Theory Questions :-

1. What is a RESTful API ?

 ▶ A RESTful API is a web service that follows REST principles, allowing clients to interact with server-side resources using HTTP methods like GET, POST, PUT, and DELETE.

2. Explain the concept of API specification.

 ▶ An API specification provides a broad understanding of how an API behaves and how the API links with other APIs. It explains how the API functions and the results to expect when using the API. A good example of an API specification is the OpenAPI Specification.

3. What is Flask, and why is it popular for building APIs ?

 ▶ Flask is a popular Python web framework that is widely used to design sophisticated web applications, APIs, and microservices. As a result, this framework's simplicity, flexibility, scalability, reliability, and ability to process increased traffic are the key factors behind its popularity among businesses.

4. What is routing in Flask ?

 ▶ Routing in Flask is the process of mapping URLs to Python functions (also called view functions). It tells the application which function should run when a user visits a specific URL.

 Example:-


In [None]:
from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the homepage!"

@app.route('/about')
def about():
    return "This is the About page."

5.  How do you create a simple Flask application ?

 ▶ Create a file named app.py and add the following:




In [None]:
from flask import Flask

# Create a Flask application instance
app = Flask(__name__)

# Define a route and its view function
@app.route('/')
def home():
    return "🎉 Welcome to your first Flask app!"

# Start the development server
if __name__ == '__main__':
    app.run(debug=True)

6. What are HTTP methods used in RESTful APIs ?

 ▶ In a RESTful API, HTTP methods (Create,Get,Put,Delete) are used to perform CRUD operations (Create, Read, Update, Delete) on resources.

7. What is the purpose of the @app.route() decorator in Flask ?

 ▶ This decorator transforms a function into a route that can be accessed via a browser without explicitly calling the function in your code.

8. What is the difference between GET and POST HTTP methods ?

 ▶ The GET and POST methods are two of the most commonly used HTTP request types in web development, especially when working with RESTful APIs. The GET method is used to retrieve data from a server without making any changes to the data or server state. It sends the data in the URL as query parameters, making it visible in the browser's address bar and easy to bookmark or cache. In contrast, the POST method is used to submit data to the server, such as form inputs, file uploads, or new records. It sends data in the request body, which is not visible in the URL and allows sending larger and more complex data structures securely. Unlike GET, POST requests are not cached, not bookmarked, and they can modify server data, making them suitable for create or update operations. While GET is ideal for simple, safe reads, POST is better suited for operations that involve changes or sensitive information.

9. How do you handle errors in Flask APIs ?

 ▶ Using @app.errorhandler Decorator



In [None]:
rom flask import Flask, jsonify

app = Flask(__name__)

# Handle 404 Not Found error
@app.errorhandler(404)
def not_found_error(e):
    return jsonify({"error": "Resource not found"}), 404

# Handle 500 Internal Server Error
@app.errorhandler(500)
def internal_error(e):
    return jsonify({"error": "An internal error occurred"}), 500


10.  Explain nominal, ordinal, interval, and ratio levels of measurement.

 ▶ Nominal: the data can only be categorized. Ordinal: the data can be categorized and ranked. Interval: the data can be categorized and ranked, and evenly spaced. Ratio: the data can be categorized, ranked, evenly spaced and has a natural zero.

 11.  What is the measure of central tendency ?

 ▶ The measure of central tendency is a statistical concept that identifies a single value that best represents a set of data by indicating the center or typical value of a dataset.

In simple terms, it's a way to describe the "average" or "middle" of your data.

12. How do you connect Flask to a SQL database ?

 ▶ "To connect Flask with an SQL database, we use the Flask-SQLAlchemy extension. Below is a complete example of a Flask app connected to an SQLite database, with routes to add and list student records. This demonstrates database configuration, model definition, record insertion, and retrieval using SQLAlchemy ORM."

