***RESTFUL API & FLASK***

1.WHAT IS A RESTFUL API?
ANS-A RESTful API (Representational State Transfer API) is a type of web service that follows the principles of REST architecture to allow communication between different systems (usually between a client and a server) over the internet.

2.EXPLAIN THE CONCEPT OF API SPECIFICATION.
ANS-An API specification is a detailed contract or blueprint that defines how an API should work.

It describes:

What endpoints exist

What requests you can make (methods, parameters, headers, body)

What responses you’ll get (status codes, data format)

Rules and constraints for using the API

Think of it as a manual for developers that explains exactly how to interact with an API without needing to read its internal code.

3.WHAT IS FLASK,AND WHY IS IT POPULAR FOR BUILDING APIS?
ANS-Flask is a lightweight web framework for Python, mainly used to build web applications and RESTful APIs.

It is often called a "microframework" because it provides only the essentials (routing, request/response handling) and leaves everything else (database, authentication, etc.) to extensions or custom code.

Flask is built on Werkzeug (for WSGI) and Jinja2 (for templating).

4.WHAT IS ROUTING IN FLASK?
ANS-In Flask, routing means mapping a URL (endpoint) to a specific function in your Python code.

Each route corresponds to a web address (like /, /users, /products).

When a client (browser, mobile app, API consumer) sends a request to that URL, Flask runs the function linked to it.

That function usually returns a response (HTML, JSON, etc.).


5.HOW DO YOU CREATE A SIMPLE FLASK APPLICATION?
ANS-Step 1: Install Flask

Make sure Flask is installed (only once per environment).
pip install flask
Step 2: Create a Python File (e.g., app.py)

Write this minimal Flask app:
from flask import Flask

# Create Flask application object
app = Flask(__name__)

# Define a route for the homepage
@app.route('/')
def home():
    return "Hello, Flask! 🎉"

# Run the app
if __name__ == '__main__':
    app.run(debug=True)
Step 3: Run the Application

Run the file:
python app.py


6.WHAT ARE HTTP METHOD USED IN RESTFUL APIS?
ANS-GET

1.Purpose: Retrieve data from the server (read-only).

Safe & idempotent (doesn’t change server state).

Example:

GET /users → Get all users

GET /users/1 → Get user with ID = 1

POST

2.Purpose: Create a new resource on the server.

Not idempotent (repeating creates multiple entries).
PUT

3.Purpose: Update/replace an existing resource completely.

Idempotent (repeating the same request gives the same result).
PATCH

4.Purpose: Partially update an existing resource.
DELETE

5.Purpose: Remove a resource from the server.

Idempotent (deleting the same resource again has no further effect).

7.WHAT IS THE PURPOSE OF THE @APP.ROUTE()DECORATOR IN FLASK?
ANS-In Flask, the @app.route() decorator is used to map a URL path (endpoint) to a specific Python function.

That function is called a view function.

Whenever a user visits the given URL, Flask executes the linked function and returns the response.

8.WHAT IS THE DIFFERENCE BETWEEN GET AND POST HTTP METHODS?
ANS-GET
Retrieve data from the server (read-only).
Data is sent in the URL (query string).
Example: GET /search?q=python
Data is visible in the URL → less secure.
POST HTTP
Send data to the server to create or process something.
Data is sent in the request body.
Example: { "username": "divya", "password": "123" }
Data is hidden in the request body → safer for sensitive info.

9.HOW DO YOU HANDLE ERROR IN FLASK APIS?
ANS-1. Using HTTP Status Codes

Always return meaningful status codes:

200 OK → Success

201 Created → Resource created

400 Bad Request → Client sent invalid data

401 Unauthorized → Authentication required

404 Not Found → Resource doesn’t exist

500 Internal Server Error → Server-side problem

10.HOW DO YOU CONNECT FLASK TO A SQL DATABASE?
ANS-Using sqlite3 module (built-in) – simplest way.

Using SQLAlchemy (ORM) – most popular and recommended.

Using Flask-SQLAlchemy (Flask extension for SQLAlchemy) – makes integration super easy.

11.WHAT IS THE ROLE OF FLASK-SQLALCHEMY?
ANS-
1.Simplifies Database Configuration

Provides an easy way to connect Flask with databases like SQLite, MySQL, PostgreSQL, Oracle, SQL Server.
2.Object Relational Mapping (ORM)

You define models (Python classes) that represent database tables.

Each instance of the class = a row in the table.
3.Querying with Python Instead of SQL
4.Database Session Management

Handles transactions (add, commit, rollback).
5.Migrations Support (with Flask-Migrate)

Keeps track of schema changes (adding tables/columns) without dropping the database.

6.Cross-Database Compatibility

The same Python code can work with SQLite for testing and PostgreSQL/MySQL in production.

