# RESTFUL API AND FLASK

1. What is a RESTful API ?
-  A RESTful API (Representational State Transfer API) is a way for two computer systems to communicate over the internet using standard HTTP methods (like GET, POST, PUT, DELETE). It follows a set of architectural principles designed to make interactions simple, scalable, and stateless.

2. Explain the concept of API specification.
-  An API specification is a detailed blueprint that defines how an API should behave — what it can do, how clients can interact with it, and what kind of data it will send or receive. It's like a contract between the API provider and the user.
-  Key Concepts in an API Specification:
-  Endpoints: The specific URLs (routes) that represent resources or actions.Example: GET /users, POST /login
-  Methods (HTTP Verbs): Define the type of action allowed at each endpoint (e.g., GET, POST, PUT, DELETE).
-  Request Parameters:
-  Path parameters: /users/{id}
-  Query parameters: /users?active=true
-  Body: Typically used with POST or PUT requests to send data.
-  Request/Response Formats: Defines what data must be sent (input) and what data will be received (output), often in JSON or XML.
-  Authentication: Describes how the API is secured (e.g., API keys, OAuth tokens).
-  Error Handling: Specifies how errors will be communicated (e.g., HTTP status codes, error messages).
-  Data Models/Schemas: Structures that define how data is organized (e.g., what fields a "user" has).

3. What is Flask, and why is it popular for building APIs ?
-  Flask is a lightweight web framework in Python that makes it easy to build websites and APIs (ways for programs to talk to each other). It’s popular because it's simple, flexible, and beginner-friendly.
-  REASONS FOR POPULARITY:
-  Lightweight:It gives just the basics — one can add only what one need.Great for small or quick projects.
-  Easy to Learn:Clear and readable Python code.Perfect for beginners or fast prototyping.
-  Flexible:One can control everything — it doesn’t force a certain way to structure our app.
-  Great for APIs:It works well with JSON (the most common API format).It has built-in support for handling routes and HTTP methods like GET and POST.
-  Big Community & Tools:Lots of tutorials, extensions (like Flask-RESTful), and support.

4. What is routing in Flask?
-  Routing in Flask refers to the mechanism that associates a URL endpoint with a Python function. Each route defines a path in the application, and when a request is made to that path, Flask triggers the associated function to handle the request and return a response.

5. How do you create a simple Flask application?
-  The first step is to install Flask using Python's package manager, pip. We can install it by running the command pip install flask in our terminal.
-  After installing Flask, create a new Python file (e.g., app.py) where we will write the code for our Flask application.
-  The main component of a Flask app is an instance of the Flask class, which is used to create our app. We also need to define routes (URL patterns) and their associated functions that will handle requests.
-   A route in Flask is a URL pattern (e.g., /home) that is associated with a function. When someone visits that URL, the corresponding function is executed and returns a response.
-  To run the Flask application, open terminal, navigate to the folder where Python file is located, and run the command python app.py. This starts the Flask development server.
-  After running the Flask app, open a web browser and go to http://127.0.0.1:5000/ to see the app in action.

6. What are HTTP methods used in RESTful APIs?
-  In RESTful APIs, HTTP methods (also known as HTTP verbs) define the type of action that should be performed on a resource. Here are the main HTTP methods used in RESTful APIs:
-  GET : Retrieve data from the server.
-  POST : Send data to the server to create a new resource.
-  PUT : Update an existing resource by replacing it entirely.
-  DELETE : Delete an existing resource.
-  PATCH : Partially update an existing resource (only modify specific fields).
-  HEAD : Similar to GET, but only retrieves the headers, not the body (useful for checking if a resource exists or getting metadata).
-  OPTIONS : Retrieves the allowed methods (GET, POST, etc.) for a specific resource. It is often used to check the capabilities of an API or to check for CORS (Cross-Origin Resource Sharing) permissions.

7. What is the purpose of the @app.route() decorator in Flask?
-  The @app.route() decorator in Flask is used to associate a specific URL path with a Python function, which is called a view function. When a user accesses that URL in their browser, Flask calls the corresponding function and returns its result as the response.

