### 1. What is a RESTful API?

A RESTful API is an application programming interface that conforms to the principles of REST (Representational State Transfer). It uses standard HTTP methods (GET, POST, PUT, DELETE, etc.) to perform operations on resources, which are identified by URLs (endpoints). RESTful APIs are stateless: each request from a client contains all information needed for the server to process it. Responses are usually structured in human- and machine-readable formats like JSON or XML. The design emphasizes scalability, simplicity, and a uniform interface so that different clients (web browsers, mobile apps, services) can interact with the API in a predictable way.


### 2. Explain the concept of API specification.

An API specification is a formal description of how clients should interact with an API: its available endpoints, request and response formats, required parameters, authentication methods, error codes, and other constraints. Specifications such as OpenAPI (formerly Swagger) provide a machine-readable, versioned contract that helps developers, testers, and documentation tools generate client libraries, server stubs, and interactive documentation. A clear specification reduces ambiguity, improves interoperability, and makes it easier to maintain and test APIs across development teams.


### 3. What is Flask, and why is it popular for building APIs?

Flask is a lightweight Python web framework that provides the essentials to build web applications and APIs without imposing a lot of structure. It is popular for API development because of its simplicity, minimal boilerplate, clear routing model, built-in development server, and a rich ecosystem of extensions (e.g., Flask-SQLAlchemy, Flask-RESTful, Flask-Migrate). Flask's small core makes it easy to understand and fast to prototype while allowing developers to add only the components they need, which is ideal for RESTful microservices and educational projects.


### 4. What is routing in Flask?

Routing in Flask is the mechanism that matches incoming HTTP requests (based on URL paths and methods) to Python functions (view functions or route handlers). Developers use decorators like @app.route('/path') to register functions that will be executed when a client requests that path. Routing supports variable parts in URLs, HTTP method specification, and allows clean, RESTful endpoint design.


### 5. How do you create a simple Flask application?

To create a simple Flask application, install Flask (pip install flask), then create a Python file where you import Flask, instantiate the application object, define route handlers with @app.route, and run the app. For example:

```python
from flask import Flask
app = Flask(__name__)

@app.route('/')
def hello():
    return 'Hello, world!'

if __name__ == '__main__':
    app.run(debug=True)
```
This minimal app runs a development server and responds to HTTP requests to '/'.


### 6. What are HTTP methods used in RESTful APIs?

Common HTTP methods used in RESTful APIs are GET (retrieve a resource), POST (create a new resource), PUT (replace an existing resource), PATCH (partially update a resource), DELETE (remove a resource), and sometimes HEAD or OPTIONS for metadata and preflight checks. Each method has semantic meaning: for example, GET is safe and idempotent (it should not change server state), while POST typically creates server-side state and is not idempotent.


### 7. What is the purpose of the @app.route() decorator in Flask?

The @app.route() decorator registers a URL rule with the Flask application. It associates a URL path (and optionally allowed HTTP methods) with the following Python function so that when a request arrives matching that path and method, Flask invokes that function and returns its response. Using decorators keeps route definitions close to their handler logic for readability and organization.


### 8. What is the difference between GET and POST HTTP methods?

GET and POST differ in semantics and usage. GET requests retrieve data and should have no side effects; they encode parameters in the URL (query string) and are cacheable and bookmarkable. POST requests submit data to be processed on the server (e.g., create a resource), send data in the request body, may change server state, and are not generally cached or bookmarked. Security considerations also differ: sensitive data should not be sent in a GET query string as it may be logged or cached.


### 9. How do you handle errors in Flask APIs?

Error handling in Flask can be done by returning appropriate HTTP status codes and JSON or HTML error payloads, using try/except blocks within route handlers, and by registering error handlers with @app.errorhandler(status_code) for global handling of specific statuses (e.g., 404 or 500). In APIs, it is common to return structured error responses with keys like 'message' and 'code' to make debugging and client-side handling easier.


