**Restful API & Flask Assignment Questions & Answers**

1. What is a RESTful API?
   - A REST API (Representational State Transfer API) is a type of API that uses HTTP methods to interact with resources, following principles like statelessness, client-server architecture, and cacheability, allowing applications to communicate and exchange data efficiently.

2. Explain the concept of API specification?
   - An API specification provides a broad understanding of the functionality of the API and the expected results.
   - The specification is largely about the design of the API or your design philosophy.
   - API design and functionality are key factors when choosing to integrate an API with an application.

3. What is Flask, and why is it popular for building APIs?
   - Flask is a popular Python web framework that is widely used to design sophisticated web applications, APIs, and microservices.
   - As a result, this framework's simplicity, flexibility, scalability, reliability, and ability to process increased traffic are the key factors behind its popularity among businesses.

4. What is routing in Flask?
   - Routing in Flask are a fundamental concept in the web framework.
   - Routeing can be described as the designated paths or endpoints in a web application that correspond to specific functions.
   - These functions are responsible for processing requests and returning the appropriate responses.

5. How do you create a simple Flask application?
  - To create a simple Flask application, import the Flask class, create an instance of it, define routes using decorators, and then run the app.
  - Import Flask:

In [None]:
from flask import Flask

  - Create a Flask app instance:

In [None]:
app = Flask(__name__)

  - Define a route:

In [None]:
@app.route("/")
def hello_world():
    return "<p>Hello, World!</p>"

      - The @app.route("/") decorator tells Flask that the hello_world function should handle requests to the root URL ("/").
      - The function returns the HTML string "<p>Hello, World!</p>", which will be displayed in the browser.

   - Run the application:

In [None]:
if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


     - app.run(debug=True) starts the Flask development server.
     - debug=True enables debug mode, which provides helpful error messages and automatically reloads the server when you make changes to the code.  
  - Complete Example:

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route("/")
def hello_world():
    return "<p>Hello, World!</p>"

if __name__ == '__main__':
    app.run(debug=True)

  - To run this application:
    - Save the code as a Python file (e.g., app.py).
    - Open a terminal or command prompt.
    - Navigate to the directory where you saved the file.
    - Run the command python app.py.
    - Open your web browser and go to http://127.0.0.1:5000/.

6. What are HTTP methods used in RESTful APIs?
   - In RESTful APIs, the primary HTTP methods used for interacting with resources are GET (retrieve), POST (create), PUT (update), PATCH (partial update), and DELETE (delete), corresponding to the CRUD (Create, Read, Update, Delete) operations.
   - GET: Retrieves a representation of a resource.
   - POST: Creates a new resource.
   - PUT: Replaces an entire resource with the provided data.
   - PATCH: Partially updates a resource.
   - DELETE: Deletes a resource.

7. What is the purpose of the @app.route() decorator in Flask?
   - Flask decorator that you have probably used is the @app. route('/') for defining routes.
   - When displaying the output to a browser, this decorator converts a function into a route that can be accessed by the browser without having to explicitly invoke the function in the program.
   - Because each view in Flask is a function, decorators can be used to inject additional functionality to one or more functions.
   - The route() decorator is the one you probably used already. But there are use cases for implementing your own decorator.

8. What is the difference between GET and POST HTTP methods?
   - The core difference between GET and POST HTTP methods is their purpose:  
     GET requests are used to retrieve data from a server, while POST requests are used to send or submit data to a server, often for creating or updating resources.
     - GET:
       - Purpose: Retrieves data from a server.
       - Data Transmission: Data is included in the URL (as query parameters).
       - Side Effects: Should be idempotent (repeated requests should have the same effect as a single request) and should not modify server state.
      - Use Cases: Fetching a webpage, searching for information, filtering data.
      - Security: Less secure as data is visible in the URL.
      - Caching: GET requests are often cached by browsers and servers.
    - POST:
      - Purpose: Sends data to a server, often for creating or updating resources.
      - Data Transmission: Data is included in the request body.
      - Side Effects: Can modify server state (e.g., creating a new record, updating an existing one).
      - Use Cases: Submitting forms, uploading files, creating new resources.
      - Security: More secure as data is not visible in the URL.
      - Caching: POST requests are generally not cached.

