Restful API & Flask Assignment.

Que1. What is a RESTful API ?

Ans:A RESTful API (Representational State Transfer API) is a standardized way for software applications to communicate over the internet, typically using HTTP. It allows systems to interact by sending requests and receiving responses, often in formats like JSON or XML.

Que2.Explain the concept of API specification .

Ans:  Key Components of an API Specification

1) Endpoints: The specific URLs where API resources can be accessed.

2) HTTP Methods: The operations supported by the API, such as GET, POST, PUT, DELETE.

3) Request Parameters: The data sent to the API, including query parameters, headers, and body content.

4) Response Formats: The structure and format of the data returned by the API, typically in JSON or XML.

5) Authentication & Authorization: Mechanisms to secure access to the API, such as API keys, OAuth, or JWT.

6) Error Handling: Standardized error codes and messages to indicate issues with requests.


Que3. What is Flask, and why is it popular for building APIs ?

Ans: Flask is a micro-framework, meaning it provides the essential tools to get started with web development—such as routing, request handling, and a built-in development server—without imposing additional components like database abstraction layers or form validation. This minimalistic approach allows developers to choose the libraries and tools that best fit their project's needs.

Flask's popularity for API development stems from several key features:

1) Lightweight and Flexible: Flask's minimalistic design allows developers to build APIs without unnecessary overhead, offering complete control over the application's components and structure. 


2) Extensible with Extensions: Flask supports numerous extensions that add functionality such as authentication, database integration, and form handling, enabling developers to customize their APIs as needed. 

3) Rapid Prototyping: Its simplicity and ease of use make Flask ideal for quickly developing prototypes or Minimum Viable Products (MVPs), allowing for fast iteration and testing. 

4) RESTful Request Dispatching: Flask's routing system supports RESTful request dispatching, making it straightforward to build APIs that adhere to REST principles.

5) Built-in Development Server and Debugger: Flask includes a built-in development server and debugger, facilitating local testing and debugging during API development. 

6) Unit Testing Support: Flask provides integrated support for unit testing, allowing developers to ensure the reliability and correctness of their APIs. 

Que4. What is routing in Flask ?

Ans: In Flask, routing is the mechanism that maps incoming HTTP requests to specific functions in your application. This allows you to define how your application responds to different URLs and HTTP methods. 


Que5. How do you create a simple Flask application ?

Ans: Creating a simple Flask application is an excellent way to get started with web development in Python. Here's a step-by-step guide to building your first Flask app:

from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)




Que6. What are HTTP methods used in RESTful APIs ?

Ans: In RESTful APIs, HTTP methods define the actions that can be performed on resources. These methods correspond to CRUD (Create, Read, Update, Delete) operations and are integral to RESTful design principles.

1. GET – Retrieve Data (Read)
Purpose: Fetch data from the server without modifying it.

Idempotent: Yes (multiple identical requests yield the same result).

Safe: Yes (does not alter server state).

Usage: To retrieve resources or data.

2.  POST – Create Data
Purpose: Send data to the server to create a new resource.

Idempotent: No (multiple identical requests may result in duplicate resources).

Safe: No (modifies server state).

Usage: To create new resources.

3. PUT – Update or Replace Data
Purpose: Replace the current representation of a resource with the provided data.

Idempotent: Yes (multiple identical requests yield the same result).

Safe: No (modifies server state).

Usage: To update or replace an existing resource.

4. PATCH – Partially Update Data
Purpose: Apply partial modifications to a resource.

Idempotent: Not necessarily (depends on implementation).

Safe: No (modifies server state).

Usage: To update specific fields of an existing resource.

5. DELETE – Remove Data
Purpose: Remove a resource from the server.

Idempotent: Yes (multiple identical requests yield the same result).

Safe: No (modifies server state).

Usage: To delete an existing resource.

6. HEAD – Retrieve Headers
Purpose: Fetch headers of a resource without the body.

Idempotent: Yes.

Safe: Yes.

Usage: To check metadata like content type or length.

7. OPTIONS – Retrieve Allowed Methods
Purpose: Determine which HTTP methods are supported by a resource.

Idempotent: Yes.

Safe: Yes.

Usage: To discover allowed methods for a resource.

