### Api Reference


###  **API (Application Programming Interface)** 



An **API** is like a **waiter in a restaurant**.

* You (the user) tell the waiter (API) what you want (e.g., "Get me the weather").
* The waiter takes your request to the kitchen (the server).
* The kitchen prepares the food (data).
* The waiter brings it back to you.

 

####  In tech terms:

An **API** lets two software systems **talk to each other**.

For example:

* A weather app uses an API to get weather data from a weather server.
* Your billing system might use an API to fetch customer usage data from another service.

 

#### Real Example:

* When you open a food delivery app:
* It uses an API to get the list of restaurants.
* Another API to place your order.
* Another API to track delivery.

 







####  1. **REST (Representational State Transfer)**

- **Style**: Resource-based
- **Protocol**: HTTP
- **Data Format**: Usually JSON
- **Example**: `GET /users/123`

 

####  2. **GraphQL**

- **Style**: Query-based
- **Created by**: Facebook
- **Key Feature**: Clients can request exactly the data they need — no more, no less.
- **Example**:
  ```graphql
  {
    user(id: "123") {
      name
      email
    }
  }
  ```



####  3. **gRPC (Google Remote Procedure Call)**

- **Style**: RPC (Remote Procedure Call)
- **Protocol**: HTTP/2
- **Data Format**: Protobuf (binary, not JSON)
- **Key Feature**: Very fast and efficient, great for microservices
- **Example**: `GetUser(user_id: 123)`

 

#### 4. **SOAP (Simple Object Access Protocol)**

- **Style**: XML-based messaging protocol
- **Protocol**: HTTP, SMTP, etc.
- **Data Format**: XML
- **Key Feature**: Strict standards, used in enterprise systems (e.g., banking, telecom)



####  5. **WebSockets**

- **Style**: Full-duplex communication
- **Use Case**: Real-time apps (chat, live updates)
- **Key Feature**: Persistent connection between client and server



####  6. **OData (Open Data Protocol)**

- **Style**: REST-like but with query capabilities
- **Created by**: Microsoft
- **Key Feature**: Allows querying data via URL (like SQL over HTTP)



#### Summary Table



 | Style     | Protocol | Format     | Best For                        |
|-----------|----------|------------|----------------------------------|
| REST      | HTTP     | JSON       | General-purpose APIs             |
| GraphQL   | HTTP     | JSON       | Flexible data fetching           |
| gRPC      | HTTP/2   | Protobuf   | High-performance microservices   |
| SOAP      | HTTP     | XML        | Enterprise systems               |
| WebSockets| WS       | Custom     | Real-time communication          |
| OData     | HTTP     | JSON/XML   | Queryable REST APIs              |





####  1. **Framework**
A **framework** is a collection of tools, libraries, and best practices that helps you build software faster and more efficiently.

- In Python, frameworks like **FastAPI**, **Flask**, and **Django** help you build **web applications** or **APIs** without writing everything from scratch.
- Think of it like a **template or skeleton** for your project.



#### 2. **Async Support**
**Async support** means the framework can handle **asynchronous programming** using `async` and `await`.

- Useful when your API needs to handle **many requests at once** (e.g., calling external APIs, databases, etc.).
- Helps improve **performance** and **scalability**.
- Example: FastAPI and Sanic support async natively.



####  3. **Auto Docs**
**Auto Docs** (Automatic Documentation) means the framework can **automatically generate API documentation** for you.

- Usually in **Swagger UI** or **ReDoc** format.
- Helps developers understand and test your API easily.
- FastAPI and Django REST Framework (DRF) do this out of the box.



####  4. **ORM Support**
**ORM** stands for **Object-Relational Mapping**.

- It lets you interact with a **database using Python objects** instead of writing raw SQL queries.
- Example: You can write `User.objects.all()` instead of `SELECT * FROM users;`
- Frameworks like **Django** have built-in ORM, while **FastAPI** can use SQLAlchemy or Tortoise ORM.



####  5. **Microservice**
A **microservice** is a small, independent service that does **one specific job** and communicates with other services via APIs.

- Example: In an e-commerce app:
  - One microservice handles **user authentication**
  - Another handles **orders**
  - Another handles **payments**
- Microservices are easier to **scale**, **deploy**, and **maintain** than one big monolithic app.