9. How do you handle errors in Flask APIs?
   - This can be done by registering error handlers. When Flask catches an exception while handling a request, it is first looked up by code.
   - If no handler is registered for the code, Flask looks up the error by its class hierarchy; the most specific handler is chosen.

10. How do you connect Flask to a SQL database?
    - After configuring SQLAlchemy by setting a database URI and disabling tracking, you create a database object using the SQLAlchemy class, passing the application instance to connect your Flask application with SQLAlchemy. You store your database object in a variable called db.
    - To create a connection between the MySQL database and Python, the connect() method of mysql. connector module is used.
    - We pass the database details like HostName, username, and the password in the method call, and then the method returns the connection object.

11. What is the role of Flask-SQLAlchemy?
    - Flask-SQLAlchemy is a Flask extension that simplifies the integration of the SQLAlchemy library, a powerful SQL toolkit and ORM (Object-Relational Mapper), into Flask applications, allowing developers to easily interact with databases using Python objects instead of raw SQL.
    - Flask-SQLAlchemy makes it easier to connect Flask applications to databases, define models (data structures), execute queries, and manage database migrations.

12. What are Flask blueprints, and how are they useful?
    - Flask Blueprints provide a way to organize your application into distinct modules or components.
    - Think of them as mini-applications that encapsulate related functionality.
    - Each Blueprint can include routes, templates, static files, and even its configuration settings.

13. What is the purpose of Flask's request object?
    - The Flask Request Object is used to perform both sending and receiving operations from a user's browser to the server and process the request data from the server.
    - It should be imported from the flask module.

14. How do you create a RESTful API endpoint using Flask?
    - Create a directory.
    - Download and install Flask (but you can use any other Python web framework if it suits your needs).
    - Write Python code to handle the requests sent by the API based on what actions were performed.
    - Create endpoint URLs for each action that will be requested and then set up how they're accessed (e.g., GET /user/:id ).
    - Start the server process for this to work correctly - which should be included as part of your main program file after everything else has been added or altered from those basic steps above.
    - We may also want to add more details about authentication keys here, so users who are accessing this, know how to authenticate themselves properly.

15. What is the purpose of Flask's jsonify() function?
    - Flask's jsonify() function simplifies returning JSON data from Flask routes by automatically serializing Python objects into JSON format and setting the appropriate Content-Type header to application/json.

16. Explain Flask’s url_for() function?
    - The url_for() function in Flask is used to generate URLs for a specific function.
    - It accepts the name of the function as its first argument, and any number of keyword arguments, each corresponding to a variable part of the URL rule.

17. How does Flask handle static files (CSS, JavaScript, etc.)?
    - In Flask, static files refer to files such as CSS, JavaScript, images, videos, and audio files that do not change dynamically.
    - Flask provides a built-in way to serve these static files using the /static directory.

18. What is an API specification, and how does it help in building a Flask API?
    - APIFlask is a lightweight Python web API framework based on Flask and marshmallow-code projects.
    - It's easy to use, highly customizable, ORM/ODM-agnostic, and 100% compatible with the Flask ecosystem.
   
19. What are HTTP status codes, and why are they important in a Flask API?
    - HTTP status codes are three-digit codes that indicate the outcome of an API request.
    - They are included in the API's response to the API client, and they include important information that helps the client know how to proceed.

20. How do you handle POST requests in Flask?
    - To handle both GET and POST requests, we add that in the decorator app. route() method.
    - Whatever request you want, we change it in the decorator.
    - Enter the following script in the Python shell.
    - Handle POST requests in Flask
      -Making a POST request in Python
      - Created a new resource we wanted to add to the JSONPlaceholder API.
      - Defined the endpoint to POST the new data.
      - Sent a POST request using the requests. post() method.
      - Used the response.
      - The last step is to print the JSON response data.

21. How would you secure a Flask API?
    - Securing a Python Flask API with JWTs
       - Create a Python API.
       - Integrate the Security Library.
       - Validate JWTs.
       - Use Scopes and Claims.
       - Test the API.
       - Other Library Options.
    - To protect your APIs built with Flask, it is essential to address several key security aspects.
    - Use HTTPS: Employing HTTPS encrypts data in transit, preventing unauthorized access and mitigating the risk of man-in-the-middle attacks.