8. TRACE – Diagnostic Purpose
Purpose: Echo the received request for diagnostic purposes.

Idempotent: Yes.

Safe: Yes.

Usage: To trace the path of a request.



Que7. What is the purpose of the @app.route() decorator in Flask ?

Ans: Purpose of @app.route() in Flask
URL Mapping: It associates a URL pattern with a view function, enabling Flask to know which function to execute when a request is made to that URL.

HTTP Method Handling: By default, @app.route() responds to GET requests. However, it can be configured to handle other HTTP methods like POST, PUT, DELETE, etc., by specifying the methods parameter.

Dynamic URL Handling: It supports dynamic URL segments, allowing parts of the URL to be captured as variables and passed to the view function.

Que8. What is the difference between GET and POST HTTP methods ?

Ans:
 1)  GET Method
Purpose: Retrieve data from the server.

Data Transmission: Appends data to the URL as query parameters.

Visibility: Data is visible in the browser's address bar.

Security: Less secure; sensitive information can be exposed.

Data Size Limit: Limited by the maximum URL length (typically around 2048 characters).

Caching: Responses can be cached by browsers and servers.

Idempotency: Idempotent; multiple identical requests yield the same result.

Use Cases: Fetching data, such as retrieving search results or loading a webpage.

2) POST Method
Purpose: Send data to the server to create or update resources.

Data Transmission: Includes data in the body of the request.

Visibility: Data is not visible in the URL.

Security: More secure; suitable for transmitting sensitive information.

Data Size Limit: No strict limit; can handle large amounts of data.

Caching: Responses are not cached by default.

Idempotency: Non-idempotent; multiple identical requests may have different effects.

Use Cases: Submitting form data, uploading files, or performing actions that modify server state.

Que9. How do you handle errors in Flask APIs ?

Ans: Flask allows you to define custom error handlers using the @app.errorhandler() decorator. This enables you to return structured JSON responses for various HTTP errors:

from flask import Flask, jsonify

app = Flask(__name__)

@app.errorhandler(400)
def handle_bad_request(error):
    return jsonify({"error": "Bad Request", "message": str(error)}), 400

@app.errorhandler(404)
def handle_not_found(error):
    return jsonify({"error": "Not Found", "message": str(error)}), 404

@app.errorhandler(500)
def handle_internal_error(error):
    return jsonify({"error": "Internal Server Error", "message": str(error)}), 500


2)  Implement Global Error Handling
To catch unexpected errors that aren't explicitly handled, you can define a global error handler:


@app.errorhandler(Exception)
def handle_exception(error):
    return jsonify({"error": "Unexpected Error", "message": str(error)}), 500

This handler provides a fallback mechanism, ensuring that all exceptions are caught and appropriately responded to.

3) Utilize Custom Exceptions
For application-specific errors, define custom exceptions that extend werkzeug.exceptions.HTTPException:
This allows for more granular error handling and clearer communication of specific issues.



Que10. How do you connect Flask to a SQL database ?

Ans: 1. Install Flask-SQLAlchemy
     pip install Flask-SQLAlchemy

2. Configure the Flask Application
In your Flask application file (e.g., app.py), configure the database URI and initialize the SQLAlchemy extension:

from flask import Flask
from flask_sqlalchemy import SQLAlchemy

app = Flask(__name__)
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///site.db'  # SQLite database
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False  # Disable modification tracking

db = SQLAlchemy(app)

For other databases like PostgreSQL or MySQL, adjust the URI accordingly:

  app.config['SQLALCHEMY_DATABASE_URI'] = 'postgresql://username:password@localhost/dbname'
  app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql://username:password@localhost/dbname'

3. Define Database Models

Create models by subclassing db.Model and defining columns as class variables:

class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(120), unique=True, nullable=False)
    email = db.Column(db.String(120), unique=True, nullable=False)

4. class User(db.Model):
    flask shell
    from app import db
    db.create_all()
This will generate the site.db SQLite file in your project directory.

