# ***Restful API & Flask***

---



1. What is a RESTful API ?
     
     ans = A RESTful API (Representational State Transfer Application Programming Interface) is an architectural style for designing networked applications. It defines a set of constraints for how data should be structured and transferred, emphasizing statelessness, client-server separation, cacheability, and a uniform interface. Resources are identified by URIs, and operations are performed using standard HTTP methods (GET, POST, PUT, DELETE).

2. Explain the concept of API specification

    ans = An API specification is a blueprint or contract that describes how an API works and how developers can interact with it. It defines the available endpoints, the HTTP methods supported for each endpoint, the request and response formats (e.g., JSON, XML), authentication mechanisms, error codes, and data types. Common API specifications include OpenAPI (formerly Swagger) and RAML. Its purpose is to ensure consistency, facilitate communication between front-end and back-end teams

3. What is Flask, and why is it popular for building APIs ?

    ans = Flask is a lightweight Python web framework. It's popular for building APIs

 1) Minimalism: It doesn't impose many dependencies or enforce a particular structure, giving developers flexibility.

 2)Simplicity: It has a small core and is easy to learn and use, making rapid development possible.

 3)Flexibility: It's unopinionated, allowing developers to choose their preferred tools and libraries for various tasks like ORMs.

4. What is routing in Flask ?

    ans = Routing in Flask is the process of mapping URLs (Uniform Resource Locators) to specific Python functions within your application. When a client makes a request to a particular URL, Flask's router determines which function should handle that request. This is typically done using the @app.route() decorator, which associates a URL path with a view function.

5. How do you create a simple Flask application ?

    ans = A simple Flask application can be created by:
 1) Importing the Flask class.

 2)Creating an instance of the Flask class.
 3)Using the @app.route() decorator to define a route for a URL.

 3)Defining a function to handle requests to that route, which returns the response.

 4)Running the application using app.run().
from flask import Flask


6. What are HTTP methods used in RESTful APIs ?

    ans = HTTP methods (also known as HTTP verbs) indicate the desired action to be performed on a resource. The most common ones in RESTful APIs are:

 1)GET: Retrieves a representation of the specified resource. (Read)

 2)POST: Submits data to the specified resource, often causing a change in state or creation of a new resource. (Create)

 3)PUT: Updates an existing resource or creates a new one if it doesn't exist, by replacing the entire resource. (Update/Replace)

 4)DELETE: Deletes the specified resource. (Delete)


7. What is the purpose of the @app.route() decorator in Flask ?

   ans = The @app.route() decorator in Flask is used to associate a URL path with a Python function (a "view function"). It tells Flask what URL should trigger the execution of the decorated function. When a client requests that URL, Flask's routing mechanism will call the corresponding function and return its result as the response. It simplifies the process of defining URL patterns and their respective handlers

8. What is the difference between GET and POST HTTP methods ?

  ans =  GET Method:
 1) its Used to request data from a specified resource. It's primarily for retrieving information.

 2)Data Transmission: Parameters are sent in the URL as query strings

 3) Data sent via GET is visible in the URL, browser history, and server logs.

 4) Making the same GET request multiple times will have the same effect on the server (i.e., it doesn't change the server state). It's safe to retry GET requests.

 POST Method:
 1) its Used to send data to a server to create or update a resource. It's primarily for submitting information.

 2) Parameters are sent in the body of the HTTP request.

 3) Data sent via POST is not visible in the URL. It's not stored in browser history or server logs in the same way as GET.

 4) POST requests are generally not cached.


9. How do you handle errors in Flask APIs ?

  ans = Error handling in Flask APIs can be done in several ways:

 1) @app.errorhandler() decorator: This is the primary way to register custom error handlers for specific HTTP status codes (e.g., 404 Not Found, 500 Internal Server Error) or exception types.

 2)abort() function: This function from flask can be used to immediately raise an HTTP error with a specific status code.

 3)Custom Exception Classes: Define your own exception classes and then register error handlers for them.


10.  How do you connect Flask to a SQL database ?

    ans = To connect Flask to a SQL database, you typically use an Object-Relational Mapper (ORM) or a database connector library. Common approaches include:

 1) SQLAlchemy: A powerful and widely used ORM for Python. Flask has an extension called Flask-SQLAlchemy that simplifies integration. You define models that map to database tables, and Flask-SQLAlchemy handles the connection, session management, and querying.

 2)Raw Database Connectors: Libraries like psycopg2 (for PostgreSQL), mysql-connector-python (for MySQL), or sqlite3 (built-in for SQLite) can be used directly. However, this requires more manual SQL querying and connection management.

