#1. What is a RESTful API?

A RESTful API is an Application Programming Interface that follows the principles of REST (Representational State Transfer). It uses HTTP methods like GET, POST, PUT, and DELETE to perform CRUD (Create, Read, Update, Delete) operations. REST is stateless, meaning each request from a client must contain all necessary information. Data is usually exchanged in JSON or XML formats. RESTful APIs allow communication between different systems or applications over the web. They are scalable, lightweight, and widely used in web development. REST emphasizes resources, which are represented by URLs (endpoints). For example, /users may represent a resource of users. REST APIs also rely on HTTP status codes for error handling and success responses.

#2. Explain the concept of API specification

An API specification is a formal contract that defines how a client can interact with an API. It describes the endpoints, request/response formats, parameters, authentication methods, and error codes. API specifications help developers understand how to use the API without needing to see its code. Popular specification formats include OpenAPI (Swagger) and RAML. They ensure consistency across teams and projects. With an API specification, you can also automatically generate documentation and even mock servers for testing. This makes collaboration between backend and frontend teams easier. Specifications reduce misunderstandings and serve as a blueprint for development.

#3. What is Flask, and why is it popular for building APIs?

Flask is a lightweight Python web framework used to build web applications and APIs. It is based on Werkzeug (for WSGI) and Jinja2 (for templating). Flask is popular because it is simple, flexible, and minimalistic, allowing developers to start small and scale when needed. Unlike larger frameworks like Django, Flask does not enforce strict project structures. Developers can pick only the extensions they need, such as Flask-SQLAlchemy or Flask-RESTful. Flask has a large community, plenty of documentation, and is beginner-friendly. Its simplicity makes it an excellent choice for prototyping APIs quickly.

#4. What is routing in Flask?

Routing in Flask refers to the process of mapping URLs to functions (views). When a user visits a specific URL, Flask uses the defined route to determine which function should handle the request. For example, / can be routed to a home page function, while /users can return a list of users. Flask provides the @app.route() decorator to define routes. Routing allows dynamic URLs with parameters (e.g., /user/<id>). This feature makes Flask applications flexible in responding to different types of client requests. Routing is central to building both web pages and APIs.

#5. How do you create a simple Flask application?

To create a simple Flask app:

Install Flask using pip install flask.

Create a Python file (e.g., app.py).

    Import Flask:

    from flask import Flask
    app = Flask(__name__)


    Define a route:

    @app.route("/")
    def home():
      return "Hello, Flask!"


Run the server:

    if __name__ == "__main__":
       app.run(debug=True)


This minimal setup creates a working web application. Visiting http://127.0.0.1:5000/ will show "Hello, Flask!".

#6. What are HTTP methods used in RESTful APIs?

HTTP methods define the type of action to perform on a resource:

GET > Retrieve data (Read).

POST > Create new data (Insert).

PUT > Update existing data (Replace).

PATCH > Partially update data.

DELETE > Remove data.

OPTIONS > Check supported methods for a resource.

HEAD > Similar to GET but without the response body.
These methods make REST APIs predictable and easy to use by following CRUD principles.

#7. What is the purpose of the @app.route() decorator in Flask?

The @app.route() decorator is used to bind a URL path to a specific function in Flask. For example, @app.route("/users") means whenever /users is requested, the associated function is executed. It helps in defining multiple endpoints in a structured way. It also supports dynamic paths, like /user/<id>. This makes it possible to build RESTful API endpoints easily. Without @app.route(), Flask would not know how to handle requests for different URLs.

#8. What is the difference between GET and POST HTTP methods?

GET: Used to retrieve data from the server. Parameters are sent in the URL query string (e.g., /users?id=1). It is idempotent (repeated requests give the same result).

POST: Used to send data to the server, usually in the request body. Commonly used for creating new records. Unlike GET, POST is not idempotent (repeated requests may create duplicates).
In summary, GET = read, POST = create.

#9. How do you handle errors in Flask APIs?

Flask provides multiple ways to handle errors:

Using abort() function for common errors (abort(404)).

Defining custom error handlers with @app.errorhandler().

Returning JSON error responses for APIs.
Example:

    @app.errorhandler(404)
    def not_found(error):
      return {"error": "Resource not found"}, 404


This ensures users get meaningful responses instead of generic HTML errors. Proper error handling improves API usability.

#10. How do you connect Flask to a SQL database?