22. What is the significance of the Flask-RESTful extension?
    - Flask-RESTful stands out as a powerful and flexible extension for building RESTful APIs with Python.
    - Its resource-oriented design, intuitive request parsing, and seamless integration with Flask make it an excellent choice for developers looking to create efficient and scalable APIs.

23. What is the role of Flask’s session object?
    - In Flask, a session object is used to track session data.
    - The session object is essentially a dictionary entity that contains key-value pairs of session parameters and their associated values.
    - This allows the Flask application to maintain state across multiple requests from the same client.




**Practical**

1. How do you create a basic Flask application?


In [None]:
from flask import Flask

app = Flask(__name__)

@app.route("/")
def hello():
    return "Hello, Good Morning!"

if __name__ == "__main__":
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. How do you serve static files like images or CSS in Flask?

In [None]:
<html>
 <head>
   <title>Coding Ninjas</title>
   <link rel="stylesheet" href="/static/style.css">
 </head>
 <body>
   <h1>{{message}}</h1>

   <h3>Available Articles</h3>
   <ol>
     <li>Flask</li>
     <li>React</li>
     <li>DSA</li>
   </ol>

   <script src="/static/scripts.js" charset="utf-8"></script>
 </body>
</html>

3. How do you define different routes with different HTTP methods in Flask?

In [None]:
from flask import Flask, request

app = Flask(__name__)

@app.route("/")
def home():
    return "This is the home page"
if _name_ -- "_main_":
  app.run(debug=True)

4. How do you render HTML templates in Flask?

In [None]:
<!doctype html>
<title>{% block title %}{% endblock %} - Flaskr</title>
<link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
<nav>
  <h1>Flaskr</h1>
  <ul>
    {% if g.user %}
      <li><span>{{ g.user['username'] }}</span>
      <li><a href="{{ url_for('auth.logout') }}">Log Out</a>
    {% else %}
      <li><a href="{{ url_for('auth.register') }}">Register</a>
      <li><a href="{{ url_for('auth.login') }}">Log In</a>
    {% endif %}
  </ul>
</nav>
<section class="content">
  <header>
    {% block header %}{% endblock %}
  </header>
  {% for message in get_flashed_messages() %}
    <div class="flash">{{ message }}</div>
  {% endfor %}
  {% block content %}{% endblock %}
</section>

5. How can you generate URLs for routes in Flask using url_for?

In [None]:
url_for('add', variable=foo)
url_for('remove', variable=foo)

@app.route('/<variable>/add', methods=['GET', 'POST'])
def add(variable):

@app.route('/<variable>/remove', methods=['GET', 'POST'])
def remove(variable):

6. How do you handle forms in Flask?

In [None]:
from flask import Flask, render_template, redirect, url_for
from flask_bootstrap import Bootstrap5

from flask_wtf import FlaskForm, CSRFProtect
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Length

7. How can you validate form data in Flask?

In [None]:
from wtforms import Form, BooleanField, StringField, PasswordField, validators

class RegistrationForm(Form):
    username = StringField('Username', [validators.Length(min=4, max=25)])
    email = StringField('Email Address', [validators.Length(min=6, max=35)])
    password = PasswordField('New Password', [
        validators.DataRequired(),
        validators.EqualTo('confirm', message='Passwords must match')
    ])
    confirm = PasswordField('Repeat Password')
    accept_tos = BooleanField('I accept the TOS', [validators.DataRequired()])

8. How do you manage sessions in Flask?

In [None]:
from flask import Flask, render_template_string, request, session, redirect, url_for


# Create the Flask application
app = Flask(__name__)

# Details on the Secret Key: https://flask.palletsprojects.com/en/2.3.x/config/#SECRET_KEY
# NOTE: The secret key is used to cryptographically-sign the cookies used for storing
#       the session data.
app.secret_key = 'BAD_SECRET_KEY'