5. Implement CRUD Operations.

Perform Create, Read, Update, and Delete operations using the session provided by SQLAlchemy:

    new_user = User(username='john_doe', email='john@example.com')
    db.session.add(new_user)
    db.session.commit()
Read:    
    user = User.query.filter_by(username='john_doe').first()
Update:
    user.email = 'john.doe@example.com'
    db.session.commit()

Delete:
   db.session.delete(user)
   db.session.commit()

6. Handle Database Migrations
For managing database schema changes over time, integrate Flask-Migrate:
   pip install Flask-Migrate
   from flask_migrate import Migrate
   migrate = Migrate(app, db)

Initialize the migration repository and apply migrations:
   flask db init
   flask db migrate -m "Initial migration"
   flask db upgrade
This setup allows you to handle schema changes without losing existing data.


Que11. What is the role of Flask-SQLAlchemy ?

Ans:  Key Roles of Flask-SQLAlchemy
1. Database Integration: It seamlessly connects Flask applications to relational databases like SQLite, PostgreSQL, and MySQL, enabling efficient data storage and retrieval.

2. Object-Relational Mapping (ORM): By mapping Python classes to database tables, it allows developers to perform database operations using Python objects instead of writing raw SQL queries. This abstraction simplifies database interactions and enhances code readability.


3. Session Management: Flask-SQLAlchemy manages database sessions for each request, ensuring that connections are properly handled and closed, which is crucial for performance and resource management.

4. Model Definition: It provides a declarative syntax for defining database models, making it easier to define tables, relationships, and constraints using Python classes.


5. Query Interface: The extension extends SQLAlchemy’s query interface to work seamlessly within Flask, allowing developers to perform complex queries using a simple and expressive syntax.


6. Migration Support: While Flask-SQLAlchemy itself doesn't handle migrations, it integrates well with Flask-Migrate, which uses Alembic to handle database schema changes over time.

Que12. What are Flask blueprints, and how are they useful ? 

Ans: A Blueprint in Flask is an object that defines a collection of routes, templates, static files, and other components. Instead of registering all routes directly with the main application, you can define them within a blueprint and then register the blueprint with the application. This approach promotes a clean separation of concerns and makes it easier to manage different parts of your application independently.

To create and use a blueprint in Flask:

Define a Blueprint: Create a new Python module (e.g., auth.py) and define a blueprint.

from flask import Blueprint

auth_bp = Blueprint('auth', __name__, template_folder='templates', static_folder='static')

Add Routes to the Blueprint: Define routes within the blueprint.

@auth_bp.route('/login')
def login():
    return render_template('login.html')
Register the Blueprint with the Application: In your main application file (e.g., app.py), register the blueprint.

from flask import Flask
from auth import auth_bp

app = Flask(__name__)
app.register_blueprint(auth_bp, url_prefix='/auth')
With this setup, the /login route is now accessible via /auth/login in the application.

Que13. What is the purpose of Flask's request object ?

Ans: In Flask, the request object is a central component that encapsulates all the data sent by the client in an HTTP request. It provides a structured way to access various parts of the request, such as form data, query parameters, headers, and more. This object is automatically available in view functions and is essential for handling incoming data in Flask applications.

Que14. How do you create a RESTful API endpoint using Flask ?

Ans: Creating a RESTful API with Flask involves defining routes that handle HTTP methods such as GET, POST, PUT, and DELETE

1: Set Up Your Flask Environment
Install Flask:
pip install flask

2. Create a Basic Flask Application:

from flask import Flask, jsonify, request

app = Flask(__name__)

if __name__ == '__main__':
    app.run(debug=True)

3. Step 2: Define a Resource Model
For this example, let's define a simple in-memory data structure to represent books:


books = [
    {'id': 1, 'title': '1984', 'author': 'George Orwell'},
    {'id': 2, 'title': 'To Kill a Mockingbird', 'author': 'Harper Lee'}
]

4. Step 3: Implement CRUD Operations
Define routes to handle Create, Read, Update, and Delete operations:


@app.route('/api/books', methods=['GET'])
def get_books():
    return jsonify({'books': books})

@app.route('/api/books/<int:book_id>', methods=['GET'])
def get_book(book_id):
    book = next((b for b in books if b['id'] == book_id), None)
    if book:
        return jsonify({'book': book})
    return jsonify({'message': 'Book not found'}), 404

@app.route('/api/books', methods=['POST'])
def create_book():
    data = request.get_json()
    new_book = {
        'id': len(books) + 1,
        'title': data['title'],
        'author': data['author']
    }
    books.append(new_book)
    return jsonify({'book': new_book}), 201