In [None]:
from flask import Flask, jsonify
from flask_sqlalchemy import SQLAlchemy

# Step 1: Initialize the Flask app
app = Flask(__name__)

# Step 2: Configure the SQLite database
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///students.db'
app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False

# Step 3: Initialize SQLAlchemy
db = SQLAlchemy(app)

# Step 4: Define a database model
class Student(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    name = db.Column(db.String(100), nullable=False)
    age = db.Column(db.Integer, nullable=False)

# Step 5: Create the database and tables
with app.app_context():
    db.create_all()

# Step 6: Define routes

@app.route('/')
def home():
    return "✅ Flask app connected to SQL database!"

@app.route('/add')
def add_student():
    # Add a new student
    new_student = Student(name="Alice", age=20)
    db.session.add(new_student)
    db.session.commit()
    return "Student added successfully!"

@app.route('/students')
def list_students():
    # Get all students from the database
    students = Student.query.all()
    data = [{"id": s.id, "name": s.name, "age": s.age} for s in students]
    return jsonify(data)

# Step 7: Run the Flask app
if __name__ == '__main__':
    app.run(debug=True)

13.  What is the purpose of Flask's request object ?

 ▶ In Flask, the request object is a built-in object that allows developers to access data sent by the client to the server. This includes form inputs, URL query parameters, JSON data, file uploads, cookies, and request headers. It plays a crucial role in building dynamic web applications and APIs that can accept and process user input.

14. How do you create a RESTful API endpoint using Flask ?

 ▶ A RESTful API endpoint in Flask is a URL route that supports specific HTTP methods (like GET, POST, PUT, DELETE) and performs operations like retrieving, creating, updating, or deleting data. Flask makes it simple to build REST APIs using route decorators and response functions.

Steps to Create a RESTful API in Flask:

1. Import Flask and create an app

2. Define a route using @app.route()

3. Set the HTTP methods (GET, POST, etc.)

4. Use request to receive data, and jsonify to return JSON responses



In [None]:
from flask import Flask, request, jsonify

app = Flask(__name__)

# Sample data
users = [
    {"id": 1, "name": "Alice"},
    {"id": 2, "name": "Bob"}
]

# GET endpoint - retrieve users
@app.route('/users', methods=['GET'])
def get_users():
    return jsonify(users)

# POST endpoint - add a user
@app.route('/users', methods=['POST'])
def add_user():
    data = request.get_json()
    new_user = {
        "id": len(users) + 1,
        "name": data.get("name")
    }
    users.append(new_user)
    return jsonify(new_user), 201

if __name__ == '__main__':
    app.run(debug=True)

15. What is the purpose of Flask's jsonify() function ?

 ▶ In Flask, the jsonify() function is used to convert Python data structures (like dictionaries or lists) into a valid JSON response. It is a convenient and safe way to return data in API responses, especially when building RESTful APIs.

jsonify() characterstics:-

1. It automatically converts Python data (like dict, list) to JSON.

2. It sets the correct Content-Type: application/json in the response header.

3. It handles encoding, formatting, and escaping safely.

4. It returns a Flask Response object, not just a string.



16.  Explain Flask’s url_for() function.

 ▶ The url_for() function in Flask is used to generate URLs for a specific function. It accepts the name of the function as its first argument, and any number of keyword arguments, each corresponding to a variable part of the URL rule.

17. How does Flask handle static files (CSS, JavaScript, etc.) ?

 ▶ In Flask, static files like CSS, JavaScript, and images are served from a dedicated folder named static/ by default. Flask automatically maps this folder to the /static/ URL path, allowing you to link and serve static assets in your HTML templates or directly via URLs.

18. What is an API specification, and how does it help in building a Flask API ?

 ▶ An API specification is a detailed document or blueprint that describes how an API should behave. It defines the endpoints, HTTP methods, request parameters, response formats, status codes, and authentication methods. It serves as a contract between the backend (API developers) and frontend or external users (consumers of the API).

