# **Restful API & Flask**

# **1. What is a RESTful API?**


A RESTful API (Representational State Transfer Application Programming Interface) is a way for different software systems to communicate with each other over the internet using HTTP methods in a consistent, stateless manner.

# **2. Explain the concept of API specification**

An API specification is a detailed blueprint or contract that defines how an API should work.  
**It tells developers:**

- What endpoints exist (like /users, /orders)

- What methods you can use (GET, POST, PUT, DELETE, etc.)

- What data is required in a request (parameters, headers, authentication)

- What responses you will get (status codes, JSON structure, errors)

# **3.  What is Flask, and why is it popular for building APIs.**

Flask is a lightweight, open-source web framework in Python.

- It helps developers quickly build web applications and RESTful APIs.

- It’s called a “micro-framework” because it provides only the essentials (routing, request handling, etc.) and leaves other choices (like database, authentication, etc.) to the developer.

**Why is Flask Popular for Building APIs**   

**1. Simplicity & Minimalism**

Very easy to learn and use → perfect for beginners and small projects.  
You can write a working API in just a few lines of code   
**2. Flexibility**

Unlike larger frameworks (e.g., Django), Flask doesn’t force a specific project structure.

You choose the tools: databases (SQLAlchemy, MongoDB), authentication methods, etc.    
**3. Great for APIs**

Built-in support for routing, request handling, JSON responses.

Easy to create RESTful APIs quickly.

Works well with API documentation tools like Swagger (Flasgger) or Postman.

# **4. What is routing in Flask?**

Routing in Flask means mapping a URL (path) to a specific function in your application.

When a user visits a URL, Flask looks at its routing table and decides which function should handle that request.

That function is called a view function, and the @app.route() decorator is used to define it.

# **5. How do you create a simple Flask application?**

Steps to create a simple Flask application:   
**Step1**. Install flask

In [None]:
pip install flask

**Step 2**. Create a python file  

In [None]:
from flask import Flask

# Create the Flask app instance
app = Flask(__name__)

# Define a route
@app.route('/')
def home():
    return "Hello, Flask!"

# Run the app
if __name__ == '__main__':
    app.run(debug=True)


**Step 3**. Run the app

In [None]:
python app.py

**Step4**.  Open in browser


In [None]:
http://127.0.0.1:5000/ → shows Hello, Flask!

#**6. What are HTTP methods used in RESTful APIs?**

In RESTful APIs, HTTP methods define the type of operation the client wants to perform on a resource (like data stored on the server). The most commonly used methods are:   
**1. GET**

- Purpose: Retrieve data from the server.

- Does not modify data (read-only).

**2. POST**

- Purpose: Create a new resource on the server.

- Data is usually sent in the request body (JSON or form data).

**3. PUT**

- Purpose: Update/replace an existing resource completely.

- If the resource doesn’t exist, it may create one (depends on implementation).

**4. PATCH**

- Purpose: Update/modify part of a resource.

- Unlike PUT, it doesn’t replace the whole resource

**5. DELETE**

- Purpose: Remove a resource from the server.

# **7.  What is the purpose of the @app.route() decorator in Flask?**

The @app.route() decorator in Flask is used for routing.
It maps a URL path (endpoint) to a specific function in your Flask application.
When a user visits that URL, Flask calls the associated function (called a view function) and returns its response.

In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page!"

@app.route('/about')
def about():
    return "This is the About Page."

# **8. What is the difference between GET and POST HTTP methods?**

**GET**  
- Purpose: Retrieve data from the server (read-only).
- Data Location: Data is sent in the URL (query string) → e.g., /search?query=python
- Visibility: Parameters are visible in the URL, so less secure.
- Use Case: Fetching data (e.g., GET /users)

**POST**  
- Purpose: Send data to the server to create a new resource.
- Data Location: Data is sent in the request body (hidden from URL).
- Visibility: Data is not visible in the URL, safer for sensitive info (like passwords).
- Use Case: Submitting forms, creating new records (e.g., POST /users).

# **9. How do you handle errors in Flask APIs?**

In Flask, errors can be handled using error handlers and returning custom JSON responses instead of plain HTML error pages.

**1. Using @app.errorhandler()**

You can define custom responses for HTTP errors like 404 Not Found, 500 Internal Server Error, etc.