8. What is the difference between GET and POST HTTP methods?
-  The GET method is used to request data from the server. When one use GET, any data she sends is included in the URL, such as ?name=John. This means the data is visible in the address bar, making it less secure for sending sensitive information. GET requests are useful for things like searching or loading pages, and they can be bookmarked or shared, since the data is in the URL. However, GET has limitations on how much data it can send.On the other hand, the POST method is used to send data to the server, often when submitting a form. The data is sent in the body of the request, not in the URL, so it's not visible in the browser address bar. This makes POST more secure for sending sensitive or large amounts of data. POST requests cannot be bookmarked, and they are typically used for actions like logging in, registering, or submitting forms.

9. How do you handle errors in Flask APIs?
-  In Flask APIs, errors are handled using error handlers, manual error responses, and try-except blocks. These methods ensure that your API returns useful and consistent messages when something goes wrong.
-  Using @app.errorhandler():This decorator catches specific HTTP errors (like 404 or 500) and allows one to return custom JSON responses.
-  Using abort() for Manual Errors:One can manually trigger an error using Flask’s abort() function when certain conditions aren't met.
-  Using try-except Blocks:Python exceptions can be caught using try-except, and one can return a custom error message instead of crashing.


10. How do you connect Flask to a SQL database?
-  Install Flask-SQLAlchemy.
-  Configure the database URI in your Flask app.
-  Define models as Python classes.
-  Use db.create_all() to create tables.
-  Use SQLAlchemy methods to interact with the database.

11. What is the role of Flask-SQLAlchemy?
-  Flask-SQLAlchemy is an extension for Flask that helps you work easily with SQL databases using SQLAlchemy, a powerful Python SQL toolkit and Object Relational Mapper (ORM).
-  ROLE OF FLASK SQAlchemy:
-  Database Connection Management:It allows one to connect Flask to various SQL databases (like SQLite, MySQL, PostgreSQL) using a simple configuration.
-  ORM (Object Relational Mapping):It let us interact with database tables as if they were regular Python classes and objects. We don’t need to write raw SQL queries.
-  Simplifies SQLAlchemy Integration:It wraps SQLAlchemy to make it more Flask-friendly, managing things like app context, sessions, and table creation.
-  Model Definition:We can define database tables using Python classes with attributes that map to columns.
-  Migration Support (with Flask-Migrate):When used with Flask-Migrate, it also helps manage database schema changes over time.



12. What are Flask blueprints, and how are they useful?
-  Flask Blueprints are a way to organize our Flask application into smaller, modular components. They help us break up large applications into manageable pieces, making the codebase more maintainable and scalable.A Blueprint in Flask is like a mini-application. It allows us to define routes, templates, static files, and other app-specific functionality separately from the main app object. We then register the blueprint with the main app.
-  USEFULNESS:
-  Modularity: Separate concerns like authentication, admin, blog, etc., into their own modules.
-  Reusability: Blueprints can be reused across different apps.
-  Organization: Keeps the codebase clean and organized, especially for large applications.
-  Team collaboration: Easier for teams to work on different components independently.

13. What is the purpose of Flask's request object?
-  In Flask, the request object is an instance of the Request class provided by the Werkzeug library (which Flask is built upon). It represents the incoming HTTP request and provides access to all the data sent by the client, including form data, query parameters, headers, cookies, files, and JSON payloads.

14. How do you create a RESTful API endpoint using Flask?
-  Install Flask
-  Import Flask and necessary objects
-  Initialize the Flask Application
-  Create In-Memory Data (Example Data Store)
-  Define RESTful Endpoints:GET – Retrieve All Resources,GET – Retrieve a Specific Resource by ID,POST – Create a New Resource,PUT – Update an Existing Resource,DELETE – Remove a Resource.
-  Run the Flask App

15. What is the purpose of Flask's jsonify() function?
-  The purpose of jsonify() in Flask is to convert Python data structures (like dictionaries and lists) into a JSON response that is properly formatted and includes the correct Content-Type header (application/json).


16. Explain Flask’s url_for() function.
-  url_for(endpoint, **values) is a function provided by Flask that returns the URL associated with a given view function (called the "endpoint"), optionally substituting dynamic arguments and appending query parameters. It ensures that URLs are correctly constructed and automatically updated if route definitions change.