11. What is the role of Flask-SQLAlchemy ?

   ans = Flask-SQLAlchemy is a Flask extension that provides SQLAlchemy support for Flask applications. Its primary roles are:

 1) Simplifying Database Integration: It abstracts away much of the boilerplate code required to set up and manage SQLAlchemy within a Flask application.

 2)Session Management: It provides a pre-configured SQLAlchemy session that is integrated with Flask's request context, ensuring proper session handling and cleanup.

12. What are Flask blueprints, and how are they useful ?

   ans = Flask blueprints are a way to organize your Flask application into smaller, reusable components. They allow you to define a collection of routes, static files, and templates in a separate file or module that can then be registered with the main Flask application.
   * Modularity: Breaking down a large application into manageable, independent modules.
 * Reusability: Blueprints can be registered with multiple Flask applications, promoting code reuse.
 * Maintainability: Easier to manage and debug specific parts of the application.

13. What is the purpose of Flask's request object ?

   ans = Flask's request object (from flask.request) is a global proxy object that represents the current incoming HTTP request. It provides access to all the data and information associated with the client's request.

 Access form data (request.form).

  Access query parameters from the URL (request.args).

  Access JSON data sent in the request body (request.json).

  Access HTTP headers (request.headers).

  Access cookies (request.cookies).

14. How do you create a RESTful API endpoint using Flask ?

  ans =
   * Defining a route: Using @app.route() or @blueprint.route() with the appropriate URL path.
 * Specifying HTTP methods: Using the methods argument in the decorator (e.g., methods=['GET', 'POST']).
 * Handling request data: Accessing data from request.args, request.form, or request.json based on the HTTP method and content type.
 * Performing business logic: Interacting with a database, performing calculations, etc.

15. What is the purpose of Flask's jsonify() function ?

    ans = Flask's jsonify() function is a helper function used to serialize Python dictionaries or lists into JSON formatted HTTP responses. Its main purposes are:

 JSON Serialization: Converts Python data structures into a JSON string.

  Setting Content-Type Header: Automatically sets the Content-Type header of the response to application/json, which is crucial for APIs to inform clients about the data format.

  Creating a Response Object: It wraps the JSON string in a Flask Response object.
It simplifies the process of sending JSON data back to the client in a RESTful API.

16. Explain Flask’s url_for() function.

  ans = Flask's url_for() function is used to generate a URL for a given view function. Instead of hardcoding URLs in your templates or code, url_for() allows you to refer to them by their function name.
Its benefits include:

 Decoupling: If you change the URL path in your @app.route() decorator, url_for() will automatically generate the correct new URL, without needing to update every reference in your code.

  Reverse URL Mapping: It performs reverse URL mapping, finding the URL associated with a specific endpoint.

  Dynamic URLs: It can handle URL variables by passing them as keyword arguments


17. How does Flask handle static files (CSS, JavaScript, etc.) ?  

   ans = 1)Flask automatically serves static files from a directory named static within your application's root directory by default.
   
   2)You typically place your CSS, JavaScript, images, and other static assets in this static folder.

 3) In your templates or code, you use the url_for() function with the special endpoint 'static' to generate URLs for these files. The filename is passed as a filename argument.

18. What is an API specification, and how does it help in building a Flask API?

   ans =An API specification (like OpenAPI) describes your Flask API's structure, endpoints, methods, parameters, and responses.
It helps in building a Flask API

 1) Clear Documentation: Generates interactive and up-to-date documentation for your API, making it easy for front-end developers and other consumers to understand and use.

 2)Code Generation: Tools can generate client SDKs (for various programming languages) or server stubs directly from the specification, accelerating development.

 3)Consistency: Enforces a consistent design across your API, reducing errors and improving maintainability.

 4)Testing: Facilitates automated testing by providing a clear definition of expected inputs and outputs.

19. What are HTTP status codes, and why are they important in a Flask API ?

   ans = HTTP status codes are three-digit numbers returned by a server in response to an HTTP request. They indicate the outcome of the request, classifying it into categories like informational, successful, redirection, client error, or server error.

 Communication: They provide immediate feedback to the client about the result of their request without requiring them to parse the response      body.

  Standardization: They follow a widely accepted standard, making APIs more predictable and easier for clients to interact with consistently.


20. How do you handle POST requests in Flask ?

    ans = Defining the route: Using the @app.route() decorator and specifying methods=['POST'] (or methods=['GET', 'POST'] if it also handles GET).
 * Accessing request data:
   * For form submissions (e.g., from an HTML form), use request.form.
   * For JSON data (common in APIs), use request.json.
   * For file uploads, use request.files.
 * Processing data: Validate the incoming data, perform necessary business logic (e.g., saving to a database).