#### Summary Table

| Term         | Meaning                                                                 |
|--------------|-------------------------------------------------------------------------|
| Framework    | A toolset to build applications faster                                  |
| Async Support| Ability to handle multiple tasks at once using `async/await`            |
| Auto Docs    | Automatically generated API documentation (e.g., Swagger)               |
| ORM Support  | Use Python objects to interact with databases instead of SQL            |
| Microservice | A small, independent service that does one job and talks via APIs       |





#### **Common API & Web Communication Protocols**

| Protocol     | Description                                                                 | Common Use Case                        |
|--------------|-----------------------------------------------------------------------------|----------------------------------------|
| **HTTP/HTTPS** | HyperText Transfer Protocol (Secure) — the foundation of web communication | REST APIs, GraphQL, SOAP, websites     |
| **WebSocket** | Full-duplex communication over a single TCP connection                     | Real-time apps (chat, games, live data)|
| **gRPC**      | High-performance RPC protocol using HTTP/2 and Protobuf                    | Microservices, internal APIs           |
| **SOAP**      | XML-based protocol with strict standards                                   | Enterprise systems (banking, telecom)  |
| **FTP/SFTP**  | File Transfer Protocol (Secure)                                            | File uploads/downloads                 |
| **MQTT**      | Lightweight messaging protocol for small sensors and mobile devices        | IoT (Internet of Things)               |
| **AMQP**      | Advanced Message Queuing Protocol                                          | Messaging systems (RabbitMQ)           |
| **CoAP**      | Constrained Application Protocol                                           | IoT devices with limited resources     |
| **SMTP/IMAP/POP3** | Email protocols                                                      | Sending and receiving emails           |


#### Most Common in API Development

- **HTTP/HTTPS** → Used in REST, GraphQL, and SOAP APIs
- **WebSocket** → Used for real-time communication
- **gRPC** → Used for fast, binary communication between services



To make an **API work properly**, several key **factors** must be in place — both on the **server side** (where the API is hosted) and the **client side** (where it's consumed). Here's a breakdown:

---

## ✅ **Core Factors Required to Make an API Work**

###  1. **Protocol**
- Most APIs use **HTTP/HTTPS** as the communication protocol.
- Ensures standardized request/response handling.

---

###  2. **Endpoints**
- Defined **URLs** that represent resources or actions.
- Example: `GET /users`, `POST /orders`

---

###  3. **HTTP Methods**
- Define the type of operation:
  - `GET` → Retrieve data
  - `POST` → Create data
  - `PUT/PATCH` → Update data
  - `DELETE` → Remove data

---

###  4. **Request & Response Format**
- Usually **JSON** (sometimes XML, CSV, etc.)
- Both client and server must agree on the format.

---

###  5. **Authentication & Authorization**
- Ensures only **authorized users** can access or modify data.
- Common methods:
  - API keys
  - OAuth2
  - JWT (JSON Web Tokens)

---

###  6. **Error Handling**
- Proper **status codes** and messages help clients understand what went wrong.
  - `200 OK`, `201 Created`, `400 Bad Request`, `401 Unauthorized`, `500 Server Error`

---

###  7. **Documentation**
- Clear API docs (e.g., Swagger/OpenAPI) help developers understand how to use the API.

---

###  8. **Rate Limiting & Throttling**
- Prevents abuse by limiting how many requests a client can make in a given time.

---

###  9. **Versioning**
- Helps manage changes without breaking existing clients.
  - Example: `/api/v1/users`

---

###  10. **Security**
- Use **HTTPS** to encrypt data.
- Validate all inputs to prevent attacks (e.g., SQL injection, XSS).

---

###  11. **Backend Logic & Database**
- The API must be connected to a **backend system** (e.g., Python app + database) to process requests and return data.

---


Would you like a **diagram** showing how all these components interact in a real API system?

Here are the **answers** to the REST API interview questions you asked earlier, tailored for a **Python Developer** role:

---

###  **Basic-Level Questions**

1. **What is a REST API?**  
   A REST API (Representational State Transfer) is a web service that follows REST principles, allowing clients to access and manipulate resources using standard HTTP methods like GET, POST, PUT, and DELETE.