17. How does Flask handle static files (CSS, JavaScript, etc.)?
-  In Flask, static files (such as CSS, JavaScript, and images) are served from a dedicated static directory, and Flask automatically maps the URL path /static/<filename> to this folder, allowing these assets to be accessed by the client without the need for custom routing.

-  Key Points:
-  Flask uses a special folder named **static/** by default.
-  Static files are automatically accessible at /static/<filename>.
-  The url_for('static', filename='...') function is used to generate correct URLs in templates.
-  No need to manually define routes for serving static content.
This behavior is mainly intended for development. In production, a web server (e.g., Nginx) should serve these files.


18. What is an API specification, and how does it help in building a Flask API?
-  An API specification is a detailed document or description that defines the structure, behavior, and functionality of an API (Application Programming Interface). It provides clear guidelines for how clients and servers should interact, including the endpoints, request formats, response formats, authentication, error codes, and more.It helps in building a Flask API in the following ways:
-  Clear Communication: API specs serve as a reference for both developers and clients, ensuring everyone understands how the API works, what data is expected, and how errors are handled.
-  Consistency: By following an API specification, you ensure that your Flask API endpoints are consistent in terms of request and response structure, which leads to easier integration and fewer bugs.
-  Documentation: API specifications automatically serve as documentation, making it easier for developers to understand and use your API. This is especially useful for external developers or teams working on different parts of the project.
-  Validation & Testing: You can use tools like Swagger/OpenAPI to automatically generate API documentation, test requests, and validate whether the API conforms to the specification.
-  Rapid Development: With a clear API spec, developers can start building their Flask API faster, as they already know the endpoints, expected input, and output formats.
-  Error Handling: It clearly defines error codes and messages, making debugging easier and ensuring clients receive meaningful error responses.


19. What are HTTP status codes, and why are they important in a Flask API?
-  HTTP status codes are standardized codes returned by a web server to indicate the result of an HTTP request. These codes help the client (browser or API consumer) understand whether the request was successful, resulted in an error, or requires further action.They are part of the HTTP response and consist of a three-digit number. The first digit defines the general category of the response, while the other two digits provide more specific information.
-  IMPORTANCE IN FLASK API:
-  Indicates Request Outcome:Status codes provide essential feedback to the client about the result of the request. For example, a 200 OK status means the request was successful, while a 404 Not Found indicates the requested resource doesn’t exist.
-  Helps with Debugging:HTTP status codes make it easier to identify issues, whether they’re caused by client-side errors (e.g., 400 Bad Request) or server-side problems (e.g., 500 Internal Server Error).
-  Standardization:HTTP status codes follow a global standard, which means they are recognized and understood universally by developers, APIs, and browsers. This consistency is crucial for building interoperable systems.
-  Improves User Experience:Proper status codes can help clients handle different outcomes gracefully. For example, 201 Created can indicate that a resource was successfully created, prompting the client to update its UI or data accordingly.
-  Automates Error Handling:In an API, appropriate status codes allow for automation in error handling. If a client receives a 403 Forbidden response, it knows the request was valid but lacks the necessary permissions, and can adjust accordingly without having to parse error messages manually.


20. How do you handle POST requests in Flask?
-  Steps to Handle a POST Request in Flask:
-  Import necessary modules
-  Create a route with methods=['POST']
-  Use request.form or request.get_json() to access data
-  Return a response (with optional status code)