@app.route('/api/books/<int:book_id>', methods=['PUT'])
def update_book(book_id):
    data = request.get_json()
    book = next((b for b in books if b['id'] == book_id), None)
    if book:
        book['title'] = data['title']
        book['author'] = data['author']
        return jsonify({'book': book})
    return jsonify({'message': 'Book not found'}), 404

@app.route('/api/books/<int:book_id>', methods=['DELETE'])
def delete_book(book_id):
    global books
    books = [b for b in books if b['id'] != book_id]
    return jsonify({'message': 'Book deleted'})

Step 4: Test Your API
You can test your API using tools like Postman or curl:

GET all books:


  curl http://localhost:5000/api/books
GET a single book:


  curl http://localhost:5000/api/books/1
POST a new book:


  curl -X POST -H "Content-Type: application/json" -d '{"title": "Brave New World", "author": "Aldous Huxley"}' http://localhost:5000/api/books
PUT to update a book:


  curl -X PUT -H "Content-Type: application/json" -d '{"title": "1984", "author": "George Orwell"}' http://localhost:5000/api/books/1

DELETE a book:


  curl -X DELETE http://localhost:5000/api/books/1

For more advanced features like input validation, authentication, and database integration, consider using extensions such as Flask-RESTful for resource-based routing and Flask-SQLAlchemy for database management.



Que15. What is the purpose of Flask's jsonify() function ?

Ans: Purpose of jsonify()

1. Automatic JSON Conversion: Converts Python objects like dictionaries or lists into JSON-formatted strings.

2. Correct HTTP Headers: Sets the Content-Type header to application/json, informing the client that the response body contains JSON data.

3. Enhanced Security: Automatically escapes special characters, helping to prevent Cross-Site Scripting (XSS) attacks.

4. Improved Readability: Formats the JSON response in a human-readable way, which is beneficial for debugging.

Que16. Explain Flask’s url_for() function .

Ans: Purpose of url_for()

1. Dynamic URL Generation: Generates URLs based on the function name and parameters, ensuring that your links are always up-to-date with your route definitions.

2. Avoids Hardcoding: Prevents the need to hardcode URLs, making your code more maintainable and less error-prone.

3. Handles URL Parameters: Automatically encodes URL parameters, ensuring they are safely included in the generated URLs.

4. Supports Blueprints: When using Flask Blueprints, url_for() can generate URLs specific to the blueprint's namespace.

Que17. How does Flask handle static files (CSS, JavaScript, etc.) ?

Ans:  Best Practices for Managing Static Files

1. Organize Assets: Structure your static folder with subdirectories like /css/, /js/, and /images/ to keep your files organized.

2. Use Versioning: Implement versioning in your file names (e.g., style.v1.css) to manage browser caching effectively.

3. Minify and Bundle: Use tools like Flask-Assets or external build systems to minify and bundle your CSS and JavaScript files, improving load times.

4. Leverage CDNs: For commonly used libraries (e.g., Bootstrap, jQuery), consider using Content Delivery Networks (CDNs) to reduce latency and improve load times. 

Que18. What is an API specification, and how does it help in building a Flask API ?

Ans: Purpose of an API Specification

1. Standardization: Provides a consistent format for documenting APIs, ensuring uniformity across different services.

2. Automation: Facilitates the generation of client libraries, server stubs, and interactive documentation.

3. Validation: Allows for the validation of requests and responses against the defined schema.

4. Collaboration: Enhances communication between frontend and backend teams by providing a clear API contract.

Tools for Implementing API Specifications in Flask.

1. Flasgger: Integrates Swagger UI with Flask, enabling the generation of interactive API documentation.

2. Flask-RESTPlus: Extends Flask with support for creating REST APIs, including features for input data validation and output formatting.

3. Connexion: Links Flask routes to operations defined in an OpenAPI specification, promoting a contract-first approach

Que19. What are HTTP status codes, and why are they important in a Flask API ?

Ans: HTTP status codes are grouped into five classes based on their first digit:
Wikipedia

1xx (Informational): Indicates that the request was received and is being processed.

2xx (Success): The request was successfully processed.

200 OK: Standard response for successful HTTP requests.

201 Created: The request has been fulfilled and a new resource has been created.

3xx (Redirection): Further action is needed to fulfill the request.

