using the @app.errorhandler() decorator, which registers a function to catch exceptions or HTTP error codes and provide a custom response.


```
from flask import Flask, jsonify
import werkzeug.exceptions

app = Flask(__name__)

@app.errorhandler(404)
def not_found_error(e):
    return jsonify(error="Resource not found", status=404), 404

@app.errorhandler(400)
def bad_request_error(e):
    return jsonify(error="Bad request", status=400), 400

```



10. How do you connect Flask to a SQL database?

-->

    1. Install Flask and Flask-SQLAlchemy


pip install flask flask_sqlalchemy

    2. Configure the Flask app to connect to the database



```
from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)

# Example for SQLite. For other DBs, adjust the URI accordingly (e.g., MySQL, PostgreSQL).
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///site.db'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

db = SQLAlchemy(app)

```

    3. Define database models



```
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(20), unique=True, nullable=False)
    email = db.Column(db.String(120), unique=True, nullable=False)

    def __repr__(self):
        return f"<User {self.username}>"

```

    4. Create the database and tables



```
with app.app_context():
    db.create_all()

```
    5. Use the models to interact with the database



```
@app.route('/add_user')
def add_user():
    user = User(username='alice', email='alice@example.com')
    db.session.add(user)
    db.session.commit()
    return "User added!"

```




11. What is the role of Flask-SQLAlchemy?

--> Flask-SQLAlchemy is an extension for Flask that simplifies and enhances the integration of SQLAlchemy, a powerful Object-Relational Mapping (ORM) library, with Flask applications. Its primary role is to make database management easier and more efficient by providing a seamless interface to configure, interact with, and manage SQL databases within Flask projects.

Key Roles of Flask-SQLAlchemy

Simplified Setup and Configuration: Flask-SQLAlchemy abstracts away much of the complex setup required to use SQLAlchemy with Flask. It tightly integrates with Flask’s configuration system, enabling easy database connection setup and management for different environments (development, testing, production).

ORM Functionality: It allows developers to work with database tables as Python classes (models), making database interactions more intuitive by using Python syntax instead of raw SQL queries.

Automatic Session Management: Flask-SQLAlchemy manages database sessions automatically within Flask’s application context, ensuring connections are properly handled during requests and reducing boilerplate code around session lifecycle management.

Simplified Querying: It extends SQLAlchemy’s query interface to work smoothly within Flask, enabling easy CRUD operations and query-building with clear, Flask-friendly syntax.

Support for Multiple Database Systems: Flask-SQLAlchemy supports various SQL databases like SQLite, MySQL, and PostgreSQL, making it versatile for different use cases.

12. What are Flask blueprints, and how are they useful?

--> Flask Blueprints are a way to organize a Flask application into modular, reusable components. They allow grouping related routes, templates, static files, and other code into distinct modules, which can then be registered on an application. This helps keep larger applications well-structured and manageable by breaking them down into smaller, logically separated parts.

How Blueprints Are Useful
Modularity: Blueprints enable developers to split an application into smaller modules, each handling a specific functionality or feature. This reduces complexity and makes the codebase easier to navigate and maintain.

Reusability: By encapsulating routes, templates, and static files within a blueprint, these components can be reused across different projects or multiple times within the same application.

Centralized Registration: Multiple blueprints can be registered on an app with different URL prefixes, making it easy to organize and version routes, such as API versions or user/admin sections.

Extension Support: Flask extensions can use blueprints to register functionality without requiring direct app modifications, enabling cleaner integration.

Separation of Concerns: Blueprints help separate concerns within the app — for example, authentication, blog posts, and API endpoints can live in their own blueprints, simplifying development and testing.

13. What is the purpose of Flask's request object?

--> The purpose of Flask's request object is to act as a container for all the data sent from the client to the server in an HTTP request. It provides access to information such as the request method (GET, POST, etc.), headers, URL parameters, form data, cookies, and files uploaded by the client. This object is automatically created by Flask for each incoming request and is accessible within the request context, allowing developers to interact with and process client-sent data conveniently during request handling.