12.WHAT ARE FLASK BLUEPRINTS,AND HOW ARE THEY USEFUL?
ANS-A Blueprint in Flask is a way to organize and structure your application into reusable, modular components.

Instead of keeping all routes, views, and logic in one big app.py file, Blueprints let you split your app into smaller pieces (like user management, admin panel, blog, API).

Think of a Blueprint as a mini-application inside your Flask project that can be registered on the main app.
1.Modularity - Organize related routes, templates, and static files into separate modules.

2.Reusability - A Blueprint can be reused across multiple applications.

3.Collaboration - Easier for teams (different developers can work on different Blueprints).

4.Maintainability - Keeps code clean and avoids one giant file with hundreds of routes.

5.Flexibility - Blueprints can be registered multiple times or under different URL prefixes.

13.WHAT IS THE PURPOSE OF FLASK'S REQUEST OBJECT?
ANS-In Flask, the request object (imported from flask) represents the HTTP request that a client (browser, mobile app, API consumer) sends to your Flask application.

It allows you to access request data such as:

Form inputs

Query parameters

JSON body

HTTP headers

Cookies

Request method (GET, POST, etc.)


14.HOW DO YOU CREATE A RESTFUL API ENDPOINT USING FLASK?
ANS-1.INSTALL FLASK
PIP INSTALL FLASK
2.CREATE APP.PY


15.WHAT IS THE PURPOSE OF FLASK'S JSONIFY()FUNCTION?
ANS-The jsonify() function in Flask is used to return JSON responses from your API endpoints.

Instead of returning plain text or manually converting dictionaries to JSON, jsonify() ensures that:

Python dict/list → JSON format automatically.

Sets correct Content-Type header (application/json).

Handles Unicode & special characters safely.

Makes your API responses standards-compliant.

16.EXPLAIN FLASK'S URL_FOR()FUNCTION.
ANS-Flask’s url_for() function is used to dynamically generate URLs for your routes (endpoints) instead of hardcoding them.

17.HOW DOES FLASK HANDLE STATIC FILES(CSS,JAVASCRIPT,ETC.)?
ANS-Flask has a special folder called static/ for serving static files such as:

CSS

JavaScript

Images (PNG, JPG, etc.)

Fonts

By default:

Flask automatically makes files inside the static/ folder available at the URL

18.WHAT IS AN API SPECIFICATION,AND HOW DOES IT HELP IN BUILDING A FLASK API?
ANS-An API specification is a formal document (usually written in a standard format like OpenAPI/Swagger)

1.Clarity & Planning

Before writing code, you know exactly which routes, methods, and data formats are required.

2.Consistency

Ensures all developers follow the same API design (naming conventions, response structures).

3.Automatic Documentation

Tools like Swagger UI or Redoc can generate live, interactive docs from the specification.

4.Client Development

Frontend or mobile developers can start building apps using the spec, even before the Flask API is ready.

5.Validation

Some Flask extensions (like Flask-RESTX or Flask-Smorest) can validate requests/responses automatically based on the spec.

19.WHAT ARE HTTP STATUS CODES,AND WHY ARE THEY IMPORTANT IN FLASK API?
ANS-HTTP status codes are 3-digit numbers returned by a server in response to a client’s request.

They tell the client what happened with the request (success, failure, redirect, error, etc.).

They are part of the HTTP response along with data (JSON, HTML, etc.).

1.Clear Communication

Clients (frontend, mobile apps) know if the request worked or failed.

2.Error Handling

Helps developers debug by knowing if the issue was client-side (4xx) or server-side (5xx).

3.Standards & Interoperability

REST APIs should follow HTTP standards so any client can integrate easily.

4.Improved User Experience

APIs can send proper messages (e.g., 404 when a user is not found, instead of just crashing).

20.HOW DO YOU HANDLE POST REQUEST IN FLASK?
ANS-POST is an HTTP method used when a client wants to send data to the server (e.g., create a new user, submit a form, upload a file).

In Flask, we handle POST requests by defining a route that accepts POST methods and reading data from the request.

21.HOW WOULD YOU SECURE A FLASK API?
ANS-
1. Use HTTPS (TLS/SSL)
Always serve your API over HTTPS to encrypt traffic.

Prevents attackers from intercepting sensitive data like tokens, passwords, or API keys.

Example: use a reverse proxy like Nginx + Let’s Encrypt.
2. Authentication & Authorization

Ensure only authorized clients can access protected endpoints.


API Keys → Simple, but less secure.

JWT (JSON Web Tokens) → Common for stateless APIs.

OAuth2 → Industry standard for third-party integrations
3.Input Validation & Sanitization

Validate all incoming data to prevent:

SQL Injection

Cross-Site Scripting (XSS)

Command Injection

Use libraries like marshmallow or pydantic for data validation.