301 Moved Permanently: The resource has been permanently moved to a new URL.

302 Found: The resource is temporarily located at a different URI.

4xx (Client Error): The client seems to have made an error.

400 Bad Request: The server cannot process the request due to client error.

404 Not Found: The requested resource could not be found.

5xx (Server Error): The server failed to fulfill a valid request.

500 Internal Server Error: The server encountered an unexpected condition.

These codes are standardized by the Internet Assigned Numbers Authority (IANA) and are integral to HTTP communication. 

Que20. How do you handle POST requests in Flask ?

Ans: In Flask, POST requests are used to send data to the server, typically for creating or updating resources. The @app.route() decorator is employed to define routes that handle POST requests.


from flask import Flask, request

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def submit():
    data = request.form  # Access form data
    return f"Received data: {data}"
In this example, the /submit route processes POST requests and retrieves form data using request.form.



Que21. How would you secure a Flask API .

Ans: 1. Secure Configuration
Use Environment Variables: Store sensitive information like SECRET_KEY and database credentials in environment variables to prevent accidental exposure.

Disable Debug Mode: Set DEBUG = False in production to avoid exposing sensitive error information.

2.Authentication & Authorization
Implement Secure Authentication: Use extensions like Flask-Login for session management and Flask-Bcrypt for hashing passwords.


Role-Based Access Control (RBAC): Utilize Flask-Principal or Flask-Security to manage user roles and permissions effectively.

3.Protect Against Common Attacks

Cross-Site Request Forgery (CSRF): Enable CSRF protection using Flask-WTF or Flask-SeaSurf.


Cross-Site Scripting (XSS): Ensure templates escape variables by default and avoid using the |safe filter unless necessary.


SQL Injection: Use Object-Relational Mapping (ORM) tools like SQLAlchemy to prevent SQL injection attacks.

4. Secure Data Transmission
Use HTTPS: Serve your application over HTTPS to encrypt data in transit.

Set Secure Cookies: Configure SESSION_COOKIE_SECURE = True and REMEMBER_COOKIE_SECURE = True to ensure cookies are sent over secure channels.

5. Input Validation & Rate Limiting
Validate Inputs: Use libraries like WTForms to validate and sanitize user inputs.

Implement Rate Limiting: Use Flask-Limiter to prevent abuse by limiting the number of requests from a single user.

6. Regular Maintenance
Update Dependencies: Regularly update Flask and its extensions to patch known vulnerabilities.

Conduct Security Audits: Perform regular security audits and penetration testing to identify and fix potential vulnerabilities.

Que22. What is the significance of the Flask-RESTful extension ?

Ans: Key Features of Flask-RESTful

1. Resource-Oriented Design: Encapsulates API endpoints as Python classes, promoting modularity and maintainability. Each class corresponds to a specific resource and handles HTTP methods like GET, POST, PUT, and DELETE .
Curate Partners

2. Seamless Flask Integration: Integrates effortlessly with Flask, leveraging its routing and request handling capabilities while introducing minimal boilerplate code .

3. Request Parsing and Validation: Utilizes reqparse to validate and parse incoming request data, ensuring that inputs conform to expected formats and types .


4. Customizable Error Handling: Allows developers to define custom error messages and status codes, enhancing the clarity and consistency of API responses .


5. Content Negotiation: Supports multiple response formats (e.g., JSON, XML) through custom representation functions, accommodating diverse client requirements .


Que23. What is the role of Flask’s session object? 

Ans: Purpose of Flask's session Object : 

1. Persistent User Data: The session object allows you to store information that persists across requests from the same user, such as authentication status, user preferences, or shopping cart contents.


2. Client-Side Storage with Server-Side Security: Flask's session mechanism uses cookies to store a session identifier on the client's browser. The actual session data is stored on the server and is associated with this identifier. To prevent tampering, Flask signs the session data cryptographically using a secret key. This ensures that while clients can view the session contents, they cannot modify them unless they know the secret key.

 * Key Features of Flask's session Object
 
1. Dictionary-Like Behavior: The session object behaves like a standard Python dictionary, allowing you to set and retrieve values using key-value pairs.