In essence, the request object enables Flask applications to access and use all relevant details of the client's HTTP request, making it essential for dynamic web interactions and API endpoints where input needs to be processed.

14. How do you create a RESTful API endpoint using Flask?

--> To create a RESTful API endpoint using Flask, follow these steps:

    1. Set up Flask


```
from flask import Flask, jsonify, request

app = Flask(__name__)

```

    2. Define a route representing the API endpoint

```
@app.route('/api/items', methods=['GET'])
def get_items():
    items = [{"id": 1, "name": "item1"}, {"id": 2, "name": "item2"}]
    return jsonify(items)

```

    3. Handle the request and return a JSON response

Use jsonify() to return data in JSON format which is standard for RESTful APIs.

    4. Run the Flask app

```
if __name__ == '__main__':
    app.run(debug=True)

```

Example:
```
from flask import Flask, jsonify, request

app = Flask(__name__)

items = []

@app.route('/api/items', methods=['GET', 'POST'])
def manage_items():
    if request.method == 'GET':
        return jsonify(items)
    elif request.method == 'POST':
        new_item = request.json
        items.append(new_item)
        return jsonify(new_item), 201

if __name__ == '__main__':
    app.run(debug=True)

```




15. What is the purpose of Flask's jsonify() function?

--> The purpose of Flask's jsonify() function is to convert Python data structures like dictionaries or lists into JSON-formatted HTTP response objects automatically. It simplifies the creation of JSON responses for APIs by:

Serializing the data to JSON format.

Setting the proper Content-Type header to application/json to indicate the response is JSON.

Returning a Flask Response object ready to be sent to the client with correct headers and status code (default 200 OK).

Using jsonify() is more convenient and safer than manually converting data with json.dumps() and setting headers yourself. It ensures consistent formatting and response construction, which is essential for RESTful API development with Flask

16. Explain Flask’s url_for() function.

--> Flask's url_for() function is used to dynamically build URLs for specific functions or routes in a Flask application. Instead of hardcoding URLs, url_for() generates the correct URL based on the function name and any parameters it requires. This makes your application more maintainable because if you change the route's URL, you only need to update it in one place without manually changing all links.

How url_for() Works

The first argument is the name of the view function (the Python function that handles the route).

Subsequent keyword arguments represent any dynamic parts of the URL that need to be filled (like URL variables).

It generates an absolute URL path string corresponding to the route.

17.  How does Flask handle static files (CSS, JavaScript, etc.)?

--> Flask handles static files such as CSS, JavaScript, images, and other assets by serving them from a designated folder called static located by default in the root of the Flask project directory.

How Flask Serves Static Files
Flask automatically creates a static file route at /static/ which serves any file placed inside the static folder.

You simply add your static assets (e.g., CSS, JS, images) inside the static directory.

In your HTML templates, you reference these files using a special function url_for('static', filename='filename.ext') that generates the correct URL path for the static file.

```
project/
│
├── app.py
├── static/
│   ├── style.css
│   └── script.js
└── templates/
    └── index.html

```



18. What is an API specification, and how does it help in building a Flask API?

--> An API specification is a detailed, formal description of how an API behaves, including its available endpoints, operations, input and output data structures, and interaction patterns. It essentially serves as an architectural blueprint or contract that defines the API’s functionality in a language-agnostic, machine-readable format, often written in YAML or JSON using standards like the OpenAPI Specification (OAS).

How API Specifications Help in Building a Flask API

Clear Design Blueprint: The specification provides a precise, shared understanding of the API before any code is written, ensuring the API’s design aligns with requirements and expectations. Developers can define endpoints, parameters, response formats, and error codes upfront, making development structured and consistent.

Automation: Tools can use the specification to automatically generate documentation, client SDKs, API mocks, and tests, which speeds up development and reduces errors. For Flask APIs, this can help developers generate boilerplate routes or validate API requests/responses.

Collaboration: An API specification acts as a contract between backend developers, frontend teams, and other stakeholders, improving communication and collaboration. This reduces misunderstandings and streamlines integration.