22.WHAT IS THE SIGNIFICANCE OF THE FLASK-RESTFUL EXTENSION?
ANS-Flask-RESTful is an extension for Flask that helps you build RESTful APIs more easily and cleanly.
It adds tools and classes that make defining API endpoints, handling requests, and formatting responses much simpler compared to writing everything manually in plain Flask.
1.Simplifies API Endpoint Creation

Instead of writing @app.route() for every endpoint, you define Resources (classes) where each HTTP method is a method inside the class.
2. Cleaner Handling of HTTP Methods
3. Built-in Request Parsing
4. Automatic JSON Responses
5. Scalability

23.WHAT IS THE ROLE OF FLASK'S SESSION OBJECT?
ANS-Flask’s session object is used to store data about a user across multiple requests.

Since HTTP is stateless (it doesn’t remember anything between requests), the session allows Flask to keep track of user-specific information — like login status, preferences, or a shopping cart — as the user navigates the site.

***PRACTICAL***

1.HOW DO YOU CREATE A BASIC FLASK APPLICATION?

In [None]:
PIP INSTALL FLASK

In [None]:
# my_flask_app/
# │
# └── app.py
from flask import Flask

app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2.HOW DO YOU SERVE STATIC FILES LIKE IMAGES OR CSS IN FLASK?


Here's an example of how to serve static files like images or CSS in Flask:

In [2]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def index():
    return render_template('index.html')

if __name__ == '__main__':
    # To run this, you would need to create a 'static' folder
    # and a 'templates' folder in the same directory as this file.
    # Inside 'static', you would put your CSS, JS, and images.
    # Inside 'templates', you would put your HTML files.
    # In your HTML file (e.g., templates/index.html), you would link to static files like this:
    # <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
    # <script src="{{ url_for('static', filename='script.js') }}"></script>
    # <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">
    print("To run this code:")
    print("1. Create a 'static' folder and a 'templates' folder in the same directory.")
    print("2. Put your static files (CSS, JS, images) in the 'static' folder.")
    print("3. Create an 'index.html' file in the 'templates' folder and add the following code:")
    print("   <!DOCTYPE html>")
    print("   <html>")
    print("   <head>")
    print("       <title>Static Files Example</title>")
    print("       <link rel='stylesheet' href='{{ url_for('static', filename='style.css') }}'>")
    print("   </head>")
    print("   <body>")
    print("       <h1>Serving Static Files</h1>")
    print("       <img src='{{ url_for('static', filename='logo.png') }}' alt='Logo'>")
    print("       <script src='{{ url_for('static', filename='script.js') }}'></script>")
    print("   </body>")
    print("   </html>")
    print("4. Run this Python file.")
    # app.run(debug=True) # Uncomment this line to actually run the Flask app

To run this code:
1. Create a 'static' folder and a 'templates' folder in the same directory.
2. Put your static files (CSS, JS, images) in the 'static' folder.
3. Create an 'index.html' file in the 'templates' folder and add the following code:
   <!DOCTYPE html>
   <html>
   <head>
       <title>Static Files Example</title>
       <link rel='stylesheet' href='{{ url_for('static', filename='style.css') }}'>
   </head>
   <body>
       <h1>Serving Static Files</h1>
       <img src='{{ url_for('static', filename='logo.png') }}' alt='Logo'>
       <script src='{{ url_for('static', filename='script.js') }}'></script>
   </body>
   </html>
4. Run this Python file.


3.HOW DO YOU DEFINE DIFFERENT ROUTES WITH DIFFERENT HTTP METHODS IN FLASK?

In [None]:
from flask import Flask, request

app = Flask(__name__)

# Route with GET method (default)
@app.route('/hello', methods=['GET'])
def hello():
    return "Hello, World!"

# Route with POST method
@app.route('/submit', methods=['POST'])
def submit():
    data = request.form.get("name")
    return f"Data received: {data}"

# Route with multiple methods
@app.route('/item', methods=['GET', 'POST'])
def item():
    if request.method == 'GET':
        return "Send item details using POST."
    elif request.method == 'POST':
        return f"Item received: {request.json}"

# Route with PUT method
@app.route('/update', methods=['PUT'])
def update():
    return "Update successful!"

# Route with DELETE method
@app.route('/delete', methods=['DELETE'])
def delete():
    return "Delete successful!"

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


4.HOW DO YOU RENDER HTML TEMPLATES IN FLASK?