19. What are HTTP status codes, and why are they important in a Flask API ?

 ▶ HTTP status codes are three-digit numbers returned by a web server (including Flask) in response to a client's request. They indicate whether a request was successful, caused an error, or requires further action. In Flask APIs, status codes are critical because they help communicate the result of the API call to the client in a standardized and machine-readable way.

20. How do you handle POST requests in Flask ?

 ▶ In Flask, a POST request is used when the client wants to send data to the server, typically to create or submit information (e.g., filling a form, adding a new record). Flask handles POST requests using route decorators with methods=["POST"], and you can access the data using the request object.

Example: Handling a POST Request


In [None]:
app.py:

from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def handle_post():
    data = request.get_json()
    name = data.get('name')
    email = data.get('email')

    # Process or store the data (here, just echoing it back)
    return jsonify({
        "message": "Data received successfully",
        "name": name,
        "email": email
    }), 201  # HTTP 201 Created

if __name__ == '__main__':
    app.run(debug=True)

21. How would you secure a Flask API ?

 ▶ Securing a Flask API is crucial to protect data, prevent unauthorized access, and defend against common web attacks. A secure Flask API ensures that only authenticated and authorized users can access or modify sensitive resources.

Here are examples to secure a flask API

1. Authentication

In [None]:
from flask import Flask, request, jsonify

app = Flask(__name__)

API_TOKEN = "mysecrettoken"

@app.route('/secure-data')
def secure_data():
    token = request.headers.get("Authorization")
    if token != f"Bearer {API_TOKEN}":
        return jsonify({"error": "Unauthorized"}), 401
    return jsonify({"data": "This is protected data"})

2. Authorization

3. Input Validation and Sanitization

4. HTTPS

5. Use Environment Variables

In [None]:
# .env
SECRET_KEY="my_secret_key"

22. What is the significance of the Flask-RESTful extension ?

 ▶ Flask-RESTful is an extension for Flask that helps you build RESTful APIs quickly and efficiently. It provides a cleaner, object-oriented way to define your API endpoints using classes instead of traditional Flask functions, and includes many helpful features out of the box.

23. What is the role of Flask’s session object ?

 ▶ The session object in Flask is used to store information about a user across different requests. It allows you to persist user data (like login status or preferences) temporarily between HTTP requests, even though HTTP itself is stateless.

Example:-



In [None]:
from flask import Flask, session, redirect, url_for, request

app = Flask(__name__)
app.secret_key = 'mysecretkey'  # Needed to encrypt session data

@app.route('/')
def home():
    if 'username' in session:
        return f"Welcome back, {session['username']}!"
    return "You are not logged in."

@app.route('/login', methods=['POST'])
def login():
    username = request.form.get('username')
    session['username'] = username
    return redirect(url_for('home'))

@app.route('/logout')
def logout():
    session.pop('username', None)
    return "You have been logged out."

if __name__ == '__main__':
    app.run(debug=True)

Practical Questions:-

1. How do you create a basic Flask application ?

In [1]:
pip install flask

from flask import Flask

app = Flask(__name__)  # Create Flask app instance

@app.route('/')  # Define route
def home():
    return "Hello, Flask!"  # Response

if __name__ == '__main__':
    app.run(debug=True)  # Run the app in debug mode

2.  How do you serve static files like images or CSS in Flask ?

In [None]:

# index.html
<!DOCTYPE html>
<html>
<head>
    <!-- Link to CSS -->
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Hello Flask</h1>

    <!-- Display Image -->
    <img src="{{ url_for('static', filename='image.png') }}" alt="Example Image">
</body>
</html>

# app.py

from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)



3. How do you define different routes with different HTTP methods in Flask ?

In [None]:
from flask import Flask, request

app = Flask(__name__)

@app.route('/form', methods=['GET', 'POST'])
def handle_form():
    if request.method == 'POST':
        data = request.form['username']
        return f"Form submitted by: {data}"
    return '''
        <form method="POST">
            Username: <input type="text" name="username">
            <input type="submit" value="Submit">
        </form>
    '''

if __name__ == '__main__':
    app.run(debug=True)