21. How would you secure a Flask API?
-  Securing a Flask API involves implementing a set of best practices and technical measures that protect your API from unauthorized access, data breaches, code injection, and other security threats.
-  Use HTTPS (SSL/TLS):Always serve your API over HTTPS to encrypt data in transit.Use certificates from providers like Let's Encrypt.In production, this is typically handled by a reverse proxy like Nginx or Apache.
-  Implement Authentication:Choose an appropriate method based on the API use case:
-  ✅ a. API Keys:Each client is issued a unique key.Validate this key with every request.
-  ✅ b. Token-Based Authentication (e.g., JWT):JSON Web Tokens (JWT) are stateless, compact, and secure.Clients must include the token in headers (e.g., Authorization: Bearer <token>).Use libraries like PyJWT or Flask-JWT-Extended.
-  ✅ c. OAuth2:More advanced; used for user-based delegated access (e.g., logging in with Google).
-  Use Authorization (Role/Access Control):Ensure only authorized users can access certain endpoints.Example: Admins can DELETE, but regular users can only GET or POST.Implement role checks within route handlers.
-  Input Validation & Sanitization:Validate all incoming data to prevent injection attacks.Use libraries like marshmallow or pydantic for schema validation.Avoid using raw SQL; prefer ORMs like SQLAlchemy to prevent SQL injection.
-  Database Security Tips:Use least privilege access for your API’s DB credentials.Enable parameterized queries to prevent SQL injection.Backup and encrypt your database.
-  Keep Dependencies Updated:Regularly update Flask and other packages.Use pip-audit or tools like Dependabot to detect vulnerabilities in dependencies.
-  Secure Configuration Management:Use environment variables for sensitive config (e.g., secret keys).Do not hardcode credentials in code.Use .env files and libraries like python-dotenv to manage settings securely.
-  Hide Sensitive Information:Never log sensitive data (passwords, tokens).Don’t expose detailed error messages in production.Use Flask’s errorhandler to return generic errors to users.
-  Use Flask Security Extensions:Flask-JWT-Extended – for JWT authentication.Flask-Login – for session-based login management.Flask-Limiter – to limit request rates.Flask-Talisman – to set secure HTTP headers.
-  Protect Against Common Web Attacks:Cross-Site Scripting (XSS): Escape all user input if rendering HTML.Cross-Site Request Forgery (CSRF): Use CSRF tokens for forms (especially if authenticated sessions are used).Rate Limiting: Prevent abuse using libraries like Flask-Limiter.

22. What is the significance of the Flask-RESTful extension?
-  Significance of the Flask-RESTful Extension:
-  Flask-RESTful let us define API endpoints as classes, making the code more organized and modular.
-  Flask-RESTful provides the reqparse module to validate and parse incoming request data, reducing manual checks.
-  It automatically converts Python dictionaries to JSON responses and let us return HTTP status codes easily.
-  We can easily map resources (classes) to URLs using api.add_resource().
-  With class-based architecture and organized routes, Flask-RESTful makes it easier to scale our API project, especially when dealing with many endpoints.

23. What is the role of Flask’s session object?
-  The session object in Flask is used to store and manage data across multiple HTTP requests made by the same user. Since HTTP is a stateless protocol, Flask's session helps maintain user-specific state, such as login status, preferences, or items in a shopping cart.Data stored in the session is saved on the client-side using cookies, but it is securely signed with a secret key to prevent tampering. This ensures the data’s integrity, although it is not encrypted (so sensitive information should not be stored in plain form).To use sessions, Flask requires a configured SECRET_KEY, which is used to cryptographically sign the session data.In summary, the session object plays a crucial role in enabling persistent user interactions in web applications, supporting features like user authentication, temporary storage, and personalized experiences across multiple requests.
















































# PRACTICAL QUESTIONS

1. How do you create a basic Flask application?

In [None]:
#pip install flask in terminal
#Create a file named app.py and write the following code:
#In your terminal, navigate to the folder where app.py is located and run:python app.py
#Open your browser and go to:http://127.0.0.1:5000/
from flask import Flask
app = Flask(__name__)
@app.route('/')
def home():
    return "Hello, Flask!"
if __name__ == '__main__':
      app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. How do you serve static files like images or CSS in Flask?
-  In Flask, serving static files such as images, CSS, or JavaScript is straightforward because Flask automatically looks for these files in a folder named static within your project directory. To serve static files, you first organize your project by creating a static folder where you place all your images, CSS files, and other assets. For example, you might have files like style.css or logo.png inside this folder. When building your HTML templates (usually stored in a separate templates folder), you reference these static files using the url_for function, which dynamically generates the correct URL path to the static assets. For instance, in your HTML, you can link a CSS file by using <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">, or display an image with <img src="{{ url_for('static', filename='logo.png') }}" alt="Logo">. Importantly, you do not need to write any extra Python code to serve these static files—Flask takes care of serving everything inside the static directory automatically. When you run your Flask application and access it via a web browser, your CSS styles and images load seamlessly, enabling you to build visually rich and interactive web pages easily.