CREATE A FOLDER TEMPLATES/INDEX.HTML:


In [None]:
<!_ _TEMPLATES/INDEX.HTML_ _>
<H1>HELLO,{{NAME}}</H1>

In [None]:
FROM FLASK IMPORT render_template
@APP.ROUTE('/HELLO/<NAME>')
DEF HELLO(NAME):
RETURN RENDER_TEMPLATE('INDEX.HTML',NAME=NAME)

5.HOW CAN YOU GENERATE URLS FOR ROUTE IN FLASK USING URL_FOR?

In [None]:
from flask import Flask, url_for, render_template_string

app = Flask(__name__)

@app.route('/')
def home():
    # Generate URL for the 'about' route
    about_url = url_for('about')
    return f'<a href="{about_url}">Go to About Page</a>'

@app.route('/about')
def about():
    return "This is the About Page"

if __name__ == '__main__':
    app.run(debug=True)


6.HOW DO YOU HANDLE FORMS IN FLASK?

In [None]:
<!-- templates/form.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Form Example</title>
</head>
<body>
    <form method="POST" action="/submit">
        <label>Name:</label>
        <input type="text" name="name"><br><br>

        <label>Email:</label>
        <input type="email" name="email"><br><br>

        <input type="submit" value="Submit">
    </form>
</body>
</html>


7.HOW CAN YOU VALIDATE FROM DATA IN FLASK?

In [None]:
from flask import Flask, request, render_template_string

app = Flask(__name__)

form_html = """
<form method="POST">
    Name: <input type="text" name="name"><br>
    Age: <input type="number" name="age"><br>
    <input type="submit" value="Submit">
</form>
"""

@app.route("/", methods=["GET", "POST"])
def index():
    if request.method == "POST":
        name = request.form.get("name")
        age = request.form.get("age")

        errors = []
        if not name or name.strip() == "":
            errors.append("Name is required.")
        if not age or not age.isdigit() or int(age) < 0:
            errors.append("Age must be a valid positive number.")

        if errors:
            return f"Errors: {', '.join(errors)}"
        else:
            return f"Hello {name}, Age {age}"
    return render_template_string(form_html)

if __name__ == "__main__":
    app.run(debug=True)


8.HOW DO YOU MANAGE SESSIONS IN FLASK?

In [None]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'supersecretkey'  # required for signing session cookies


9.HOW DO YOU REDIRECT TO A DIFFERENT ROUTE IN FLASK?

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return redirect(url_for('about'))  # redirect to /about

@app.route('/about')
def about():
    return "This is the About Page"


10.HOW DO YOU HANDLE ERROR IN FLASK(E.G,404)?

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page!"

# Handle 404 Not Found
@app.errorhandler(404)
def page_not_found(error):
    return render_template('404.html'), 404

# Handle 500 Internal Server Error
@app.errorhandler(500)
def internal_error(error):
    return "Oops! Something went wrong on our end.", 500

if __name__ == '__main__':
    app.run(debug=True)


11.HOW DO YOU STRUCTURE A FLASK APP USING BLUEPRINTS?

In [None]:
myapp/
│
├── app.py                # Main application entry point
├── config.py             # Configuration settings (optional)
│
├── myapp/                # Application package
│   ├── __init__.py       # Initialize Flask app + register blueprints
│   ├── routes.py         # Routes for main app (optional)
│   │
│   ├── auth/             # "auth" blueprint
│   │   ├── __init__.py
│   │   ├── routes.py
│   │
│   ├── blog/             # "blog" blueprint
│   │   ├── __init__.py
│   │   ├── routes.py
│
└── templates/            # Jinja2 templates (optional)


12.HOW DO YOU DEFINE A CUSTOM JINJA FILTER IN FLASK?

In [None]:
@app.template_filter("shout")
def shout_filter(s):
    return s.upper() + "!!!"

@app.route("/")
def index():
    return render_template_string("{{ 'hello'|shout }}")


13.HOW CAN YOU REDIRECT WITH QUERY PARAMETERS IN FLASK?

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    # Redirect to /welcome with query parameters
    return redirect(url_for('welcome', name="Divya", age=25))

@app.route('/welcome')
def welcome():
    # Get query parameters using request.args
    name = request.args.get('name')
    age = request.args.get('age')
    return f"Welcome {name}, age {age}"

if __name__ == '__main__':
    app.run(debug=True)


14.HOW DO YOU RETURN JSON RESPONSES IN FLASK?

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route("/data")
def get_data():
    data = {"name": "Divya", "age": 25, "city": "Pune"}
    return jsonify(data)

if __name__ == "__main__":
    app.run(debug=True)


15.HOW DO YOU CAPTURE URL PARAMETERS IN FLASK?

In [None]:
from flask import Flask

app = Flask(__name__)

# Route with a URL parameter
@app.route('/user/<username>')
def show_user_profile(username):
    return f'Hello, {username}!'

# Route with an integer parameter
@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'This is post {post_id}'

if __name__ == "__main__":
    app.run(debug=True)