Validation and Quality Assurance: The specification enables automated validation of requests and responses against the defined schema, ensuring API compliance and reducing bugs in the Flask implementation.

Documentation: When used with tools like Swagger UI or ReDoc, the specification can serve as interactive, up-to-date documentation that helps API consumers understand and use the Flask API easily.

19. What are HTTP status codes, and why are they important in a Flask API?

--> HTTP status codes are three-digit numbers sent by a server in response to a client’s HTTP request. They communicate the outcome of the request, informing the client whether the request was successful, if further action is needed, or if an error occurred.

Importance in Flask API

Indicates Request Outcome: Status codes tell the client what happened on the server side — whether their request was processed successfully (e.g., 200 OK), created a resource (201 Created), was bad or unauthorized (4xx errors), or if the server encountered an error (5xx errors).

Standardized Communication: Using standardized status codes makes APIs predictable and easy to consume by clients, allowing them to programmatically react to different outcomes.

Error Handling and Debugging: Status codes help developers and clients diagnose issues and provide meaningful error messages or recovery mechanisms.

RESTful Compliance: A key REST principle is to use appropriate HTTP status codes to reflect resource state changes and request results, making Flask APIs REST-compliant.

20. How do you handle POST requests in Flask?

-->

    1. Specify POST method in the route decorator
Use the methods argument of @app.route() to allow POST requests:

```
@app.route('/submit', methods=['POST'])
```
    2. Access incoming data
Access the form data submitted via POST from request.form or JSON data from request.json:

```
from flask import request

@app.route('/submit', methods=['POST'])
def submit():
    if request.is_json:
        data = request.json  # For JSON data
    else:
        data = request.form  # For form data
    # Process data here
    return "Data received"

```

    3. Return an appropriate response
Typically, return JSON responses using jsonify() or appropriate HTTP status codes.


Example:
```
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/login', methods=['POST'])
def login():
    username = request.form.get('username')
    password = request.form.get('password')
    # Add authentication logic here
    if username == 'admin' and password == 'secret':
        return jsonify(message="Login successful"), 200
    else:
        return jsonify(message="Invalid credentials"), 401

if __name__ == '__main__':
    app.run(debug=True)

```




21.  How would you secure a Flask API?

--> Securing a Flask API involves implementing multiple best practices and techniques to protect the application from common web vulnerabilities, ensure data confidentiality and integrity, and control access to resources. Here are key methods to secure a Flask API:

1. Use HTTPS

Enforce HTTPS to encrypt data in transit, preventing man-in-the-middle attacks. Flask can enforce HTTPS via extensions like Flask-SSLify, or this can be configured at the web server or load balancer level.

2. Authentication and Authorization

Implement strong user authentication mechanisms, such as OAuth2 or token-based authentication (e.g., JWT). Flask extensions like Flask-HTTPAuth or libraries like flask-jwt-extended help implement secure authentication and role-based access control.

3. Input Validation and Sanitization

Validate and sanitize all inputs to prevent injection attacks such as SQL injection and Cross-Site Scripting (XSS). Use tools like WTForms for form validation and escape output to avoid XSS.

4. Cross-Site Request Forgery (CSRF) Protection

Enable CSRF protection especially for forms and API endpoints that change state. Use the Flask-WTF extension or CSRFProtect middleware to add CSRF tokens to forms and validate them.

5. Secure Password Storage

Store passwords securely using robust hashing algorithms such as bcrypt with salt, instead of plain text or weak hashing methods.

6. Use API Keys or OAuth Scopes

Require API keys or OAuth scopes to control API access. Validate keys on incoming requests to ensure only authorized clients access the API.

7. Limit Rate and Throttle Requests

Implement rate limiting to prevent abuse or denial-of-service attacks, for example using Flask-Limiter.

8. Secure Headers

Implement security headers like Content Security Policy (CSP), HTTP Strict Transport Security (HSTS), and X-Content-Type-Options using tools like Flask-Talisman to mitigate security risks.