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


3. How do you define different routes with different HTTP methods in Flask?
-  In Flask, you define different routes that respond to specific HTTP methods by using the @app.route() decorator along with the methods parameter. By default, Flask routes only respond to GET requests, which are typically used to retrieve data from the server. However, you can specify other HTTP methods such as POST, PUT, DELETE, and more by passing a list of allowed methods to the methods argument in the route decorator. For example, a route defined with @app.route('/submit', methods=['GET', 'POST']) can handle both GET and POST requests. Inside the route’s function, you can check which HTTP method was used by inspecting request.method and then provide different responses based on whether it was a GET or a POST request. This approach allows you to handle multiple methods on the same URL. Alternatively, for more complex applications, Flask provides class-based views where different HTTP methods can be handled by separate methods in the class. Overall, using the methods parameter in Flask routes enables you to build flexible web applications that respond appropriately to various client requests.

In [None]:
#Basic route (default GET method):
@app.route('/hello')
def hello():
    return "Hello, GET request!"
#Route accepting multiple HTTP methods:
@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return "You sent a POST request!"
    else:
        return "This is a GET request."




4. How do you render HTML templates in Flask?
-  In Flask, rendering HTML templates is done using the render_template function, which allows you to separate your Python code from the HTML content you want to display to users. Instead of writing raw HTML inside your Python files, you create separate HTML files (called templates) that live in a special folder named templates. Flask automatically looks inside this folder for your template files. To display a webpage, you write a route function in Python that calls render_template with the name of the HTML file you want to show. For example, if you have a file named index.html inside the templates folder, you can render it by writing render_template('index.html') inside your route function. Additionally, render_template lets you pass variables from your Python code into the HTML template, so your pages can show dynamic content. This way, Flask makes it easy to build web pages that look nice and update with real data, all while keeping your HTML and Python code clean and organized.

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

In [None]:
@app.route('/hello/<name>')
def hello(name):
    return render_template('hello.html', user_name=name)

5. How can you generate URLs for routes in Flask using url_for?
-  In Flask, the url_for function is used to generate URLs for our route functions dynamically, rather than hardcoding them directly into our code or HTML. This makes our application more flexible and easier to maintain, especially if our route paths change later. Instead of writing a URL like /profile/alice directly, we use url_for('profile', username='alice'), where 'profile' is the name of the route function. Flask will automatically generate the correct URL based on the current routing rules. This is helpful because if we update the route path in our Python code, all our links will still work without needing to be manually updated. The url_for function can also be used in HTML templates with Jinja2 syntax, such as <a href="{{ url_for('profile', username='alice') }}"> ,  allowing our templates to stay in sync with our backend routes. Additionally, url_for is used to link to static files, such as CSS or images, by calling url_for('static', filename='style.css'). Overall, using url_for improves code readability, ensures link accuracy, and supports cleaner web development in Flask.








  

In [None]:
@app.route('/profile/<username>')
def profile(username):
    return f"User: {username}"

In [None]:
url_for('profile', username='alice')

6. How do you handle forms in Flask?
-  Handling forms in Flask involves a few key steps: creating the HTML form, setting up a Flask route to display the form, and processing the data when the form is submitted. Here’s how it works:First, you create an HTML form inside a template file (usually in the templates folder). This form typically includes input fields like text boxes, checkboxes, or buttons, and it specifies a method (usually POST) and an action URL where the form data should be sent.Next, in your Flask app, you define a route that handles both displaying the form (on a GET request) and processing the submitted data (on a POST request). Inside this route function, you check the request method using request.method. If it’s GET, you render the form template so the user can fill it out. If it’s POST, you collect the submitted form data from request.form, validate or process it as needed, and then typically return a response or redirect the user.

In [None]:
from flask import Flask, request, render_template, redirect, url_for

app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        name = request.form.get('name')
        return redirect(url_for('thank_you'))
    return render_template('form.html')

@app.route('/thank_you')
def thank_you():
    return "Thanks for submitting the form!"