2. Automatic Handling of Modifications: Flask automatically tracks modifications to the session. If you change a mutable object stored in the session, you need to manually set session.modified = True to ensure that the changes are saved.

3. Session Expiration: By default, sessions are temporary and expire when the user closes their browser. However, you can make a session permanent by setting session.permanent = True, which allows you to specify a custom session lifetime using PERMANENT_SESSION_LIFETIME.



In [None]:
#Practical Questions


In [None]:
#Que1. How do you create a basic Flask application ?

from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#Que2. How do you serve static files like images or CSS in Flask ?

<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Flask App</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='css/style.css') }}">
</head>
<body>
    <h1>Welcome to Flask!</h1>
    <img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
    <script src="{{ url_for('static', filename='js/script.js') }}"></script>
</body>
</html>
#This approach dynamically generates the correct paths to your static files.

#Run Your Flask Application
#In your app.py file, initialize your Flask app:

from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def index():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)
#Flask automatically serves files from the static folder at the /static/ URL path. For instance, logo.png can be accessed via http://127.0.0.1:5000/static/images/logo.png.

In [None]:
#Que3. How do you define different routes with different HTTP methods in Flask ?

#To create routes that respond to specific HTTP methods, you can use the methods parameter:
from flask import Flask, request

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def submit():
    return 'Form submitted successfully!'

@app.route('/update', methods=['PUT'])
def update():
    return 'Resource updated successfully!'

@app.route('/delete', methods=['DELETE'])
def delete():
    return 'Resource deleted successfully!'

if __name__ == '__main__':
    app.run(debug=True)
#In this example, each route is configured to handle a specific HTTP method.



In [None]:
#Que4. How do you render HTML templates in Flask ?

#Create a Basic Flask Application
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

#This sets up a route for the home page that renders the index.html template.

#Create the HTML Template
<!DOCTYPE html>
<html lang="en">
<head>
    <meta charset="UTF-8">
    <title>Flask App</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>
    <p>This is a basic template rendering example.</p>
</body>
</html>
#This HTML file will be rendered when you visit the home page of your Flask application. 



In [None]:
#Que5. How can you generate URLs for routes in Flask using url_for ?

#The url_for() function constructs a URL for a given endpoint, which is typically the name of a view function.

from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return 'Home Page'

@app.route('/user/<username>')
def user_profile(username):
    return f'Profile of {username}'

with app.test_request_context():
    print(url_for('index'))  # Output: /
    print(url_for('user_profile', username='john'))  # Output: /user/john
#url_for('index') generates the URL for the index function, which is /. Similarly, url_for('user_profile', username='john') generates /user/john.




In [None]:
#Que6.How do you handle forms in Flask .

#Flask provides the request object to access form data submitted via POST requests.
from flask import Flask, request

app = Flask(__name__)

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        name = request.form.get('name')
        email = request.form.get('email')
        return f"Received: {name}, {email}"
    return '''
        <form method="POST">
            Name: <input type="text" name="name"><br>
            Email: <input type="email" name="email"><br>
            <input type="submit" value="Submit">
        </form>
    '''
#In this example, a form is displayed on GET requests, and on POST requests, the submitted data is processed and displayed.

In [None]:
#Que7. How can you validate form data in Flask ?

#Create a form class using WTForms fields and validators:
from flask_wtf import FlaskForm
from wtforms import StringField, PasswordField, SubmitField
from wtforms.validators import DataRequired, Length, EqualTo, Email

class RegistrationForm(FlaskForm):
    username = StringField('Username', validators=[
        DataRequired(message="Username is required"),
        Length(min=3, max=20, message="Username must be between 3 and 20 characters")
    ])
    email = StringField('Email', validators=[
        DataRequired(),
        Email(message="Please enter a valid email address")
    ])
    password = PasswordField('Password', validators=[
        DataRequired(),
        Length(min=8, message="Password must be at least 8 characters")
    ])
    confirm_password = PasswordField('Confirm Password', validators=[
        DataRequired(),
        EqualTo('password', message="Passwords must match")
    ])
    submit = SubmitField('Register')
#In this example, the form includes fields for username, email, password, and password confirmation, each with appropriate validators. 