9. Regular Updates and Dependency Management

Keep Flask and all dependencies up-to-date to avoid exploitable vulnerabilities.

10. Proper Error Handling and Logging

Avoid leaking sensitive information in error messages. Log security-related events for monitoring and incident response.

22. What is the significance of the Flask-RESTful extension?

--> The Flask-RESTful extension significantly simplifies the process of building RESTful APIs with Flask by providing a clean, structured, and resource-oriented way to define API endpoints.

Significance of Flask-RESTful:
Resource-Oriented Design: It introduces the concept of resources represented as Python classes, where each HTTP method (GET, POST, PUT, DELETE) is defined as a method of that class, promoting organized and maintainable code.

Simplified Routing: Instead of manually mapping URL routes with decorators, Flask-RESTful uses api.add_resource() to link resource classes to URL endpoints, reducing boilerplate and making the code clearer.

Automatic Request Parsing: It includes built-in request parsing support via reqparse to handle and validate incoming data, making input processing easier and more reliable.

Consistent Response Formatting: Automatically formats responses as JSON, aligning with RESTful API conventions, so developers don't have to manually serialize data.

Integrated Error Handling: Provides built-in mechanisms for managing errors and exceptions consistently across the API.

Content Negotiation and Validation: Supports multiple response formats and validation of input/output data structures to ensure data integrity and client compatibility.

Seamless Flask Integration: Works on top of Flask’s core features for routing and request handling, allowing developers to build robust, scalable APIs with familiar tools

```
from flask import Flask
from flask_restful import Api, Resource

app = Flask(__name__)
api = Api(app)

class HelloWorld(Resource):
    def get(self):
        return {"message": "Hello, Flask-RESTful!"}

api.add_resource(HelloWorld, '/')

if __name__ == '__main__':
    app.run(debug=True)

```



23. What is the role of Flask’s session object?

--> The role of Flask’s session object is to store data that needs to persist across multiple requests from the same client, enabling stateful interactions in a web application. Unlike the request object, which lasts only for a single request, the session object allows you to save user-specific information—such as login status, user preferences, or shopping cart contents—that must be remembered across different requests or pages.

Key Characteristics of Flask’s Session Object
Persistent Data Across Requests: It maintains information during a user's session on the site, such as authentication credentials or user-specific settings.

Dictionary-like Interface: The session object behaves like a Python dictionary where you can store and retrieve key-value pairs specific to the user.

Client-Side Cookie with Server-Side Signing: Flask stores session data in a cookie on the client’s browser, but this data is cryptographically signed using the app’s secret key to prevent tampering.

Security: Since the data is signed and optionally encrypted, it provides a secure way to persist user state without exposing or allowing data manipulation on the client side.

Usage: Common use cases include user login sessions, tracking shopping cart items, or keeping temporary user preferences.

Example Usage

```
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'

@app.route('/login')
def login():
    session['username'] = 'Alice'  # Store username in session
    return "Logged in!"

@app.route('/profile')
def profile():
    username = session.get('username')
    if username:
        return f"Hello, {username}!"
    else:
        return "Please log in first."

```



#Practical Questions

1.  How do you create a basic Flask application?

In [2]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


2. How do you serve static files like images or CSS in Flask?

In [3]:
# Directory structure:
# ├── app.py
# ├── static/
# │   ├── style.css
# │   └── cat.jpg
# └── templates/
#     └── index.html

# app.py
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

'''
HTML code

<!-- templates/index.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Static Demo</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Hello, Flask Static!</h1>
    <img src="{{ url_for('static', filename='cat.jpg') }}" alt="Cat image">
</body>
</html>

'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


3.  How do you define different routes with different HTTP methods in Flask?

In [4]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/get-example', methods=['GET'])
def get_example():
    return 'GET received'

@app.route('/post-example', methods=['POST'])
def post_example():
    return 'POST received'

@app.route('/both-example', methods=['GET', 'POST'])
def both_example():
    if request.method == 'POST':
        return 'Handled POST'
    return 'Handled GET'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