7. How can you validate form data in Flask?
-  To validate form data in Flask, we can either do it manually or use an extension like Flask-WTF for a more structured approach. Manual validation involves accessing the submitted form data through request.form and then checking each field’s value with simple Python conditions—for example, verifying that a username is long enough or that an email contains an “@” symbol. While this works for small or simple forms, it can get cumbersome as the form grows in complexity. A better practice is to use Flask-WTF, which integrates the WTForms library into Flask. Flask-WTF allows us to define forms as Python classes, specify validators such as DataRequired, Length, and Email, and handle form validation and error messages cleanly. It also adds built-in CSRF protection, which is important for security. When using Flask-WTF, we create a form class with fields and validators, then in our route, we instantiate the form and call validate_on_submit() to check if the form data is valid. If it’s valid, we can process the data; if not, the errors are available to display in our templates. Overall, Flask-WTF is the recommended way for form validation in Flask apps because it keeps our code clean, secure, and maintainable.

In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, PasswordField, SubmitField
from wtforms.validators import DataRequired, Length

class LoginForm(FlaskForm):
    username = StringField('Username', validators=[DataRequired()])
    password = PasswordField('Password', validators=[DataRequired(), Length(min=6)])
    submit = SubmitField('Login')

In [None]:
from flask import render_template

@app.route('/login', methods=['GET', 'POST'])
def login():
    form = LoginForm()
    if form.validate_on_submit():
        return f"Welcome, {form.username.data}!"
    return render_template('login.html', form=form)

In [None]:
from flask import Flask, request, render_template_string

app = Flask(__name__)

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form.get('username')
        password = request.form.get('password')

        # Manual validation
        if not username or not password:
            return "Missing username or password", 400
        if len(password) < 6:
            return "Password too short", 400

        return f"Welcome, {username}!"

    return '''
    <form method="post">
        Username: <input name="username"><br>
        Password: <input name="password" type="password"><br>
        <input type="submit">
    </form>
    '''

if __name__ == '__main__':
    app.run(debug=True)

8. How do you manage sessions in Flask?
-  Steps to manage sessions in Flask:
-  Import Flask and session:We import session from the flask module to work with session data.
-  Set a secret key:We must define a secret_key in our app. It helps Flask securely sign the session cookies. Without it, sessions won’t work.
-  Store data in session:We can add information to the session using session['key'] = value.
-  Retrieve data from session:We can get the value anytime using session.get('key').
-  Remove data from session:We can delete something using session.pop('key').

In [1]:
from flask import Flask, session, redirect, url_for, request

# Create a new Flask app
app = Flask(__name__)

# This is like a secret password that keeps our session data safe
app.secret_key = 'my_very_secret_key'

# This route sets a username in session
@app.route('/login', methods=['POST', 'GET'])
def login():
    if request.method == 'POST':
        # We take the name from the form and save it in session
        session['username'] = request.form['username']
        return redirect(url_for('profile'))
    return '''
        <form method="post">
            <input type="text" name="username">
            <input type="submit" value="Login">
        </form>
    '''

# This route uses the session value
@app.route('/profile')
def profile():
    if 'username' in session:
        return f"Hello, {session['username']}! Welcome to your profile."
    return "You are not logged in!"

# This route logs the user out by removing session data
@app.route('/logout')
def logout():
    session.pop('username', None)
    return redirect(url_for('login'))

# Run the app
if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


9. How do you redirect to a different route in Flask?

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

# This is the home route
@app.route('/')
def home():
    return "This is the home page. Go to /go to get redirected."

# This is the route where we redirect the user
@app.route('/go')
def go_somewhere():
    # We want to send the user to the welcome page
    return redirect(url_for('welcome'))

# This is the final page
@app.route('/welcome')
def welcome():
    return "Welcome! You've been redirected here."

if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


10. How do you handle errors in Flask (e.g., 404)?

In [None]:
from flask import Flask

app = Flask(__name__)

# Normal route
@app.route('/')
def home():
    return "Welcome to the Home Page!"

# Custom 404 error handler
@app.errorhandler(404)
def page_not_found(error):
    return "<h1>Oops! Page not found (404)</h1>", 404

if __name__ == '__main__':
    app.run(debug=True)