#Handle Form Submission in a View
#In your Flask route, instantiate the form and validate it:
from flask import render_template, flash, redirect, url_for
from app import app
from .forms import RegistrationForm

@app.route('/register', methods=['GET', 'POST'])
def register():
    form = RegistrationForm()
    if form.validate_on_submit():
        # Process the form data
        flash('Registration successful!', 'success')
        return redirect(url_for('home'))
    return render_template('register.html', form=form)
#Here, validate_on_submit() checks if the form is submitted and valid. If valid, you can process the data; otherwise, errors are available in the form object.



In [None]:
#Que8.How do you manage sessions in Flask .

#By default, Flask uses client-side sessions, where session data is stored in a secure cookie on the user's browser. This method is simple and efficient for small-scale applications.

from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Required for session security

@app.route('/')
def index():
    session['user'] = 'JohnDoe'
    return f"Session stored for {session['user']}"

if __name__ == '__main__':
    app.run(debug=True)

# The session data is stored in a secure cookie on the user's browser. The secret_key is essential for signing the session cookie to prevent tampering.

In [None]:
#Que9.How do you redirect to a different route in Flask .

#To redirect a user to another route, use the redirect() function:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return 'Welcome to the Home Page!'

@app.route('/login')
def login():
    return 'Please log in.'

@app.route('/dashboard')
def dashboard():
    return 'Welcome to your Dashboard.'

@app.route('/go-to-dashboard')
def go_to_dashboard():
    return redirect(url_for('dashboard'))


In [None]:
#Que10. How do you handle errors in Flask (e.g., 404).

#A 404 error occurs when a user attempts to access a route that doesn't exist. To handle this, you can define a custom error handler:

from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(error):
    return render_template('404.html'), 404

In [None]:
#Que11. How do you structure a Flask app using Blueprints .

from flask import Blueprint

admin_bp = Blueprint('admin', __name__, template_folder='templates', static_folder='static')

@admin_bp.route('/dashboard')
def dashboard():
    return "Admin Dashboard"


from flask import Blueprint

user_bp = Blueprint('user', __name__, template_folder='templates', static_folder='static')

@user_bp.route('/profile')
def profile():
    return "User Profile"

#In the app/__init__.py file, create the Flask application instance and register the Blueprints.

from flask import Flask
from app.admin.routes import admin_bp
from app.user.routes import user_bp
from app.core.routes import core_bp

def create_app():
    app = Flask(__name__)
    app.register_blueprint(admin_bp, url_prefix='/admin')
    app.register_blueprint(user_bp, url_prefix='/user')
    app.register_blueprint(core_bp)
    return app

#Initialize and Run the Application
from app import create_app

app = create_app()

if __name__ == '__main__':
    app.run(debug=True)


In [None]:
#Que12.How do you define a custom Jinja filter in Flask .

#You can define a custom filter using the @app.template_filter() decorator. By default, the filter's name is the same as the function name, but you can specify a custom name as an argument to the decorator.

from flask import Flask

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_filter(s):
    """Reverses the input string."""
    return s[::-1]

def reverse_filter(s):
    """Reverses the input string."""
    return s[::-1]

app.jinja_env.filters['reverse'] = reverse_filter
#This approach is particularly useful when you want to register filters dynamically or from external modules.

In [None]:
#Que13. How can you redirect with query parameters in Flask .

#To redirect to a route with query parameters, pass the query parameters as keyword arguments to url_for(). Flask will automatically append them to the generated URL.

from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/redirect')
def redirect_example():
    return redirect(url_for('target_route', param1='value1', param2='value2'))

@app.route('/target')
def target_route():
    return 'Redirected with query parameters.'

if __name__ == '__main__':
    app.run(debug=True)
#accessing /redirect will redirect to /target?param1=value1&param2=value2

In [None]:
#Que14. How do you return JSON responses in Flask .

#Using jsonify() to Return JSON Responses

from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    data = {"name": "Alice", "age": 30}
    return jsonify(data)
#In this example, the jsonify() function converts the data dictionary into a JSON response

In [None]:
#Que15. How do you capture URL parameters in Flask .

#Path parameters are part of the URL path and are defined using angle brackets (< >) in the route decorator.

@app.route('/user/<username>')
def show_user_profile(username):
    return f'User {username}'
#In this example, accessing /user/alice will pass 'alice' as the username parameter to the show_user_profile function.