4. How do you render HTML templates in Flask?

In [5]:
# Directory structure:
# ├── app.py
# └── templates/
#     └── index.html

# app.py
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)
'''
<!-- templates/index.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Flask Template</title>
</head>
<body>
    <h1>Hello from HTML template!</h1>
</body>
</html>

'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


'\n<!-- templates/index.html -->\n<!DOCTYPE html>\n<html>\n<head>\n    <title>Flask Template</title>\n</head>\n<body>\n    <h1>Hello from HTML template!</h1>\n</body>\n</html>\n\n'

5. How can you generate URLs for routes in Flask using url_for?

In [6]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.route('/user/<username>')
def profile(username):
    return f'User: {username}'

with app.test_request_context():
    print(url_for('home'))                # Output: /
    print(url_for('profile', username='alice'))   # Output: /user/alice
'''
<!-- In a template file -->
<a href="{{ url_for('home') }}">Home</a>
<a href="{{ url_for('profile', username='bob') }}">Bob's profile</a>

'''

/
/user/alice


'\n<!-- In a template file -->\n<a href="{{ url_for(\'home\') }}">Home</a>\n<a href="{{ url_for(\'profile\', username=\'bob\') }}">Bob\'s profile</a>\n\n'

6. How do you handle forms in Flask?

In [7]:
# Directory structure:
# ├── app.py
# └── templates/
#     ├── form.html
#     └── success.html

# app.py
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/')
def form():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form.get('name')
    email = request.form.get('email')
    return render_template('success.html', name=name, email=email)

if __name__ == '__main__':
    app.run(debug=True)
'''
<!-- templates/form.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Form Example</title>
</head>
<body>
    <form action="{{ url_for('submit') }}" method="post">
        <label for="name">Name:</label>
        <input type="text" id="name" name="name"><br>
        <label for="email">Email:</label>
        <input type="text" id="email" name="email"><br>
        <input type="submit" value="Submit">
    </form>
</body>
</html>

'''
'''
<!-- templates/success.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Success</title>
</head>
<body>
    <h1>Form Submitted</h1>
    <p>Name: {{ name }}</p>
    <p>Email: {{ email }}</p>
</body>
</html>

'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


'\n<!-- templates/success.html -->\n<!DOCTYPE html>\n<html>\n<head>\n    <title>Success</title>\n</head>\n<body>\n    <h1>Form Submitted</h1>\n    <p>Name: {{ name }}</p>\n    <p>Email: {{ email }}</p>\n</body>\n</html>\n\n'

7.  How can you validate form data in Flask?

In [8]:
from flask import Flask, render_template, request, redirect, url_for, flash
from wtforms import Form, StringField, validators

app = Flask(__name__)
app.secret_key = 'secret_key'  # Needed for flashing messages

# Define a WTForms form class with validation
class MyForm(Form):
    name = StringField('Name', [validators.InputRequired(), validators.Length(min=3, max=25)])
    email = StringField('Email', [validators.InputRequired(), validators.Email()])

@app.route('/', methods=['GET', 'POST'])
def form():
    form = MyForm(request.form)
    if request.method == 'POST' and form.validate():
        name = form.name.data
        email = form.email.data
        return render_template('success.html', name=name, email=email)
    else:
        for field, errors in form.errors.items():
            for error in errors:
                flash(f"Error in {field}: {error}")
    return render_template('form.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)


'''
<!-- templates/form.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Form Validation</title>
</head>
<body>
    <form action="{{ url_for('form') }}" method="post">
        <label>Name:</label>
        <input type="text" name="name" value="{{ form.name.data or '' }}"><br>
        <label>Email:</label>
        <input type="text" name="email" value="{{ form.email.data or '' }}"><br>
        <input type="submit" value="Submit">
    </form>

    {% with messages = get_flashed_messages() %}
      {% if messages %}
        <ul>
          {% for msg in messages %}
            <li style="color:red">{{ msg }}</li>
          {% endfor %}
        </ul>
      {% endif %}
    {% endwith %}
</body>
</html>

'''

ModuleNotFoundError: No module named 'wtforms'