2. **What are the main HTTP methods used in REST?**  
   - `GET`: Retrieve data  
   - `POST`: Create new data  
   - `PUT`: Update existing data  
   - `PATCH`: Partially update data  
   - `DELETE`: Remove data

3. **What is the difference between `PUT` and `PATCH`?**  
   - `PUT` replaces the entire resource.  
   - `PATCH` updates only the specified fields of a resource.

4. **What is the purpose of status codes like 200, 201, 400, 404, and 500?**  
   - `200 OK`: Successful request  
   - `201 Created`: Resource created  
   - `400 Bad Request`: Invalid input  
   - `404 Not Found`: Resource not found  
   - `500 Internal Server Error`: Server-side issue

5. **What is the difference between REST and RESTful?**  
   REST is the architectural style; RESTful refers to APIs that fully follow REST principles.

---

###  **Intermediate-Level Questions**

6. **How do you handle authentication in a REST API?**  
   Common methods include:
   - API keys
   - Basic Auth
   - OAuth2
   - JWT (JSON Web Tokens)

7. **What is the role of request headers and response headers?**  
   Headers carry metadata like content type, authentication tokens, and caching policies.

8. **How do you validate incoming JSON data in a Python REST API?**  
   In FastAPI, you use **Pydantic models** to validate and parse JSON data automatically.

9. **What is CORS and how do you handle it in a REST API?**  
   CORS (Cross-Origin Resource Sharing) controls which domains can access your API. In FastAPI, you can use `CORSMiddleware` to configure it.

10. **How do you implement pagination in a REST API?**  
   By using query parameters like `?page=2&limit=10` and returning paginated results with metadata (total count, next page, etc.).

---

###  **Advanced-Level Questions**

11. **How do you design a RESTful API for a billing system?**  
   - Identify resources (e.g., `/customers`, `/invoices`, `/payments`)  
   - Use proper HTTP methods  
   - Secure endpoints with authentication  
   - Validate inputs and handle errors  
   - Use versioning (`/api/v1/`)

12. **How do you handle rate limiting in your API?**  
   Use tools like:
   - API gateways (e.g., Kong, NGINX)
   - Middleware (e.g., `slowapi` in FastAPI)
   - Custom logic with Redis or in-memory counters

13. **What are idempotent methods and why are they important?**  
   Idempotent methods (like `GET`, `PUT`, `DELETE`) produce the same result no matter how many times they are called. This ensures safe retries and predictable behavior.

14. **How do you version your REST APIs?**  
   Common methods:
   - URL versioning: `/api/v1/users`
   - Header versioning: `Accept: application/vnd.myapi.v1+json`

15. **How do you ensure security in REST APIs?**  
   - Use HTTPS  
   - Validate and sanitize inputs  
   - Implement authentication and authorization  
   - Use rate limiting  
   - Avoid exposing sensitive data

---

###  **Python-Specific REST API Questions**

16. **Which Python frameworks have you used to build REST APIs?**  
   Common answers: FastAPI, Flask, Django REST Framework

17. **How do you use FastAPI to define request and response models?**  
   Using **Pydantic models**:
   ```python
   class User(BaseModel):
       name: str
       age: int
   ```

18. **How do you handle background tasks in FastAPI?**  
   Using `BackgroundTasks` from `fastapi`:
   ```python
   from fastapi import BackgroundTasks
   ```

19. **How do you test REST APIs in Python?**  
   - Tools: Postman, Swagger UI  
   - Automated: `pytest`, `requests`, `httpx`, `TestClient` from FastAPI

20. **How do you document your REST API using Swagger or OpenAPI?**  
   FastAPI auto-generates Swagger docs at `/docs` and ReDoc at `/redoc` using OpenAPI standards.

---

Would you like this formatted into a **PDF or Word document** for your interview prep?

What is Pagination in APIs?
Pagination is a technique used in APIs to split large sets of data into smaller chunks (pages). Instead of returning thousands of records in one response, the API returns a limited number (e.g., 10, 50, 100) per request.

Why Use Pagination?