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

# Custom error handler for 404
@app.errorhandler(404)
def not_found(error):
    return jsonify({"error": "Resource not found"}), 404

# Custom error handler for 500
@app.errorhandler(500)
def server_error(error):
    return jsonify({"error": "Internal server error"}), 500


**2. Handling Errors Inside Routes (try–except)**

You can also handle exceptions inside routes:

In [None]:
@app.route('/divide/<int:a>/<int:b>')
def divide(a, b):
    try:
        result = a / b
        return jsonify({"result": result})
    except ZeroDivisionError:
        return jsonify({"error": "Division by zero is not allowed"}), 400

**3. Using abort() for Custom Errors**

Flask provides the abort() function to stop a request and return an HTTP error.

In [None]:
from flask import abort

@app.route('/user/<int:id>')
def get_user(id):
    users = {1: "Moli", 2: "John"}
    if id not in users:
        abort(404, description="User not found")
    return jsonify({"id": id, "name": users[id]})


# **10. How do you connect Flask to a SQL database?**

There are two common ways:

1. Using raw SQL with sqlite3 or mysql.connector

2. Using an ORM (Object Relational Mapper) like SQLAlchemy → most popular in Flask.

# **11.  What is the role of Flask-SQLAlchemy?**

The main roles of Flask-SQLAlchemy are:

**1. Database Connection Management**

Provides an easy way to connect Flask apps to different SQL databases (SQLite, MySQL, PostgreSQL, etc.).

**2. ORM (Object Relational Mapping)**

Converts Python classes into database tables.

Each object instance represents a row in the table.

**3. Simplifies Queries**

Instead of writing raw SQL, you use Python methods.

**4. Schema Management**

Automatically creates tables from models (db.create_all()).

Manages relationships (One-to-Many, Many-to-Many).

**5. Session Handling**

Provides a session object (db.session) to add, update, or delete records safely.

# **12.  What are Flask blueprints, and how are they useful?**

A Blueprint in Flask is a way to organize and structure your application into smaller, reusable components.

- Think of a Blueprint as a mini-application inside your Flask app.

- It can define its own routes, views, static files, templates, and error handlers.

- Later, you register the Blueprint with the main Flask application.   

**Blueprints are useful because they:**

**1. Organize large applications**

Instead of keeping all routes in app.py, you can split them into modules (e.g., users.py, products.py).

**2. Encourage code reusability**

You can reuse a Blueprint across multiple applications.

**3. Support modular development**

Teams can work on different parts of the app independently.

**4. Simplify API versioning**

Example: api_v1 and api_v2 can be separate Blueprints.

**5. Cleaner project structure**

Keeps code readable and maintainable.

# **13. What is the purpose of Flask's request object?**

The request object in Flask (imported from flask) is used to access all the data sent by the client in an HTTP request.

**It gives information about:**

- Request method (GET, POST, PUT, DELETE, etc.)

- Form data (submitted via HTML forms)

- Query parameters (in the URL)

- JSON data (sent in API requests)

- Headers, cookies, and files

# **14. How do you create a RESTful API endpoint using Flask?**

To create a RESTful API endpoint in Flask, you:

- Import Flask and create an app.

- Define routes (@app.route) for your resources.

- Use HTTP methods (GET, POST, PUT, DELETE) to perform CRUD operations.

- Return JSON responses using jsonify().

# **15. What is the purpose of Flask's jsonify() function?**

The purpose of Flask’s jsonify() function is to create a proper JSON response for APIs in a Flask application.

**1. Converts Python objects to JSON**    
It takes Python dictionaries, lists, or other serializable objects and converts them into a JSON-formatted string.



In [None]:
from flask import jsonify

data = {"name": "Alice", "age": 22}
response = jsonify(data)

**2. Sets the correct MIME type**   
Unlike json.dumps(), jsonify() also sets the response content type to:

In [None]:
Content-Type: application/json

**3. Returns a proper Response object**   
It generates a Flask Response object, not just raw text. This allows you to add headers, status codes, etc.

In [None]:
return jsonify(data), 200   # 200 = OK status

jsonify() makes it easier and safer to return JSON data from Flask routes, ensuring the correct format and headers for API responses

# **16.  Explain Flask’s url_for() function?**

Flask’s url_for() function is used to build URLs dynamically for your application instead of hardcoding them.