You can connect Flask to a database using libraries like Flask-SQLAlchemy or raw SQL with SQLite/MySQL/PostgreSQL connectors. For example:

    from flask_sqlalchemy import SQLAlchemy
    app.config["SQLALCHEMY_DATABASE_URI"] = "sqlite:///test.db"
    db = SQLAlchemy(app)


This setup initializes a database. Then, you can define models (tables) and interact with the database using ORM methods.

#11. What is the role of Flask-SQLAlchemy?

Flask-SQLAlchemy is an Object Relational Mapper (ORM) extension. It allows you to interact with a database using Python classes instead of raw SQL queries. You define models as Python classes, and Flask-SQLAlchemy handles table creation, queries, and relationships. Example:

    class User(db.Model):
      id = db.Column(db.Integer, primary_key=True)
      name = db.Column(db.String(50))


With this, you can run User.query.all() instead of writing SELECT * FROM users;. It simplifies database operations and makes code more readable.

#12. What are Flask blueprints, and how are they useful?

Blueprints allow developers to organize large Flask applications into smaller modules. Instead of writing all routes in one file, you can create separate files (blueprints) for different features (e.g., auth.py, users.py). Each blueprint can define its routes and then be registered with the main app. Example:

    from flask import Blueprint
    auth_bp = Blueprint("auth", __name__)
    @auth_bp.route("/login")
    def login():
       return "Login Page"


This improves code organization, scalability, and maintainability.

#13. What is the purpose of Flask's request object?

The request object provides access to HTTP request data sent by the client. It includes:

request.args → Query parameters (GET data).

request.form → Form data (POST data).

request.json → JSON payload.

request.headers → Request headers.

request.method → HTTP method used.
This object is essential for handling client input in APIs.

#14. How do you create a RESTful API endpoint using Flask?

To create a RESTful API endpoint:

from flask import Flask, jsonify, request
app = Flask(__name__)

    @app.route("/api/users", methods=["GET"])
    def get_users():
      users = [{"id": 1, "name": "Alice"}]
      return jsonify(users)


Here /api/users is the endpoint. Using methods=["GET"] defines the request type. jsonify() ensures the response is in JSON format.

#15. What is the purpose of Flask's jsonify() function?

The jsonify() function is used to convert Python dictionaries/lists into JSON responses. It automatically sets the Content-Type header to application/json, ensuring proper API responses. Example:

    return jsonify({"message": "Success"})


This is preferred over return json.dumps(...) because jsonify integrates with Flask’s response system.

#16. Explain Flask’s url_for() function

The url_for() function dynamically generates URLs for routes. Instead of hardcoding paths, you reference the function name. Example:

    @app.route("/profile/<username>")
    def profile(username):
      return f"Profile: {username}"

url_for("profile", username="Alice")


This would return /profile/Alice. It ensures routes remain consistent even if endpoints change later.

#17. How does Flask handle static files (CSS, JavaScript, etc.)?

Flask automatically serves static files from the /static folder. By default, you place CSS, JS, and images inside project/static/. You can then reference them in templates using url_for("static", filename="style.css"). Flask handles mapping and ensures efficient delivery of these files.

#18. What is an API specification, and how does it help in building a Flask API?

An API specification acts as a blueprint for designing an API. It lists available endpoints, request methods, parameters, expected responses, and error codes. When building Flask APIs, a specification ensures developers know what to implement and clients know how to use it. It also allows tools like Swagger UI to auto-generate documentation. This makes APIs more reliable, consistent, and easier to test.

#19. What are HTTP status codes, and why are they important in a Flask API?

HTTP status codes indicate the result of an HTTP request:

200 OK > Success.

201 Created > New resource created.

400 Bad Request > Invalid client input.

401 Unauthorized > Authentication required.

404 Not Found > Resource missing.

500 Internal Server Error > Server failure.
They provide meaningful feedback to API consumers, helping in debugging and proper client-side handling.

#20. How do you handle POST requests in Flask?

You handle POST requests by specifying methods=["POST"] in @app.route(). Example:

    @app.route("/api/add", methods=["POST"])
    def add_user():
       data = request.json
       return jsonify({"message": "User added", "data": data}), 201


Here, request.json reads JSON body data. Returning status code 201 indicates successful creation.

#21. How would you secure a Flask API?

Flask APIs can be secured using:

Authentication (API keys, JWT tokens, OAuth).

Authorization (role-based access control).

Input validation & sanitization (to prevent SQL injection, XSS).

HTTPS for encrypted communication.

Rate limiting (to prevent abuse).

CORS policies (restrict cross-domain access).
Flask extensions like Flask-JWT-Extended and Flask-Limiter make implementing security easier.

#22. What is the significance of the Flask-RESTful extension?