8.  How do you manage sessions in Flask?

In [9]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'your_secret_key_here'  # Keep this secret and random

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']
        return redirect(url_for('profile'))
    return '''
        <form method="post">
            <input type="text" name="username" placeholder="Enter username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/profile')
def profile():
    if 'username' in session:
        return f'Logged in as {session["username"]}'
    return 'You are not logged in'

@app.route('/logout')
def logout():
    session.pop('username', None)
    return 'You have been logged out'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


9. How do you redirect to a different route in Flask?

In [10]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    # Redirect to /welcome route
    return redirect(url_for('welcome'))

@app.route('/welcome')
def welcome():
    return 'Welcome to the redirected page!'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


10. How do you handle errors in Flask (e.g., 404)?

In [11]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return 'Home page'

# Custom handler for 404 errors
@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404

if __name__ == '__main__':
    app.run(debug=True)
'''
<!-- templates/404.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Page Not Found</title>
</head>
<body>
    <h1>404 Error</h1>
    <p>The page you are looking for does not exist.</p>
</body>
</html>

'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


'\n<!-- templates/404.html -->\n<!DOCTYPE html>\n<html>\n<head>\n    <title>Page Not Found</title>\n</head>\n<body>\n    <h1>404 Error</h1>\n    <p>The page you are looking for does not exist.</p>\n</body>\n</html>\n\n'

11. How do you structure a Flask app using Blueprints?

In [12]:
# Directory structure:
# /project
# ├── app.py
# ├── main/
# │   ├── __init__.py
# │   └── routes.py
# └── user/
#     ├── __init__.py
#     └── routes.py

# main/__init__.py
from flask import Blueprint

main_bp = Blueprint('main', __name__)

from . import routes

# main/routes.py
from . import main_bp

@main_bp.route('/')
def home():
    return "Main Home Page"

# user/__init__.py
from flask import Blueprint

user_bp = Blueprint('user', __name__, url_prefix='/user')

from . import routes

# user/routes.py
from . import user_bp

@user_bp.route('/profile')
def profile():
    return "User Profile"

# app.py
from flask import Flask
from main import main_bp
from user import user_bp

app = Flask(__name__)

app.register_blueprint(main_bp)
app.register_blueprint(user_bp)

if __name__ == '__main__':
    app.run(debug=True)


ImportError: attempted relative import with no known parent package

12. How do you define a custom Jinja filter in Flask?

In [13]:
from flask import Flask

app = Flask(__name__)

# Define a custom Jinja filter function
def reverse_string(s):
    return s[::-1]

# Register the custom filter with Flask
app.jinja_env.filters['reverse'] = reverse_string

@app.route('/')
def home():
    sample_text = "Hello Flask"
    # In template, use {{ sample_text|reverse }}
    return f'Original: {sample_text} | Reversed: {reverse_string(sample_text)}'

if __name__ == '__main__':
    app.run(debug=True)
'''
{{ "Hello Flask"|reverse }}
'''

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


'\n{{ "Hello Flask"|reverse }}\n'

13. How can you redirect with query parameters in Flask?

In [14]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/search')
def search():
    query = request.args.get('q')
    return f'Search results for: {query}'

@app.route('/go-to-search')
def go_to_search():
    # Redirect with query parameter q=flask
    return redirect(url_for('search', q='flask'))

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


14.   How do you return JSON responses in Flask?

In [15]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def api_data():
    data = {
        "name": "Lily",
        "age": 25,
        "languages": ["Python", "JavaScript", "C++"]
    }
    return jsonify(data)

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


15.  How do you capture URL parameters in Flask?

In [16]:
from flask import Flask, request

app = Flask(__name__)

# Capturing URL path parameter
@app.route('/user/<username>')
def user_profile(username):
    return f'Profile page of user: {username}'

# Capturing query string parameters
@app.route('/search')
def search():
    query = request.args.get('q', '')  # Access query parameter 'q'
    page = request.args.get('page', default=1, type=int)
    return f'Search results for: {query}, page: {page}'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)