**Purpose of url_for():**

- It generates the correct URL for a given view function by using its function name.

- This makes your app more flexible and easier to maintain — if you change a route later, you don’t need to update URLs everywhere in your code or templates.

In [None]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to Home Page"

@app.route('/profile/<username>')
def profile(username):
    return f"Profile page of {username}"

with app.test_request_context():
    print(url_for('home'))  # Output: /
    print(url_for('profile', username="Alice"))  # Output: /profile/Alice


**Key Features:**

**1. Dynamic URL generation**   
Pass parameters as keyword arguments:

In [None]:
url_for('profile', username="John")
# /profile/John

**2. Handles query strings**   
You can add extra arguments for query parameters:

In [None]:
url_for('profile', username="John", age=25)
# /profile/John?age=25

**3. Prevents broken links**   
If you later change:

In [None]:
@app.route('/user/<username>')
def profile(username): ...

**4. Useful in templates**   
In Jinja2 templates:

In [None]:
<a href="{{ url_for('home') }}">Home</a>
<a href="{{ url_for('profile', username='Alice') }}">Alice's Profile</a>

url_for() generates URLs for routes based on function names, making your Flask application cleaner, more maintainable, and less error-prone.

# **17. How does Flask handle static files (CSS, JavaScript, etc.)?**

Flask serves static files from a folder named static/ by default. Any file placed inside this folder can be accessed using a URL like:

In [None]:
http://localhost:5000/static/<filename>

# **18. What is an API specification, and how does it help in building a Flask API?**

An API specification is a detailed description of how an API should work. It defines:

- Endpoints (routes/URLs)

- HTTP methods (GET, POST, PUT, DELETE, etc.)

- Request parameters (query params, path params, body data)

- Response format (status codes, JSON structure, error messages)

- Authentication rules (if required)

Common formats include OpenAPI (Swagger), RAML, and API Blueprint.

**It helps by:**

1. Clear Blueprint – Acts as a contract between backend developers, frontend developers, and testers. Everyone knows what data to send and what to expect.

2. Consistency – Ensures all API endpoints follow a uniform structure (naming, response format, error handling).

3. Documentation – API specs (like OpenAPI/Swagger) can automatically generate interactive docs, making it easier for others to use your Flask API.

4. Validation – Tools can validate requests/responses against the specification to catch errors early.

5. Faster Development – Developers can design the API first (spec-driven development) and then implement endpoints in Flask accordingly

# **19.  What are HTTP status codes, and why are they important in a Flask API?**

HTTP status codes are standard 3-digit numbers returned by a web server in response to a client’s request. They indicate the result of the request — whether it was successful, caused an error, or needs further action.

**Example categories:**

2xx → Success (e.g., 200 OK)

3xx → Redirection (e.g., 302 Found)

4xx → Client errors (e.g., 404 Not Found)

5xx → Server errors (e.g., 500 Internal Server Error)

**They are important because they:**

Communicate results clearly → Clients know if a request succeeded or failed.

Help with debugging → Different codes help identify whether an error is from the client (4xx) or the server (5xx).

Improve API usability → Developers using the API can handle responses correctly (e.g., retry on 500, fix request on 400).

Follow REST standards → Returning proper status codes makes the API professional and consistent with HTTP rules.



# **20. How do you handle POST requests in Flask?**

**In Flask, POST requests are handled by:**

- Defining a route with methods=['POST'].

- Accessing request data (form data, JSON, or files) using Flask’s request object.

- Returning a proper response (usually JSON + status code).

# **21. How would you secure a Flask API?**

**Some best practices include:**

**1. Authentication & Authorization**

Require users to prove identity before accessing resources.

Methods: API keys, JWT (JSON Web Tokens), OAuth2.


In [None]:
from flask import request, jsonify

def token_required(f):
    def wrapper(*args, **kwargs):
        token = request.headers.get("Authorization")
        if token != "my-secret-token":
            return jsonify({"error": "Unauthorized"}), 401
        return f(*args, **kwargs)
    return wrapper

**2. Use HTTPS (SSL/TLS)**

Always serve APIs over https:// to encrypt communication and prevent data sniffing.