### 10. How do you connect Flask to a SQL database?

You can connect Flask to a SQL database either directly using a database driver (like psycopg2 for PostgreSQL, pymysql for MySQL, or sqlite3 for SQLite) or by using an ORM (Object Relational Mapper) like SQLAlchemy or Flask-SQLAlchemy extension. Typically you configure a database URI in the Flask app config (e.g., SQLALCHEMY_DATABASE_URI), initialize the ORM or connection, define models, and use sessions or connections to query and commit transactions.


### 11. What is the role of Flask-SQLAlchemy?

Flask-SQLAlchemy is a Flask extension that integrates SQLAlchemy ORM with Flask, simplifying setup and providing patterns that play well with Flask's app context. It manages connections, config, and model definitions, and offers a convenient 'db' object to define models and interact with the database. Using Flask-SQLAlchemy reduces boilerplate and makes database operations more Pythonic and maintainable.


### 12. What are Flask blueprints, and how are they useful?

Flask blueprints provide a way to structure and modularize applications by grouping related routes, templates, static files, and other code into reusable components. Blueprints let you register a set of routes with a URL prefix and optionally create pluggable application components. They are very useful for larger projects where separating authentication, API endpoints, admin panels, and front-end views improves maintainability and team collaboration.


### 13. What is the purpose of Flask's request object?

Flask's request object represents the incoming HTTP request and provides access to data such as query parameters (request.args), form data (request.form), JSON payloads (request.get_json()), headers (request.headers), files (request.files), and other metadata. It is a context-local object, meaning it is safe to access within request handling functions and will reflect the current request automatically.


### 14. How do you create a RESTful API endpoint using Flask?

To create a RESTful endpoint in Flask, define a route corresponding to the resource path and implement handlers for the relevant HTTP methods. For example, to manage 'books' you might create endpoints like GET /books (list), GET /books/<id> (retrieve), POST /books (create), PUT /books/<id> (update), DELETE /books/<id> (delete). Each handler parses input, interacts with the database or business logic, and returns JSON responses with proper status codes.


### 15. What is the purpose of Flask's jsonify() function?

jsonify() converts Python dictionaries, lists, and other serializable objects into a Flask Response object with application/json content type and properly encoded JSON. It also handles setting the correct mimetype and returns a Response that can include a status code. Using jsonify ensures consistent JSON serialization and avoids manual header manipulation.


### 16. Explain Flask’s url_for() function.

url_for() generates the URL for a given endpoint (the Python function name) using the application's routing map. Instead of hard-coding URLs in templates or code, url_for('endpoint', **values) will compute the correct path and inject variable parts. This makes refactoring easier (routes change in one place) and supports URL building in templates and redirects.


### 17. How does Flask handle static files (CSS, JavaScript, etc.)?

Flask serves static files from the 'static' folder by default. Files placed in that folder are accessible via the '/static/<filename>' URL path. In templates, you typically use url_for('static', filename='css/styles.css') to get the correct path. For production deployments, it's common to let a web server (nginx, Apache) or CDN serve static files for performance and caching control.


### 18. What is an API specification, and how does it help in building a Flask API?

An API specification, such as OpenAPI, describes endpoints, request/response models, authentication, and error formats in a machine-readable document. When building a Flask API, a specification helps define a concrete contract that developers implement and test against, facilitates auto-generated API docs (Swagger UI), enables client SDK generation, and improves collaboration between backend and frontend teams by removing ambiguity.


### 19. What are HTTP status codes, and why are they important in a Flask API?

HTTP status codes are standardized numbers that indicate the result of an HTTP request (e.g., 200 OK, 201 Created, 400 Bad Request, 401 Unauthorized, 404 Not Found, 500 Internal Server Error). They are important because clients rely on them to determine success or failure, to implement conditional behavior, and to debug issues. Returning the correct status codes in a Flask API communicates intent and helps ensure interoperable clients.


### 20. How do you handle POST requests in Flask?

In Flask, handle POST requests by defining a route that accepts 'POST' in its methods parameter, then access submitted data via request.form for form-encoded data or request.get_json() for JSON payloads. Validate input, perform the necessary business logic (e.g., create a database record), and return an appropriate response with status code (commonly 201 Created on success) and any created resource or metadata.