@app.route('/set_email', methods=['GET', 'POST'])
def set_email():
    if request.method == 'POST':
        # Save the form data to the session object
        session['email'] = request.form['email_address']
        return redirect(url_for('get_email'))

    return """
        <form method="post">
            <label for="email">Enter your email address:</label>
            <input type="email" id="email" name="email_address" required />
            <button type="submit">Submit</button
        </form>
        """


@app.route('/get_email')
def get_email():
    return render_template_string("""
            {% if session['email'] %}
                <h1>Welcome {{ session['email'] }}!</h1>
            {% else %}
                <h1>Welcome! Please enter your email <a href="{{ url_for('set_email') }}">here.</a></h1>
            {% endif %}
        """)


@app.route('/delete_email')
def delete_email():
    # Clear the email stored in the session object
    session.pop('email', default=None)
    return '<h1>Session deleted!</h1>'


if __name__ == '__main__':
    app.run()

To run this example, start by creating and activating a new virtual environment:

$ mkdir flask-session
$ cd flask-session
$ python3 -m venv venv
$ source venv/bin/activate

9. How do you redirect to a different route in Flask?

In [None]:
from flask import Flask, redirect, render_template, request, abort

app = Flask(__name__)

@app.route('/')
def home():
 return render_template('home.html')

@app.route('/login', methods=['GET', 'POST'])
def login():
 if request.method == 'POST':
  # Perform login authentication
  username = request.form['username']
  password = request.form['password']

  # Check if the credentials are valid
  if username == 'admin' and password == 'password':
     # Redirect to the user's dashboard on successful login
           return redirect('/dashboard')
  else:
     # Abort the request with a 401 Unauthorized status code
     abort(401)

  return render_template('login.html')

@app.route('/dashboard')
def dashboard():
 return render_template('dashboard.html')

@app.errorhandler(401)
def unauthorized_error(error):
 return render_template('unauthorized.html'), 401

if __name__ == '__main__':
 app.run()

10. How do you handle errors in Flask (e.g., 404)?

In [None]:
from flask import Flask, render_template
app = Flask(__name)
@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404

11. How do you structure a Flask app using Blueprints?

In [None]:
from flask import Blueprint

bp = Blueprint("blueprint", __name__)

@bp.route("/")
def home():
    return "<h1>Hello</h1>"

@bp.route("/user")
def user_info():
    return "<h1>User Info</h1>"

12. How do you define a custom Jinja filter in Flask?

In [None]:
TEMPLATE = """
{{items|round_to_even}}
"""
def main():
    template = Template(TEMPLATE, trim_blocks=True, lstrip_blocks=True)
    template.environment.filters.update(
        {
            'round_to_even': lambda x: x if x % 2 == 0 else x+1,
        }
    )
    print(template.render(
        items=[1, 2, 3],
    ))
    return 0


if __name__ == '__main__':
    main()

13. How can you redirect with query parameters in Flask?

In [None]:
from flask import Flask, redirect, render_template, request, abort

app = Flask(__name__)

@app.route('/')
def home():
 return render_template('home.html')
@app.route('/login', methods=['GET', 'POST'])
def login():
 if request.method == 'POST':
  # Perform login authentication
  username = request.form['username']
  password = request.form['password']

  # Check if the credentials are valid
  if username == 'admin' and password == 'password':
     # Redirect to the user's dashboard on successful login
           return redirect('/dashboard')
  else:
     # Abort the request with a 401 Unauthorized status code
     abort(401)

  return render_template('login.html')

@app.route('/dashboard')
def dashboard():
 return render_template('dashboard.html')

@app.errorhandler(401)
def unauthorized_error(error):
 return render_template('unauthorized.html'), 401

if __name__ == '__main__':
 app.run()

14. How do you return JSON responses in Flask?

In [None]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/json', methods=['POST'])
def json():
    # Get the JSON data from the request
    data = request.get_json()
    # Print the data to the console
    print(data)
    # Return a success message
    return 'JSON received!'

15. How do you capture URL parameters in Flask?

In [None]:
from flask import Flask, request
appFlask = Flask(__name__)
@appFlask.route('/index')
def access_param():
source = request.args.get('source')
return '''<h1>The source value is: {}</h1>'''.format(source)
appFlask.run(debug=True, port=5000)