Flask-RESTful is an extension that simplifies building REST APIs. It provides a Resource class where you can define HTTP methods (get, post, put, delete) as class methods. Example:

    from flask_restful import Resource, Api
    api = Api(app)

    class Hello(Resource):
       def get(self):
         return {"message": "Hello"}

    api.add_resource(Hello, "/hello")


This makes APIs more structured, reusable, and cleaner than using only @app.route().

#23. What is the role of Flask’s session object?

The session object in Flask is used to store data across requests for a specific user. Unlike request, which lasts only during one request, session data persists until the user logs out or the session expires. Flask stores sessions securely using signed cookies. Example:

    from flask import session
    session["username"] = "Alice"


This allows tracking user state, authentication status, or preferences across multiple requests.

In [1]:
# @title
#1. How do you create a basic Flask application?
from flask import Flask
app = Flask(__name__)

@app.route("/")
def home():
    return "Hello, Flask!"

if __name__ == "__main__":
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


In [None]:
#2. How do you serve static files like images or CSS in Flask?

#Place files inside a folder named static/.

#Example: static/style.css or static/logo.png.

#In HTML:

#<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
#<img src="{{ url_for('static', filename='logo.png') }}">

#3. How do you define different routes with different HTTP methods in Flask?
    @app.route("/users", methods=["GET"])
    def get_users():
      return "Fetching users"

    @app.route("/users", methods=["POST"])
    def add_user():
      return "Adding a new user"

#4. How do you render HTML templates in Flask?

Create a templates/ folder.

Inside, add index.html.

In Flask:

    from flask import render_template

    @app.route("/")
    def home():
      return render_template("index.html", name="Shree")  
      
#5. How can you generate URLs for routes in Flask using url_for?
from flask import url_for

    @app.route("/profile/<username>")
    def profile(username):
       return f"Profile: {username}"

    @app.route("/test")
    def test():
      return url_for("profile", username="Shree")

#6. How do you handle forms in Flask?
    from flask import request

    @app.route("/submit", methods=["GET", "POST"])
    def submit():
      if request.method == "POST":
        name = request.form["name"]
        return f"Hello {name}"
    return '''
        <form method="post">
            <input name="name">
            <input type="submit">
        </form>
    '''

#7. How can you validate form data in Flask?

Using WTForms:

    pip install flask-wtf

    from flask_wtf import FlaskForm
    from wtforms import StringField
    from wtforms.validators import DataRequired

    class MyForm(FlaskForm):
      name = StringField("Name", validators=[DataRequired()])  


#8. How do you manage sessions in Flask?
    from flask import session

    app.secret_key = "mysecret"

    @app.route("/login")
    def login():
      session["user"] = "Shree"
      return "Logged in!"

    @app.route("/profile")
    def profile():
      return f"User: {session.get('user')}"   

#9. How do you redirect to a different route in Flask?
from flask import redirect, url_for

    @app.route("/home")
    def home():
      return "Home Page"

    @app.route("/go")
    def go():
      return redirect(url_for("home"))                   


#10. How do you handle errors in Flask (e.g., 404)?
    @app.errorhandler(404)
    def page_not_found(e):
     return "Custom 404 Page", 404  


#11. How do you structure a Flask app using Blueprints?

auth.py

    from flask import Blueprint
    auth_bp = Blueprint("auth", __name__)

    @auth_bp.route("/login")
    def login():
     return "Login Page"


app.py

    from flask import Flask
    from auth import auth_bp

    app = Flask(__name__)
    app.register_blueprint(auth_bp, url_prefix="/auth")   

#12. How do you define a custom Jinja filter in Flask?
    @app.template_filter("reverse")
    def reverse_filter(s):
     return s[::-1]

    @app.route("/")
    def home():
      return render_template("index.html", name="Shree")


In index.html:

    <p>{{ name|reverse }}</p>  



#13. How can you redirect with query parameters in Flask?
    @app.route("/search")
    def search():
      query = request.args.get("q")
      return f"Search: {query}"

    @app.route("/go")
    def go():
      return redirect(url_for("search", q="Flask"))

#14. How do you return JSON responses in Flask?
    from flask import jsonify

    @app.route("/api/data")
    def data():
      return jsonify({"name": "Shree", "course": "Data Analytics"})


#15. How do you capture URL parameters in Flask?
    @app.route("/user/<username>")
    def user_profile(username):
      return f"Profile of {username}"

    @app.route("/post/<int:post_id>")
    def post(post_id):
      return f"Post ID: {post_id}"
            