4. How do you render HTML templates in Flask ?

In [None]:
# templates/index.html
<!DOCTYPE html>
<html>
<head>
    <title>My Flask Page</title>
</head>
<body>
    <h1>Hello, {{ name }}!</h1>
</body>
</html>


# app.py
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html', name="Flask User")

if __name__ == '__main__':
    app.run(debug=True)

5.  How can you generate URLs for routes in Flask using url_for ?

In [None]:
# app.py

from flask import Flask, render_template, url_for, request

app = Flask(__name__)

# Home page
@app.route('/')
def home():
    return render_template('index.html')

# Static route
@app.route('/about')
def about():
    return "This is the About page."

# Dynamic route
@app.route('/user/<username>')
def profile(username):
    return render_template('profile.html', username=username)

# Query parameter example
@app.route('/search')
def search():
    query = request.args.get('q')
    return f"Search results for: {query}"

if __name__ == '__main__':
    app.run(debug=True)

# Templates/index.html

<!DOCTYPE html>
<html>
<head>
    <title>url_for Demo</title>
</head>
<body>
    <h1>Welcome to Flask!</h1>

    <!-- Static route link -->
    <a href="{{ url_for('about') }}">Go to About Page</a><br>

    <!-- Dynamic route link -->
    <a href="{{ url_for('profile', username='richie') }}">Go to Richie's Profile</a><br>

    <!-- Query parameter link -->
    <a href="{{ url_for('search', q='flask tutorial') }}">Search for Flask Tutorial</a>
</body>
</html>

# Templates/profile.html

<!DOCTYPE html>
<html>
<head>
    <title>User Profile</title>
</head>
<body>
    <h2>Welcome, {{ username }}!</h2>
    <a href="{{ url_for('home') }}">Back to Home</a>
</body>
</html>

6. How do you handle forms in Flask ?

In [None]:
from flask import Flask, render_template, request

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def form():
    if request.method == 'POST':
        username = request.form['username']
        email = request.form['email']
        return f"<h2>Hello, {username}!</h2><p>Your email is {email}</p>"
    return render_template('form.html')

if __name__ == '__main__':
    app.run(debug=True)


<!DOCTYPE html>
<html>
<head>
    <title>Flask Form Example</title>
</head>
<body>
    <h2>Submit Your Details</h2>
    <form method="POST">
        <label>Name:</label><br>
        <input type="text" name="username" required><br><br>

        <label>Email:</label><br>
        <input type="email" name="email" required><br><br>

        <input type="submit" value="Submit">
    </form>
</body>
</html>

7. How can you validate form data in Flask ?

In [None]:
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def register():
    error = ""
    if request.method == 'POST':
        name = request.form.get('name', '').strip()
        email = request.form.get('email', '').strip()

        if not name or not email:
            error = "Both fields are required."
        elif '@' not in email:
            error = "Invalid email address."
        else:
            return f"Welcome, {name}!"

    return render_template('form.html', error=error)

if __name__ == '__main__':
    app.run(debug=True)


<form method="POST">
    <input type="text" name="name" placeholder="Name">
    <input type="email" name="email" placeholder="Email">
    <input type="submit" value="Submit">
    <p style="color:red;">{{ error }}</p>
</form>

8. How do you manage sessions in Flask ?


In [None]:
from flask import Flask, render_template_string, request, redirect, session, url_for

app = Flask(__name__)
app.secret_key = 'secret123'  # Needed for session encryption

@app.route('/', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form['username']
        session['username'] = username
        return redirect(url_for('dashboard'))
    return '''
        <form method="POST">
            Username: <input type="text" name="username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/dashboard')
def dashboard():
    if 'username' in session:
        return f"Welcome, {session['username']}! <a href='/logout'>Logout</a>"
    return redirect(url_for('login'))

@app.route('/logout')
def logout():
    session.pop('username', None)
    return redirect(url_for('login'))

if __name__ == '__main__':
    app.run(debug=True)