**3. Input Validation & Sanitization**

Validate all incoming data (use libraries like Marshmallow or Pydantic).

Prevent SQL Injection, XSS, or command injection.

**4. Rate Limiting & Throttling**

Prevent abuse by limiting how many requests a client can make.

Example: Flask-Limiter library.

In [None]:
from flask_limiter import Limiter
limiter = Limiter(get_remote_address, app=app)

@app.route("/login")
@limiter.limit("5 per minute")
def login():
    return "Login attempt"


**5. Error Handling & Response Codes**

Never expose sensitive stack traces in production.

Return proper status codes like 401 Unauthorized, 403 Forbidden, 500 Internal Server Error.

**6. CORS (Cross-Origin Resource Sharing)**

Use Flask-CORS to control which domains can access your API.

In [None]:
from flask_cors import CORS
CORS(app, resources={r"/api/*": {"origins": "https://my-frontend.com"}})


**7. Secure Configuration**

Keep secret keys and database credentials in environment variables, not in code.

Disable DEBUG=True in production.

# **22. What is the significance of the Flask-RESTful extension?**

**It is significant because it:**

**1. Organizes API endpoints better**

- Uses Resource classes instead of plain functions.

- Each class represents an API resource with methods like get(), post(), put(), delete().

**2. Reduces boilerplate code**

- Handles routing automatically with Api.add_resource().

**3. Supports Request Parsing**

- reqparse helps validate and extract request arguments (query params, form data, JSON).

**4. Automatic JSON Responses**

- Converts Python dictionaries into JSON with correct headers.

**5. Cleaner & Maintainable Code**

- Separates business logic from route definitions, making large APIs easier to manage.

# **23. What is the role of Flask’s session object?**

Flask’s session object is a dictionary-like object that allows you to store data for a user across multiple requests.   
It keeps track of user-specific information (like login status, preferences, or shopping cart items) between requests.

- Flask uses secure cookies (signed with the app’s SECRET_KEY) to store session data on the client’s browser.

- Since the data is cryptographically signed, users cannot modify it without detection.

- On each request, Flask loads session data and makes it available via the session object.

# **PRACTICAL QUESTIONS**

**1.  How do you create a basic Flask application?**

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route("/")
def home():
    return "Hello, Flask!"

if __name__ == "__main__":
    app.run(debug=True)


::**2. How do you serve static files like images or CSS in Flask?**

In [2]:
#Create a static/ folder in your Flask project structure:
# my_flask_app/
# ├── app.py
# ├── static/
# │   ├── style.css
# │   ├── script.js
# │   └── images/
# │       └── logo.png
# └── templates/
#     └── index.html

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Static Files in Flask</title>
    <!-- Linking CSS -->
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Welcome to Flask!</h1>
    <!-- Displaying an image -->
    <img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
</body>
</html>


**3. How do you define different routes with different HTTP methods in Flask?**

In [None]:
from flask import Flask, request

app = Flask(__name__)

# Route for GET request
@app.route('/get_example', methods=['GET'])
def get_example():
    return "This is a GET request"

# Route for POST request
@app.route('/post_example', methods=['POST'])
def post_example():
    data = request.form.get('name')  # reading form data
    return f"Hello, {data}! (from POST request)"

# Route handling both GET and POST
@app.route('/both_example', methods=['GET', 'POST'])
def both_example():
    if request.method == 'GET':
        return "You sent a GET request"
    elif request.method == 'POST':
        return "You sent a POST request"

if __name__ == '__main__':
    app.run(debug=True)


**4. How do you render HTML templates in Flask?**

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    # Render index.html template
    return render_template('index.html', name="Maulshree")

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Template Example</title>
</head>
<body>
    <h1>Hello, {{ name }}!</h1>
    <p>This HTML page is rendered using Flask's render_template.</p>
</body>
</html>


**5. How can you generate URLs for routes in Flask using url_for?**

In [None]:
from flask import Flask, url_for, redirect

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to Home Page"

@app.route('/about')
def about():
    return "This is the About Page"

@app.route('/redirect_to_about')
def redirect_to_about():
    # Generate URL for 'about' route
    about_url = url_for('about')
    return redirect(about_url)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
@app.route('/user/<username>')
def profile(username):
    return f"User: {username}"