### 21. How would you secure a Flask API?

Securing a Flask API involves several layers: require authentication (tokens, JWTs, OAuth2), use HTTPS to encrypt traffic, validate and sanitize inputs to prevent injection attacks, enforce rate limiting and CORS policies, manage secrets securely, and ensure proper authorization checks for resource access. Use established libraries (Flask-JWT-Extended, Flask-Login, Flask-Limiter) and follow best practices for session management, password storage, and dependency updates.


### 22. What is the significance of the Flask-RESTful extension?

Flask-RESTful is an extension that provides helpful abstractions for building REST APIs with Flask, such as resource classes, request parsing, and automatic route registration. It can simplify repetitive tasks of mapping HTTP methods to class methods and offers tools to serialize responses and handle errors consistently. While not mandatory, it speeds up development and organizes resources in an object-oriented manner.


### 23. What is the role of Flask’s session object?

Flask's session object provides a way to store user-specific data across requests using signed cookies by default (client-side sessions). It allows you to keep small, non-sensitive pieces of state like 'user_id' or 'preferences' and is protected against tampering using the app's secret key. For server-side sessions, extensions or custom backends (Redis, database) can be used for larger or sensitive session data.


PEACTICAL QUESTIONS

### Q1. How do you create a basic Flask application?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return 'Hello, Flask!'

if __name__ == '__main__':
    app.run(debug=True)

### Q2. How do you serve static files like images or CSS in Flask?

In [None]:
from flask import Flask, send_from_directory
app = Flask(__name__)

@app.route('/static/<filename>')
def send_static(filename):
    return send_from_directory('static', filename)

if __name__ == '__main__':
    app.run(debug=True)

### Q3. How do you define different routes with different HTTP methods in Flask?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/greet', methods=['GET'])
def greet():
    return "Hello World!"

if __name__ == '__main__':
    app.run(debug=True)

### Q4. How do you render HTML templates in Flask?

In [None]:
from flask import Flask, render_template
app = Flask(__name__)

@app.route('/')
def index():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

### Q5. How can you generate URLs for routes in Flask using url_for?

In [None]:
from flask import Flask, url_for
app = Flask(__name__)

@app.route('/home')
def home():
    return 'This is the home page.'

@app.route('/')
def index():
    return f'<a href="{url_for("home")}">Go to Home</a>'

if __name__ == '__main__':
    app.run(debug=True)

### Q6. How do you handle forms in Flask?

In [None]:
from flask import Flask, request, render_template
app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        name = request.form['name']
        return f"Hello {name}!"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)

### Q7. How can you validate form data in Flask?

In [None]:
from flask import Flask, request, flash, redirect, url_for
app = Flask(__name__)
app.secret_key = 'secret'

@app.route('/login', methods=['POST'])
def login():
    username = request.form['username']
    if not username:
        flash('Username is required!')
        return redirect(url_for('login'))
    return 'Login successful'

if __name__ == '__main__':
    app.run(debug=True)

### Q8. How do you manage sessions in Flask?

In [None]:
from flask import Flask, session
app = Flask(__name__)
app.secret_key = 'secret'

@app.route('/set_user')
def set_user():
    session['user'] = 'John'
    return 'User set'

@app.route('/get_user')
def get_user():
    return f'Logged in as {session.get("user", "Guest")}'

if __name__ == '__main__':
    app.run(debug=True)

### Q9. How do you redirect to a different route in Flask?

In [None]:
from flask import Flask, redirect, url_for
app = Flask(__name__)

@app.route('/redirect_home')
def redirect_home():
    return redirect(url_for('home'))

@app.route('/home')
def home():
    return 'This is the home page.'

if __name__ == '__main__':
    app.run(debug=True)

### Q10. How do you handle errors in Flask (e.g., 404)?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(e):
    return 'Page not found', 404

@app.route('/')
def home():
    return 'Welcome to the home page.'

if __name__ == '__main__':
    app.run(debug=True)