9. How do you redirect to a different route in Flask ?

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def home():
    return "<h2>Home Page</h2><a href='/login'>Go to Login</a>"

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        username = request.form['username']
        return redirect(url_for('welcome', username=username))  # Redirect after form submission
    return '''
        <form method="POST">
            Username: <input name="username">
            <input type="submit" value="Login">
        </form>
    '''

@app.route('/welcome/<username>')
def welcome(username):
    return f"<h2>Welcome, {username}!</h2>"

if __name__ == '__main__':
    app.run(debug=True)

10. How do you handle errors in Flask (e.g., 404) ?


In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return "<h2>Welcome to the Home Page</h2>"

@app.route('/cause-error')
def error_route():
    raise Exception("This is an intentional error!")  # Triggers 500

# Handle 404 Not Found
@app.errorhandler(404)
def not_found_error(e):
    return "<h3>Oops! Page not found (404)</h3>", 404

# Handle 500 Internal Server Error
@app.errorhandler(500)
def internal_error(e):
    return "<h3>Something went wrong (500)</h3>", 500

if __name__ == '__main__':
    app.run(debug=True)

11. How do you structure a Flask app using Blueprints ?

In [None]:
from flask import Flask
from auth.routes import auth_bp
from main.routes import main_bp

app = Flask(__name__)
app.secret_key = 'secret'

# Register blueprints
app.register_blueprint(main_bp)
app.register_blueprint(auth_bp, url_prefix='/auth')

if __name__ == '__main__':
    app.run(debug=True)

 # main/routes.py (Main Blueprint)
from flask import Blueprint, render_template

main_bp = Blueprint('main', __name__)

@main_bp.route('/')
def home():
    return render_template('home.html')

# auth/routes.py (Auth Blueprint)
from flask import Blueprint, render_template, request, redirect, url_for, session

auth_bp = Blueprint('auth', __name__)

@auth_bp.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        session['user'] = request.form['username']
        return redirect(url_for('main.home'))
    return render_template('login.html')

@auth_bp.route('/logout')
def logout():
    session.pop('user', None)
    return redirect(url_for('main.home'))

# templates/home.html
<h2>Home Page</h2>
<a href="{{ url_for('auth.login') }}">Login</a>

# templates/login.html
<form method="POST">
    <input name="username" placeholder="Username">
    <input type="submit" value="Login">
</form>

12. How do you define a custom Jinja filter in Flask ?

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.template_filter('reverse')
def reverse_string(s):
    return s[::-1]

@app.route('/')
def index():
    return render_template('home.html', name="FlaskJinja")

if __name__ == '__main__':
    app.run(debug=True)


# templates/home.html

html
Copy
Edit
<!DOCTYPE html>
<html>
<body>
    <h2>Custom Jinja Filter Example</h2>
    <p>Original: {{ name }}</p>
    <p>Reversed: {{ name | reverse }}</p>
</body>
</html>

13.  How can you redirect with query parameters in Flask ?

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('greet', name='richie', age=25))

@app.route('/greet')
def greet():
    name = request.args.get('name')
    age = request.args.get('age')
    return f"Hello, {name}! You are {age} years old."

if __name__ == '__main__':
    app.run(debug=True)

14.  How do you return JSON responses in Flask ?

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/user')
def get_user():
    user = {
        "id": 1,
        "name": "Richie",
        "email": "richie@example.com"
    }
    return jsonify(user)

if __name__ == '__main__':
    app.run(debug=True)

15. How do you capture URL parameters in Flask ?

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/user/<username>')
def user(username):
    return f"Welcome, {username}!"

@app.route('/post/<int:post_id>')
def post(post_id):
    return f"Post ID: {post_id}"

@app.route('/price/<float:amount>')
def price(amount):
    return f"Price: ₹{amount:.2f}"

@app.route('/docs/<path:subpath>')
def docs(subpath):
    return f"Doc path: {subpath}"

if __name__ == '__main__':
    app.run(debug=True)