11. How do you structure a Flask app using Blueprints?

In [None]:
from flask import Blueprint

# Create a Blueprint called 'auth'
auth = Blueprint('auth', __name__)

# Import routes from routes.py (defined later)
from . import routes

In [None]:
from . import auth

@auth.route('/login')
def login():
    return "This is the login page"

@auth.route('/logout')
def logout():
    return "You are now logged out"

In [None]:
from flask import Blueprint

# Create a Blueprint called 'main'
main = Blueprint('main', __name__)

# Import routes from routes.py
from . import routes

In [None]:
from . import main

@main.route('/')
def home():
    return "Welcome to the Home Page"

@main.route('/dashboard')
def dashboard():
    return "This is the dashboard"

In [None]:
from flask import Flask
from auth import auth as auth_blueprint
from main import main as main_blueprint

app = Flask(__name__)

# Register the blueprints
app.register_blueprint(auth_blueprint, url_prefix='/auth')  # auth routes start with /auth
app.register_blueprint(main_blueprint)                      # main routes at root

if __name__ == '__main__':
    app.run(debug=True)

12. How do you define a custom Jinja filter in Flask?
-   In Flask, we define a custom Jinja filter when we want to process or format data in our HTML templates in a way that built-in filters don’t provide. A Jinja filter is essentially a Python function that transforms a variable’s value before displaying it in the template. Filters are applied in templates using the pipe symbol (|). For example, if we write {{ "hello" | upper }}, Jinja converts the string to uppercase using the built-in upper filter. However, when we want to apply our own transformation—like reversing a string or formatting a date—we create a custom filter.To define a custom Jinja filter, we first write a regular Python function that accepts a value and returns the modified result. For instance, a function that reverses a string would look like def reverse_string(value): return value[::-1]. Then, we register this function as a Jinja filter using either @app.template_filter('filter_name') or app.add_template_filter(function, name='filter_name'). This tells Flask that the function can now be used inside templates using the specified filter name.In our HTML template, we can now use this custom filter by writing something like {{ name | reverse }}, which will pass the variable name to the reverse filter before rendering. When the page is loaded, the output will display the reversed string. This pattern works not only for string manipulation but also for more advanced use cases like formatting dates, masking emails, or shortening long text. By using custom filters, we keep our templates clean and our formatting logic neatly encapsulated in reusable functions.

In [None]:
#Steps to define a custom Jinja filter:
#Define a Python function
#Register it as a filter using app.template_filter()
#Use it in your template with |
from flask import Flask, render_template

app = Flask(__name__)

# Step 1: Define the function
def reverse_string(value):
    return value[::-1]

# Step 2: Register the function as a Jinja filter
app.template_filter('reverse')(reverse_string)

# Optional alternative way:
# app.add_template_filter(reverse_string, name='reverse')

@app.route('/')
def home():
    name = "Flask"
    return render_template('index.html', name=name)

if __name__ == '__main__':
    app.run(debug=True)

13.  How can you redirect with query parameters in Flask?


In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

# Route to trigger redirection with query parameters
@app.route('/go')
def go():
    return redirect(url_for('welcome', name='Alice', age=28))

# Destination route
@app.route('/welcome')
def welcome():
    name = request.args.get('name')
    age = request.args.get('age')
    return f"Welcome {name}, age {age}!"

if __name__ == '__main__':
    app.run(debug=True)

14. How do you return JSON responses in Flask?

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/user')
def get_user():
    data = {
        'name': 'Alice',
        'age': 25,
        'status': 'active'
    }
    return jsonify(data)

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
return jsonify({'message': 'Created'}), 201

15. How do you capture URL parameters in Flask?

-   Use <parameter> in the route to capture values from the URL.
-   Flask passes those values as arguments to your view function.
-   You can specify types like <int:id>, <float:x>, or <path:filename>.
-   This makes your app more flexible and dynamic.

In [None]:
@app.route('/user/<username>')
def show_user_profile(username):
    return f'User: {username}'

In [None]:
app.route('/post/<int:post_id>/comment/<int:comment_id>')
def show_comment(post_id, comment_id):
    return f'Post ID: {post_id}, Comment ID: {comment_id}'