21. How would you secure a Flask API ?

  ans = 1)Authentication: Verify user identity, often using Token-based (JWT) or OAuth 2.0.
 2) Authorization: Control what authenticated users can do, using Role-Based Access Control (RBAC) or granular permissions.
 3) Input Validation: Sanitize all user input to prevent injection attacks (e.g., SQL injection, XSS).
 4)HTTPS/SSL/TLS: Encrypt all communication between client and API for data protection in transit.
 5)Rate Limiting: Prevent brute-force attacks and DoS by limiting request frequency.
 6)CORS Configuration: Control which external domains can access your API.

22. What is the significance of the Flask-RESTful extension ?

   ans = Flask-RESTful is a Flask extension that provides tools for quickly building REST APIs. Its significance lies in:

  Resource Abstraction: It introduces the concept of Resources, which are Python classes that map to specific API endpoints and handle different HTTP methods (GET, POST, PUT, DELETE) as class methods. This promotes cleaner, more organized code.

  Request Parsing: Provides reqparse for easily parsing and validating arguments from the request (query parameters, form data, JSON body) with type checking and required fields.

  Error Handling: Simplifies error handling by automatically converting raised exceptions into appropriate HTTP error responses.

23. What is the role of Flask’s session object ?

   ans = Flask's session object (from flask.session) is a dictionary-like object that allows you to store data specific to a user's session between requests. It's designed to maintain state for a particular user across multiple interactions with the web application.

  Maintaining User State: Stores temporary data about the current user, such as login status, user preferences, shopping cart contents, or temporary messages.
  
   Temporary Data: Data stored in the session is typically temporary and tied to the user's browser session. When the user closes their browser (or the session expires), the data is lost.

  Security: Requires a SECRET_KEY configured in your Flask application for secure signing of the session cookie. Without it, the session data is insecure.

# ***Practical***

---



1. How do you create a basic Flask application ?

In [3]:
# app.py
from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello_world():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2.  How do you serve static files like images or CSS in Flask ?

3. How do you define different routes with different HTTP methods in Flask ?

In [12]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/data', methods=['GET'])
def get_data():
    return 'This is GET request data.'

@app.route('/data', methods=['POST'])
def post_data():
    return 'This is POST request data.'
@app.route('/item/<int:item_id>', methods=['GET', 'PUT', 'DELETE'])
def handle_item(item_id):
    if request.method == 'GET':
        return f'Retrieving item {item_id}'
    elif request.method == 'PUT':
        return f'Updating item {item_id}'
    elif request.method == 'DELETE':
        return f'Deleting item {item_id}'

if __name__ == '__main__':
    app.run(debug=True)


 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


4. How do you render HTML templates in Flask ?

In [16]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():

    return render_template('index.html')

@app.route('/about')
def about():

    name = "piyush"
    return render_template('about.html', user_name=name)

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


5.  How can you generate URLs for routes in Flask using url_for ?

In [20]:
from flask import Flask, url_for, render_template

app = Flask(__name__)

@app.route('/')
def home():

    about_url = url_for('about')
    return f"<h1>Welcome!</h1><p>Go to <a href='{about_url}'>About Us</a></p>"

@app.route('/about')
def about():
    return "<h1>About Us Page</h1><p><a href='/'>Go Home</a></p>"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


6. How do you handle forms in Flask ?

In [30]:
from flask import Flask, url_for, render_template, request

app = Flask(__name__)

@app.route('/form')

    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit_form():
    if request.method == 'POST':

        user_name = request.form.get('user_name')
        if user_name:
            return f'Hello, {user_name}! Form submitted successfully.'
        else:
            return 'Error: user_name not provided in the form.', 400

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


7.  How can you validate form data in Flask ?

In [31]:
pip install Flask-WTF

Collecting Flask-WTF
  Downloading flask_wtf-1.2.2-py3-none-any.whl.metadata (3.4 kB)
Collecting wtforms (from Flask-WTF)
  Downloading wtforms-3.2.1-py3-none-any.whl.metadata (5.3 kB)
Downloading flask_wtf-1.2.2-py3-none-any.whl (12 kB)
Downloading wtforms-3.2.1-py3-none-any.whl (152 kB)
[2K   [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m152.5/152.5 kB[0m [31m4.0 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: wtforms, Flask-WTF
Successfully installed Flask-WTF-1.2.2 wtforms-3.2.1