@app.route('/get_profile')
def get_profile():
    # Generates URL: /user/Maulshree
    return url_for('profile', username='Maulshree')


**6.  How do you handle forms in Flask?**

In [None]:
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/form', methods=['GET', 'POST'])
def handle_form():
    if request.method == 'POST':
        # Get form data
        username = request.form['username']
        email = request.form['email']
        return f"Hello {username}, your email is {email}"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Flask Form Example</title>
</head>
<body>
    <h2>Enter your details</h2>
    <form method="POST" action="/form">
        <label>Username:</label>
        <input type="text" name="username" required><br><br>

        <label>Email:</label>
        <input type="email" name="email" required><br><br>

        <input type="submit" value="Submit">
    </form>
</body>
</html>


**7. How can you validate form data in Flask?**

There are two common ways to validate form data in Flask:

1. Manual validation using request.form

2. Using Flask-WTF

In [None]:
#Manual validation using request.form
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/register', methods=['GET', 'POST'])
def register():
    error = None
    if request.method == 'POST':
        username = request.form.get('username')
        email = request.form.get('email')

        # Simple validation
        if not username or not email:
            error = "All fields are required!"
        elif "@" not in email:
            error = "Invalid email address!"
        else:
            return f"Welcome {username}, registered with {email}"

    return render_template('register.html', error=error)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Register</title>
</head>
<body>
    <h2>Registration Form</h2>
    {% if error %}
        <p style="color:red;">{{ error }}</p>
    {% endif %}
    <form method="POST">
        <label>Username:</label>
        <input type="text" name="username"><br><br>

        <label>Email:</label>
        <input type="text" name="email"><br><br>

        <input type="submit" value="Register">
    </form>
</body>
</html>


In [None]:
#Using Flask-WTF

pip install flask-wtf

In [None]:
from flask import Flask, render_template
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Email

app = Flask(__name__)
app.secret_key = "secretkey123"  # Required for CSRF protection

# Define Form
class RegistrationForm(FlaskForm):
    username = StringField("Username", validators=[DataRequired()])
    email = StringField("Email", validators=[DataRequired(), Email()])
    submit = SubmitField("Register")

@app.route('/register', methods=['GET', 'POST'])
def register():
    form = RegistrationForm()
    if form.validate_on_submit():  # Auto-validation
        return f"Welcome {form.username.data}, registered with {form.email.data}"
    return render_template('register_wtf.html', form=form)

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Flask-WTF Form</title>
</head>
<body>
    <h2>Register</h2>
    <form method="POST">
        {{ form.hidden_tag() }} <!-- CSRF Token -->
        {{ form.username.label }} {{ form.username }} <br><br>
        {{ form.email.label }} {{ form.email }} <br><br>
        {{ form.submit }}
    </form>

    {% for field, errors in form.errors.items() %}
        {% for error in errors %}
            <p style="color:red;">Error in {{ field }}: {{ error }}</p>
        {% endfor %}
    {% endfor %}
</body>
</html>


**8.  How do you manage sessions in Flask?**

In Flask, sessions are used to store information about a user across multiple requests (like login state, preferences, etc.). Flask stores session data on the server side (signed with a secret key).

In [None]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = "mysecretkey123"  # Required for signing session cookies

@app.route('/')
def home():
    if 'username' in session:
        return f"Welcome back, {session['username']}!"
    return "You are not logged in. <a href='/login'>Login here</a>"

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['username'] = request.form['username']  # Save data in session
        return redirect(url_for('home'))
    return '''
        <form method="POST">
            <input type="text" name="username" placeholder="Enter username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/logout')
def logout():
    session.pop('username', None)  # Remove data from session
    return redirect(url_for('home'))

if __name__ == '__main__':
    app.run(debug=True)


**9.  How do you redirect to a different route in Flask?**

Flask provides the redirect() function (to send users to another route) and url_for() (to generate the route URL dynamically).

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page! <a href='/go-to-about'>Go to About</a>"

@app.route('/about')
def about():
    return "This is the About Page"

@app.route('/go-to-about')
def go_to_about():
    # Redirecting to about page
    return redirect(url_for('about'))

@app.route('/user/<name>')
def user(name):
    return f"Hello, {name}!"