### Q11. How do you structure a Flask app using Blueprints?

In [None]:
from flask import Flask, Blueprint
app = Flask(__name__)

bp = Blueprint('home', __name__)

@bp.route('/')
def index():
    return 'Home Page'

app.register_blueprint(bp)

if __name__ == '__main__':
    app.run(debug=True)

### Q12. How do you define a custom Jinja filter in Flask?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.template_filter('reverse')
def reverse_filter(s):
    return s[::-1]

@app.route('/')
def home():
    return render_template('home.html', name='Flask')

if __name__ == '__main__':
    app.run(debug=True)

### Q13. How can you redirect with query parameters in Flask?

In [None]:
from flask import Flask, redirect, url_for
app = Flask(__name__)

@app.route('/redirect_with_query')
def redirect_with_query():
    return redirect(url_for('home', username='John'))

@app.route('/home')
def home():
    return f'Welcome, {request.args.get("username")}'

if __name__ == '__main__':
    app.run(debug=True)

### Q14. How do you return JSON responses in Flask?

In [None]:
from flask import Flask, jsonify
app = Flask(__name__)

@app.route('/data')
def data():
    return jsonify({"name": "Flask", "version": "2.0"})

if __name__ == '__main__':
    app.run(debug=True)

### Q15. How do you capture URL parameters in Flask?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/user/<username>')
def user(username):
    return f"Hello {username}!"

if __name__ == '__main__':
    app.run(debug=True)

### 16. How do you handle multiple HTTP methods in a single route in Flask?

In [None]:
from flask import Flask, request
app = Flask(__name__)

@app.route('/action', methods=['GET', 'POST'])
def action():
    if request.method == 'POST':
        return 'POST request received'
    return 'GET request received'

if __name__ == '__main__':
    app.run(debug=True)

### Q17. How do you pass arguments to url_for in Flask?

In [None]:
from flask import Flask, url_for
app = Flask(__name__)

@app.route('/profile/<username>')
def profile(username):
    return f"Profile of {username}"

@app.route('/')
def index():
    return redirect(url_for('profile', username='John'))

if __name__ == '__main__':
    app.run(debug=True)

### Q18. How do you serve dynamic content from a template in Flask?

In [None]:
from flask import Flask, render_template
app = Flask(__name__)

@app.route('/hello/<name>')
def hello(name):
    return render_template('hello.html', name=name)

if __name__ == '__main__':
    app.run(debug=True)

### Q19. How do you pass complex data structures (like lists or dictionaries) to templates?

In [None]:
from flask import Flask, render_template
app = Flask(__name__)

@app.route('/user_list')
def user_list():
    users = [{'name': 'John', 'age': 28}, {'name': 'Alice', 'age': 24}]
    return render_template('users.html', users=users)

if __name__ == '__main__':
    app.run(debug=True)

### Q20. How do you handle optional URL parameters in Flask?

In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/hello/<name>')
def hello(name='Guest'):
    return f'Hello {name}!'

if __name__ == '__main__':
    app.run(debug=True)

### 21. How do you handle file uploads in Flask?

In [None]:
from flask import Flask, request
app = Flask(__name__)

@app.route('/upload', methods=['GET', 'POST'])
def upload_file():
    if request.method == 'POST':
        file = request.files['file']
        file.save(f'./uploads/{file.filename}')
        return 'File uploaded successfully'
    return '''
        <form method="POST" enctype="multipart/form-data">
            <input type="file" name="file">
            <input type="submit">
        </form>
    '''

if __name__ == '__main__':
    app.run(debug=True)

### Q22. How can you enable debugging in Flask to track errors and view changes instantly?

In [None]:
from flask import Flask
app = Flask(__name__)

app.debug = True

@app.route('/')
def home():
    return "Debugging enabled!"

if __name__ == '__main__':
    app.run()

### Q23. How do you customize error pages in Flask?

In [None]:
from flask import Flask, render_template
app = Flask(__name__)

@app.route('/')
def home():
    return 'Home Page'

@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404

if __name__ == '__main__':
    app.run(debug=True)