Improves performance and response time
Reduces memory usage on both client and server
Makes data easier to navigate for users


Great follow-up! Let’s break down **how pagination improves performance, reduces memory usage, and enhances usability** — with simple explanations:

---

### ✅ 1. **Improves Performance and Response Time**

Without pagination:
- The server might return **thousands of records** in one response.
- This takes **longer to process**, **longer to send**, and **longer for the client to receive and render**.

With pagination:
- The server returns only a **small chunk** (e.g., 10 or 50 records).
- This makes the response **faster**, and the client can **start displaying data immediately**.

📌 **Example**: A billing dashboard loads 10 invoices instantly instead of waiting for 10,000.

---

### ✅ 2. **Reduces Memory Usage on Both Client and Server**

- **Server**: Doesn’t need to load and serialize the entire dataset at once.
- **Client**: Doesn’t need to hold all data in memory — just the current page.

📌 **Example**: A mobile app fetching only 20 records per page uses less RAM and battery.

---

### ✅ 3. **Makes Data Easier to Navigate for Users**

- Users can **scroll or click through pages** instead of being overwhelmed by a huge list.
- Improves **user experience** and **readability**.

📌 **Example**: E-commerce sites show 20 products per page with “Next” and “Previous” buttons.

---

Would you like a **visual diagram** or a **code demo** showing how pagination works in a real API?


Yes, **social media apps absolutely use pagination** — and it's a critical part of how they manage and deliver content efficiently.

---

### ✅ Why Social Media Apps Use Pagination

1. **Performance**: Loading thousands of posts, comments, or messages at once would slow down the app and consume too much memory.
2. **User Experience**: Pagination allows users to scroll through content smoothly (infinite scroll is a form of pagination).
3. **Bandwidth Optimization**: Only a small chunk of data is sent at a time, reducing network load.
4. **Backend Efficiency**: The server only queries and returns a limited number of records per request.

---

###  Examples of Pagination in Social Media

| Feature              | How Pagination Is Used                          |
|----------------------|--------------------------------------------------|
| **News Feed**        | Loads 10–20 posts at a time as you scroll       |
| **Comments Section** | Loads top 5–10 comments, with “View more”       |
| **Messages/Chats**   | Loads recent messages first, older on scroll    |
| **Notifications**    | Loads in pages or batches                       |
| **Followers/Following** | Paginated lists to avoid loading thousands at once |

---

### 🔄 Types of Pagination Used

- **Cursor-based pagination** (e.g., `?after=abc123`)  
  → Used for real-time feeds (like Instagram, Twitter)
  
- **Offset-based pagination** (e.g., `?offset=20&limit=10`)  
  → Used for simpler lists (like followers)

---

Would you like a **code example** of how cursor-based pagination works in a FastAPI app, similar to how social media apps do it?




# FastAPI



FastAPI is a modern and high-performance web framework for building APIs with Python. It is designed to be simple, fast and developer-friendly. Built on top of Starlette (for web routing) and Pydantic (for data validation), FastAPI provides everything you need to create robust APIs quickly.

#### Installation Fast API

* Create A floder for FastAPI

* Open the Terminal in VS Code
    - Go to View > Terminal or press Ctrl + ` to open the integrated terminal.

* Create a Virtual Environment - In your project folder, run:
    - `python -m venv venv`

* Activate the Virtual Environment
    - `.\venv\Scripts\Activate`

* Windows (Command Prompt):
    - `venv\Scripts\activate.bat`

* Install FastAPI and Uvicorn Inside the Virtual Environment
    - `pip install fastapi uvicorn`

* Run Your FastAPI App
    - Assuming your file is named main.py and contains app = FastAPI():
    - uvicorn main:app --reload





#### Key Concepts of REST

1. Resources as data: Information is organized into resources (such as users, products or documents).

2. Unique URLs (endpoints): Each resource is identified and accessed through a specific URL.

3. Standard HTTP methods: Operations on resources are performed using well-defined methods:

* GET: Retrieve data
* POST: Create new data
* PUT: Update existing data
* DELETE: Remove data

### JSON Structure

* Data is organized as key-value pairs
* Keys are always strings (in double quotes)

Values can be:

- String ("Kishore")
- Number (25)
- Boolean (true or false)
- Array ([1, 2, 3])
- Object ({"name": "Kishore"})
- Null (null)