@app.route('/go-to-user')
def go_to_user():
    # Redirect to /user/Maulshree
    return redirect(url_for('user', name='Maulshree'))

if __name__ == '__main__':
    app.run(debug=True)


**10. How do you handle errors in Flask (e.g., 404)?**

In [None]:
#Handling 404 Error
from flask import Flask, render_template

app = Flask(__name__)

# Normal route
@app.route('/')
def home():
    return "Welcome to the Homepage!"

# Handle 404 error
@app.errorhandler(404)
def page_not_found(e):
    return render_template("404.html"), 404   # custom HTML page

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# 404.html (template)

<!DOCTYPE html>
<html>
<head>
    <title>Page Not Found</title>
</head>
<body>
    <h1>Oops! 404 Error</h1>
    <p>The page you’re looking for does not exist.</p>
    <a href="/">Go back to Home</a>
</body>
</html>


**11.  How do you structure a Flask app using Blueprints?**

In [None]:
#Step 1: Create main Blueprint (main/routes.py)
from flask import Blueprint, render_template

# Define Blueprint
main = Blueprint('main', __name__)

@main.route('/')
def home():
    return render_template('home.html')


In [None]:
from .routes import main

In [None]:
# Step 2: Create auth Blueprint (auth/routes.py)
from flask import Blueprint, render_template

auth = Blueprint('auth', __name__)

@auth.route('/login')
def login():
    return render_template('login.html')


In [None]:
from .routes import auth


In [None]:
# Step 3: Register Blueprints in app.py
from flask import Flask

# Import blueprints
from main import main
from auth import auth

def create_app():
    app = Flask(__name__)

    # Register blueprints
    app.register_blueprint(main)
    app.register_blueprint(auth, url_prefix="/auth")  # all routes under /auth

    return app

if __name__ == '__main__':
    app = create_app()
    app.run(debug=True)


**12.  How do you define a custom Jinja filter in Flask?**

In [None]:
# Step 1: Define a Custom Filter Function
def reverse_string(s):
    return s[::-1]


In [None]:
# Step 2: Register the Filter in Flask
#You can register filters in two ways:

# Method 1: Using app.template_filter


from flask import Flask, render_template

app = Flask(__name__)

# Define custom filter
@app.template_filter('reverse')
def reverse_string(s):
    return s[::-1]

@app.route('/')
def home():
    return render_template('index.html', name="Moli")

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
# Method 2: Using app.jinja_env.filters
def reverse_string(s):
    return s[::-1]

app.jinja_env.filters['reverse'] = reverse_string


In [None]:
# Step 3: Use the Custom Filter in Jinja Template (index.html)

<!DOCTYPE html>
<html>
<head>
    <title>Custom Filter Example</title>
</head>
<body>
    <h1>Original: {{ name }}</h1>
    <h2>Reversed: {{ name|reverse }}</h2>
</body>
</html>


**13. How can you redirect with query parameters in Flask?**

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    # Redirect to /dashboard with query params
    return redirect(url_for('dashboard', user="Moli", role="admin"))

@app.route('/dashboard')
def dashboard():
    # Retrieve query params
    user = request.args.get("user")
    role = request.args.get("role")
    return f"Hello {user}, your role is {role}!"

if __name__ == '__main__':
    app.run(debug=True)


**14. How do you return JSON responses in Flask?**

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/json')
def json_response():
    data = {
        "message": "Hello, Flask!",
        "status": "success",
        "items": [1, 2, 3, 4]
    }
    return jsonify(data)   # Flask automatically sets Content-Type: application/json

if __name__ == '__main__':
    app.run(debug=True)


**15. How do you capture URL parameters in Flask?**

In [None]:
# 1. Capturing a single parameter
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def show_user(username):
    return f"Hello, {username}!"

if __name__ == "__main__":
    app.run(debug=True)


In [None]:
# 2. Capturing parameters with a type converter

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f"Post ID: {post_id}"


# 3. Capturing multiple parameters

@app.route('/book/<string:author>/<int:book_id>')
def book(author, book_id):
    return f"Author: {author}, Book ID: {book_id}"

# 4. Capturing query parameters (after ?)

from flask import request

@app.route('/search')
def search():
    query = request.args.get('q')  # /search?q=flask
    return f"Search query: {query}"