In [36]:
from flask import Flask, render_template, request, flash, redirect, url_for
from flask_wtf import FlaskForm
from wtforms import StringField, PasswordField, SubmitField
from wtforms.validators import DataRequired, Email, EqualTo, Length

app = Flask(__name__)
app.config['SECRET_KEY'] = 'your_secret_key_here'

class RegistrationForm(FlaskForm):
    username = StringField('Username', validators=[DataRequired(), Length(min=4, max=20)])
    email = StringField('Email', validators=[DataRequired(), Email()])
    password = PasswordField('Password', validators=[DataRequired(), Length(min=6)])
    confirm_password = PasswordField('Confirm Password', validators=[DataRequired(), EqualTo('password')])
    submit = SubmitField('Register')

@app.route('/register', methods=['GET', 'POST'])
def register():
    form = RegistrationForm()
    if form.validate_on_submit():
        # Form data is valid, process it
        username = form.username.data
        email = form.email.data
        password = form.password.data
        flash(f'Account created for {username}!', 'success')
        # In a real application, you'd save this to a database
        print(f"User: {username}, Email: {email}, Password: {password}")
        return redirect(url_for('success_page'))
    return render_template('register.html', form=form)

@app.route('/success')
def success_page():
    return "Registration Successful!"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


8. How do you manage sessions in Flask ?

In [38]:
from flask import Flask, session

app = Flask(__name__)
app.config['SECRET_KEY'] = 'your_very_secret_and_unique_key_here'

9.  How do you redirect to a different route in Flask ?

In [2]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return "This is the index page. You will be redirected from '/old_route'."

@app.route('/old_route')
def old_route():

    return redirect(url_for('new_route'))

@app.route('/new_route')
def new_route():
    return "This is the new route!"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


10. How do you handle errors in Flask (e.g., 404) ?

In [4]:
from flask import Flask, render_template

app = Flask(__name__)
@app.errorhandler(404)
def page_not_found(e):
    """
    Handles 404 Not Found errors.
    """
    return render_template('404.html'), 404

@app.route('/')
def index():
    return "Welcome to the Flask app!"

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


11. How do you structure a Flask app using Blueprints ?

In [7]:
from flask import Blueprint, Flask

my_blueprint = Blueprint('my_blueprint', __name__)

@my_blueprint.route('/blueprint_route')
def blueprint_route():
    return "This is a route from the blueprint!"

def create_app():
    app = Flask(__name__)

    app.register_blueprint(my_blueprint)
    return app

app = create_app()

if __name__ == '__main__':
    pass
app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


12.  How do you define a custom Jinja filter in Flask ?

In [10]:
from flask import Flask, render_template

app = Flask(__name__)

def reverse_string(s):
    return s[::-1]

app.jinja_env.filters['reverse'] = reverse_string

@app.route('/')
def index():
    my_text = "Hello Flask"

    return render_template('index.html', text=my_text)

if __name__ == '__main__':
    app.run(debug = True)
    pass

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


13.  How can you redirect with query parameters in Flask ?

In [12]:
from flask import Flask, redirect, url_for, request, render_template

app = Flask(__name__)

@app.route('/')
def index():
    return "Welcome to the index page. Go to /redirect_example to see a redirect with query params."

@app.route('/redirect_example')
def redirect_example():

    data_id = 123
    status_message = "success"

    return redirect(url_for('target_page', id=data_id, status=status_message))

@app.route('/target_page')
def target_page():

    item_id = request.args.get('id')
    status = request.args.get('status')

    if item_id and status:
        return f"You have reached the target page. Received ID: {item_id}, Status: {status}"
    else:
        return "You have reached the target page, but no specific query parameters were found."

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


14.  How do you return JSON responses in Flask ?

In [15]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/data')
def get_data():
    data = {
        "name": "Alice",
        "age": 30,
        "isStudent": False,
        "courses": ["Math", "Science", "History"]
    }
    return jsonify(data)

@app.route('/error')
def get_error():
    error_message = {
        "status": "error",
        "code": 400,
        "message": "Invalid request parameters"
    }

    return jsonify(error_message), 400

@app.route('/')
def index():
    return "Visit /data for a JSON response or /error for an error JSON response."

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


15. How do you capture URL parameters in Flask ?

In [17]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/user/<username>')
def show_user_profile(username):
    return f'User: {username}'

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post ID: {post_id}'

@app.route('/search')
def search():
    query = request.args.get('q')
    category = request.args.get('category', 'all')
    if query:
        return f'Searching for "{query}" in category "{category}"'
    else:
        return 'Please provide a search query (e.g., /search?q=flask)'

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat
