# Restful API & Flask

1.   What is a RESTful API?

-    A RESTful API (Representational State Transfer Application Programming Interface) is an architectural style for designing networked applications, particularly web services, that adheres to the principles of REST. REST was defined by computer scientist Roy Fielding in his 2000 doctoral dissertation.   

Key characteristics and principles of a RESTful API:


• Client-Server Architecture: There's a clear separation between the client (front-end application) and the server (back-end application), allowing them to evolve independently.

• Statelessness: Each request from a client to the server must contain all the information needed to understand the request. The server does not store any client context between requests.

• Cacheability: Responses from the server can be explicitly or implicitly defined as cacheable, allowing clients to reuse previously fetched data and improving performance.

• Uniform Interface: This is a fundamental constraint that simplifies the overall system and promotes visibility. It includes:

• Identification of Resources: Resources are identified by unique URIs (Uniform Resource Identifiers).

• Manipulation of Resources Through Representations: Clients interact with resources by exchanging representations (e.g., JSON, XML) of those resources.

• Self-descriptive Messages: Each message contains enough information to describe how to process the message.

• Hypermedia as the Engine of Application State (HATEOAS): Resources include links to related resources, guiding the client through the application's state transitions.

• Layered System: A client cannot ordinarily tell whether it is connected directly to the end server or to an intermediary along the way. This allows for the use of proxy servers, load balancers, and other intermediaries.

RESTful APIs commonly use standard HTTP methods (GET, POST, PUT, DELETE) to perform CRUD (Create, Read, Update, Delete) operations on resources, making them a popular and flexible choice for building web services and facilitating communication between different software systems.


2. Explain the concept of API specification.


-  An API specification is a formal, detailed description that defines how an Application Programming Interface (API) functions and how it should be used. It acts as a blueprint or contract for the API, outlining its capabilities, operations, and the expected interactions between the API and its consumers.
Key aspects of an API specification include:

• Endpoints and Resources: It defines the specific URLs (endpoints) that can be accessed and the data resources they represent.

• Operations (Methods): It specifies the HTTP methods (GET, POST, PUT, DELETE, etc.) that can be performed on each resource and their respective functionalities.

• Parameters: It details the input parameters required for each operation, including their names, data types, formats, and whether they are optional or mandatory. These can be path parameters, query parameters, or request body parameters.

• Request and Response Schemas: It describes the structure and data types of the data sent in requests and received in responses, often using schemas like JSON Schema.

• Authentication and Security: It outlines the security mechanisms required to access the API, such as API keys, OAuth, or other authentication methods.

• Error Handling: It defines the potential error responses and their corresponding status codes and messages.

API specifications are typically written in machine-readable formats like YAML or JSON, often adhering to industry standards such as the OpenAPI Specification (OAS), formerly known as Swagger. This standardization enables automated generation of documentation, client libraries, server stubs, and test cases, streamlining the API development and consumption process.   

In essence, an API specification provides a comprehensive and unambiguous guide for both API developers building the API and API consumers integrating with it, ensuring consistency and interoperability.


3.   What is Flask, and why is it popular for building APIs?


-    Flask is a micro web framework for Python. It is called a "microframework" because it provides the core functionalities for web development, such as routing and handling HTTP requests, without imposing a rigid structure or including many built-in features like object-relational mappers (ORMs) or form validation libraries by default. This minimalistic approach gives developers the flexibility to choose the tools and libraries they prefer for specific tasks.

Flask's popularity for building APIs stems from several key advantages:

• Lightweight and Minimalist: Flask's small codebase and lack of opinionated design make it quick to set up and easy to understand. This reduces overhead and allows developers to focus on the API logic itself.

• Flexibility and Extensibility: Flask does not dictate how an application should be structured or what tools should be used. This allows developers to integrate various libraries and extensions for features like database interaction (e.g., Flask-SQLAlchemy), authentication (e.g., Flask-Login), or serialization, tailoring the API to specific requirements.

• Ease of Learning: Its simplicity makes Flask accessible for beginners and allows for rapid development of basic APIs. A fully functional API can be created with just a few lines of code.

• Pythonic Design: Being built on Python, Flask leverages Python's syntax and ecosystem, making it intuitive for Python developers to learn and use.

• Good for Microservices: Flask's lightweight nature and flexibility make it well-suited for building microservices, where small, independent APIs handle specific functionalities.


4.  What is routing in Flask?


-   In Flask, routing is the mechanism that maps specific URLs (Uniform Resource Locators) to corresponding Python functions or "view functions" within your web application. When a user requests a particular URL, Flask's routing system determines which function should be executed to handle that request and generate a response.

Here's a breakdown of key aspects of Flask routing: Defining Routes with @app.route() Decorator.

The most common way to define a route in Flask is by using the @app.route() decorator. This decorator is placed directly above the Python function that will handle requests for the specified URL path.




In [1]:
    from flask import Flask
    app = Flask(__name__)

    @app.route('/')
    def index():
        return "Hello, World!"

    @app.route('/about')
    def about():
        return "This is the about page."

In this example, when a user visits the root URL (/), the index() function is called. When they visit /about, the about() function is called. Dynamic Routes and Converters.

Flask allows for dynamic routes, where parts of the URL can be treated as variables. These variables can then be passed as arguments to the view function. Converters can be used to specify the data type of these dynamic parts.

In [2]:
    @app.route('/user/<username>')
    def show_user_profile(username):
        return f'User: {username}'

    @app.route('/post/<int:post_id>')
    def show_post(post_id):
        return f'Post ID: {post_id}'

Here, <username> captures a string, and <int:post_id> captures an integer from the URL. HTTP Methods.

Routes can be configured to handle specific HTTP methods (e.g., GET, POST, PUT, DELETE) using the methods argument in the @app.route() decorator.

In [3]:
    @app.route('/login', methods=['GET', 'POST'])
    def login():
        if request.method == 'POST':
            # Handle login form submission
            return "Logged in!"
        else:
            # Display login form
            return "Please log in."

add_url_rule() function.

While decorators are convenient, routes can also be defined programmatically using the app.add_url_rule() method, which provides more flexibility for dynamic route creation.

In [4]:
    def my_view_function():
        return "This is a view function."

    app.add_url_rule('/my-path', 'my_endpoint', my_view_function)

5. How do you create a simple Flask application?

-   Creating a simple Flask application involves a few straightforward steps:

Set up your environment:

Create a new project directory.

It is recommended to create and activate a Python virtual environment within this directory to manage dependencies.

In [7]:
        python -m venv venv
        # On Windows
        .\venv\Scripts\activate
        # On macOS/Linux
        source venv/bin/activate

SyntaxError: invalid syntax (ipython-input-322421557.py, line 1)

In [8]:
        pip install Flask



Create your Flask application file:

Create a new Python file (e.g., app.py) in your project directory.

Add the following code to app.py:

In [None]:
        from flask import Flask

        app = Flask(__name__)

        @app.route("/")
        def hello_world():
            return "<p>Hello, World!</p>"

        if __name__ == "__main__":
            app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with watchdog (inotify)


from flask import Flask: Imports the Flask class.

app = Flask(__name__): Creates an instance of the Flask application. __name__ helps Flask locate resources like templates and static files.

@app.route("/"): This is a decorator that associates the hello_world function with the root URL (/).

def hello_world():: This function defines what content is returned when the root URL is accessed.

if __name__ == "__main__": app.run(debug=True): This block ensures the development server runs when the script is executed directly. debug=True enables automatic reloading on code changes and provides a debugger.

Run your application:

Open your terminal or command prompt.

Navigate to your project directory.

Run the application using:

In [None]:
        flask --app app run

In [None]:
        python app.py

6.  What are HTTP methods used in RESTful APIs?

-   RESTful APIs leverage standard HTTP methods to perform operations on resources, aligning with the principles of the Representational State Transfer (REST) architectural style. The most commonly used methods, and their typical corresponding actions, are:



• GET: Used to retrieve data or a representation of a resource from the server. It should not have any side effects on the server's state.

• POST: Used to create a new resource or submit data to be processed by the server. A successful POST request typically results in the creation of a new resource.

• PUT: Used to update an existing resource or create a resource if it does not exist at the specified URI. It is idempotent, meaning multiple identical PUT requests will have the same effect as a single one.

• PATCH: Used to apply partial modifications to an existing resource. Unlike PUT, which replaces the entire resource, PATCH only sends the changes needed to update the resource.

• DELETE: Used to remove a specified resource from the server.

While these are the most common methods, other HTTP methods like HEAD (retrieves only the headers of a resource) and OPTIONS (describes the communication options for the target resource) can also be used in RESTful API design, though less frequently. The choice of method depends on the specific action being performed on the resource and adhering to the semantics defined by the HTTP protocol.


7.  What is the purpose of the @app.route() decorator in Flask?

-   The @app.route() decorator in Flask serves the purpose of defining URL routes and associating them with specific Python functions within a Flask application.

This decorator acts as a mapping mechanism, linking a particular URL path to a function that will be executed when a user navigates to that URL in their web browser. When a request arrives for a specified URL, Flask identifies the corresponding function decorated with @app.route() and invokes it to generate a response.

Key functionalities of @app.route():

URL Mapping: It directly binds a URL pattern to a Python function.

In [None]:
    from flask import Flask

    app = Flask(__name__)

    @app.route('/')
    def home():
        return "Welcome to the homepage!"

In this example, visiting the root URL (/) will execute the home() function.

Dynamic Routing: It allows for variable parts within the URL, enabling the creation of dynamic routes. These variables are passed as arguments to the decorated function

In [None]:
    @app.route('/user/<username>')
    def show_user_profile(username):
        return f'User: {username}'

Here, /user/JohnDoe would pass "JohnDoe" to show_user_profile().

HTTP Method Specification: It can specify which HTTP methods (GET, POST, PUT, DELETE, etc.) a route should respond to, providing control over how the server handles different types of requests for the same URL.

In [None]:
    @app.route('/submit', methods=['POST'])
    def handle_submission():
        # Process form data
        return "Data submitted successfully!"

8.  What is the difference between GET and POST HTTP methods?

-   The fundamental difference between GET and POST HTTP methods lies in their purpose, how they transmit data, and their characteristics:

. Purpose:

• GET: Primarily used to retrieve data from a server. It requests a representation of a specified resource.

• POST: Primarily used to send data to a server to create or update a resource. It requests that the server accept the data enclosed in the request body.

. Data Transmission:

• GET: Data is appended to the URL as query parameters. This makes the data visible in the URL and potentially stored in browser history and server logs.

• POST: Data is sent in the request body, making it invisible in the URL. This method is suitable for sensitive or large amounts of data.

. Idempotency:


• GET: Generally considered idempotent, meaning that making the same request multiple times will have the same effect as making it once (e.g., retrieving the same data).

• POST: Not necessarily idempotent, as making the same request multiple times can lead to different outcomes (e.g., creating multiple identical resources).

. Cacheability:

• GET: Requests are typically cacheable, allowing browsers and proxy servers to store and reuse responses, which can improve performance.

• POST: Requests are generally not cacheable by default, as their purpose is to modify server-side state.

. Data Size and Types:

• GET: Has limitations on the length of data due to URL length restrictions. Primarily supports string data types.

• POST: Has no inherent limit on the amount of data that can be sent in the request body and can support various data types, including binary data and files.

. Security (in terms of data visibility):

• GET: Less secure for transmitting sensitive data as it's exposed in the URL.

• POST: More secure for sensitive data as it's transmitted in the request body, not the URL. (Note: HTTPS encryption is crucial for overall security for both methods.)

9.   How do you handle errors in Flask APIs?

-    Handling errors in Flask APIs is crucial for providing a robust and user-friendly experience. Here's a breakdown of common approaches: Using Flask's errorhandler decorator.

Flask allows you to register functions to handle specific HTTP errors (like 404 Not Found, 500 Internal Server Error) or custom exceptions using the @app.
errorhandler() decorator.

In [None]:
    from flask import Flask, jsonify, abort

    app = Flask(__name__)

    @app.errorhandler(404)
    def page_not_found(e):
        return jsonify(error="Resource not found"), 404

    @app.errorhandler(500)
    def internal_server_error(e):
        return jsonify(error="Internal server error"), 500

    @app.route('/data/<int:item_id>')
    def get_data(item_id):
        if item_id == 1:
            return jsonify(data={"id": 1, "name": "Example Item"})
        else:
            abort(404) # Manually raise a 404 error

    # You can also handle custom exceptions
    class CustomAPIError(Exception):
        status_code = 400
        def __init__(self, message, status_code=None):
            Exception.__init__(self)
            self.message = message
            if status_code is not None:
                self.status_code = status_code

    @app.errorhandler(CustomAPIError)
    def handle_custom_api_error(error):
        response = jsonify(message=error.message)
        response.status_code = error.status_code
        return response

    @app.route('/process/<int:value>')
    def process_value(value):
        if value < 0:
            raise CustomAPIError("Value cannot be negative", status_code=400)
        return jsonify(result=value * 2)

Using abort() for HTTP errors.

The abort() function from Flask can be used to immediately raise an HTTP error, which will then be caught by your registered error handlers.

In [None]:
    from flask import abort

    # ... inside a route
    if not user_authenticated:
        abort(401) # Unauthorized

custom exception classes.

Define your own exception classes that inherit from Exception (or HTTPException for HTTP-related errors). These can carry specific error messages and status codes.

In [None]:
    class InvalidInputError(Exception):
        def __init__(self, message, status_code=400):
            super().__init__(message)
            self.status_code = status_code

Logging Errors.

Integrate logging to record errors for debugging and monitoring. Flask's app.logger can be used for this purpose.

In [None]:
    import logging
    from flask import Flask, jsonify, abort

    app = Flask(__name__)
    app.logger.setLevel(logging.ERROR) # Set desired logging level

    @app.errorhandler(500)
    def internal_server_error(e):
        app.logger.error(f"Internal server error: {e}")
        return jsonify(error="Internal server error"), 500

Consistent Error Response Format.
Ensure your API returns a consistent structure for error responses, typically including an error message and a relevant HTTP status code. This improves client-side error handling.

10.   How do you connect Flask to a SQL database?

-  Connecting a Flask application to a SQL database is commonly achieved using an Object-Relational Mapper (ORM) like Flask-SQLAlchemy. Here's a general approach:

. Install Flask-SQLAlchemy:

In [None]:
pip install Flask-SQLAlchemy

 Configure your Flask Application:

In your main Flask application file (e.g., app.py), configure the database URI and initialize Flask-SQLAlchemy.

In [None]:
from flask import Flask
from flask_sqlalchemy import SQLAlchemy
import os

app = Flask(__name__)

# Configure the database URI
# Example for SQLite:
basedir = os.path.abspath(os.path.dirname(__file__))
app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///' + os.path.join(basedir, 'database.db')

# Example for PostgreSQL:
# app.config['SQLALCHEMY_DATABASE_URI'] = 'postgresql://user:password@host:port/database_name'

# Example for MySQL:
# app.config['SQLALCHEMY_DATABASE_URI'] = 'mysql+pymysql://user:password@host:port/database_name'

app.config['SQLALCHEMY_TRACK_MODIFICATIONS'] = False # Recommended to suppress warnings

db = SQLAlchemy(app)

Define Database Models:
Create Python classes that represent your database tables. These classes inherit from db.Model and define the table structure (columns, data types, relationships).

In [None]:
class User(db.Model):
    id = db.Column(db.Integer, primary_key=True)
    username = db.Column(db.String(80), unique=True, nullable=False)
    email = db.Column(db.String(120), unique=True, nullable=False)

    def __repr__(self):
        return '<User %r>' % self.username

 Create Database Tables:

Within an application context, create the database and tables based on your defined models.

In [None]:
if __name__ == '__main__':
    with app.app_context():
        db.create_all() # Creates tables if they don't exist
    app.run(debug=True)

Interact with the Database:

You can now use the db object and your model classes to perform database operations (create, read, update, delete)

In [None]:
# Add a new user
new_user = User(username='testuser', email='test@example.com')
db.session.add(new_user)
db.session.commit()

# Query users
users = User.query.all()
for user in users:
    print(user.username, user.email)

11.  What is the role of Flask-SQLAlchemy?

-    
Flask SQLAlchemy Tutorial - QodoFlask-SQLAlchemy's role is to seamlessly integrate SQLAlchemy, a powerful Python Object-Relational Mapper (ORM), with Flask web applications, simplifying database management by allowing developers to interact with SQL databases using Python objects instead of writing raw SQL queries. It simplifies common tasks like defining database models, configuring connections, and querying data, making it easier to build robust, database-driven web applications in Flask.

Key Functions and Features

Object-Relational Mapping (ORM):

It provides an ORM that translates database tables into Python classes and their rows into objects, enabling developers to work with data in an object-oriented way.

Simplified Database Interaction:

Developers can perform database operations such as adding, updating, deleting, and querying records using simple Python methods and objects, abstracting away the complexities of raw SQL.

Easy Configuration:

Flask-SQLAlchemy integrates with Flask's configuration system, making it straightforward to set up database connections and settings for different environments (development, production, etc.).

Automatic Table Creation:

It can automatically create database tables based on the defined Python models when the application starts, reducing the need for manual database schema management.

Database Agnosticism:

It supports various database engines, including SQLite, MySQL, and PostgreSQL, offering flexibility in choosing a database for the Flask application.

Integration with Database Migrations:

It works with Flask-Migrate (which uses the Alembic library) to manage database schema changes, like adding new columns or tables, ensuring data remains intact during updates.

12.  What are Flask blueprints, and how are they useful?

-    Flask Blueprints are a mechanism within the Flask web framework for organizing an application into modular and reusable components. They allow for the creation of independent units of functionality that can be registered with a main Flask application.

How Blueprints are useful:

Modularity and Organization: Blueprints enable the division of a large Flask application into smaller, self-contained modules. Each blueprint can encapsulate related routes, templates, static files, and other resources, making the codebase more organized and easier to navigate. This is particularly beneficial for larger projects with diverse functionalities.

Reusability: A key advantage of blueprints is their reusability. A blueprint designed for a specific feature, such as user authentication or a contact form, can be easily integrated into different Flask applications without significant modifications. This promotes code reuse and reduces development time.

Team Collaboration: Blueprints facilitate collaborative development by allowing different developers or teams to work on separate parts of an application concurrently without interfering with each other's code. Each team can manage their own blueprint's logic, views, and templates independently.

Scalability and Maintainability: As an application grows, managing all routes and resources within a single file becomes unwieldy. Blueprints help in scaling the application by breaking it down into manageable components. This modular structure also simplifies maintenance and debugging, as issues can be isolated to specific blueprints.

URL Prefixes and Subdomains: Blueprints can be registered with a URL prefix, allowing all routes within that blueprint to be accessed under a specific path (e.g., /admin for an admin blueprint). They can also be configured to handle requests for specific subdomains, providing a clear separation of concerns in the application's URL structure.

Example of Blueprint usage:

In [None]:
# users/routes.py (within a 'users' blueprint)
from flask import Blueprint, render_template

users_bp = Blueprint('users', __name__, template_folder='templates')

@users_bp.route('/profile/<username>')
def profile(username):
    return render_template('profile.html', username=username)

# app.py (main application file)
from flask import Flask
from users.routes import users_bp

app = Flask(__name__)
app.register_blueprint(users_bp, url_prefix='/users')

if __name__ == '__main__':
    app.run(debug=True)

13.  What is the purpose of Flask's request object?


-   The purpose of Flask's request object is to provide access to all information related to an incoming HTTP request made by a client to a Flask application. It acts as a central container for various aspects of the request, enabling the application to process and respond appropriately.

Key functions and attributes of the request object include:


• Accessing Request Data: It allows retrieval of data sent with the request, such as form data (request.form), URL parameters (request.args), and uploaded files (request.files).

• Retrieving Request Information: It provides details about the request itself, including the HTTP method (request.method), headers (request.headers), cookies (request.cookies), and the requested URL (request.url, request.path).

• Handling Sessions and Cookies: While not directly managing sessions, the request.cookies attribute provides access to client-sent cookies, which are fundamental for implementing session management in Flask.

• Enabling Dynamic Responses: By understanding the incoming request, the application can generate dynamic responses tailored to the client's needs, such as retrieving specific data based on URL parameters or processing form submissions.

• Supporting API Development: It is crucial for building RESTful APIs, as it allows easy access to request bodies (e.g., JSON data) and other parameters necessary for API interactions.


14.   How do you create a RESTful API endpoint using Flask?


-     Creating a RESTful API endpoint using Flask involves defining routes that correspond to specific URLs and associating them with functions that handle different HTTP methods (GET, POST, PUT, DELETE).

Here's a step-by-step guide: install flask.

If you haven't already, install Flask using pip:

In [None]:
    pip install Flask

Create a Flask Application.

Create a Python file (e.g., app.py) and initialize your Flask application:



In [None]:
    from flask import Flask, jsonify, request

    app = Flask(__name__)

Define a Route and Handle HTTP Methods:

Use the @app.route() decorator to define a URL endpoint and specify the allowed HTTP methods. Inside the decorated function, you can add logic to handle each method.

Example: GET and POST for a list of items

In [None]:
    # Sample in-memory data (simulating a database)
    items = []
    next_id = 1

    @app.route('/items', methods=['GET', 'POST'])
    def handle_items():
        global next_id
        if request.method == 'GET':
            return jsonify(items)
        elif request.method == 'POST':
            new_item = request.get_json()
            if not new_item or 'name' not in new_item:
                return jsonify({"error": "Invalid item data"}), 400
            new_item['id'] = next_id
            next_id += 1
            items.append(new_item)
            return jsonify(new_item), 201 # 201 Created status

Example: GET, PUT, and DELETE for a single item by ID

In [None]:
    @app.route('/items/<int:item_id>', methods=['GET', 'PUT', 'DELETE'])
    def handle_single_item(item_id):
        item = next((i for i in items if i['id'] == item_id), None)
        if not item:
            return jsonify({"error": "Item not found"}), 404

        if request.method == 'GET':
            return jsonify(item)
        elif request.method == 'PUT':
            updated_data = request.get_json()
            if not updated_data:
                return jsonify({"error": "Invalid update data"}), 400
            item.update(updated_data)
            return jsonify(item)
        elif request.method == 'DELETE':
            items.remove(item)
            return jsonify({"message": "Item deleted"}), 204 # 204 No Content

Run the Flask Application.

Add the following lines to the end of your app.py file to run the development server:


In [None]:
    if __name__ == '__main__':
        app.run(debug=True)

Explanation of Key Components:

Flask(__name__): Initializes your Flask application.

@app.route('/path', methods=['METHOD']): This decorator maps a URL path to a Python function and specifies which HTTP methods (e.g., GET, POST, PUT, DELETE) the function should handle.

request: An object provided by Flask that allows you to access incoming request data, such as JSON payloads (request.get_json()) or form data.

jsonify(): A Flask function that converts Python dictionaries or lists into JSON responses, which is standard for RESTful APIs.

Status Codes: Return appropriate HTTP status codes (e.g., 200 OK, 201 Created, 204 No Content, 400 Bad Request, 404 Not Found) to indicate the outcome of the request.

15.  What is the purpose of Flask's jsonify() function?


-    Flask's jsonify() function serves the purpose of simplifying the creation of JSON responses in web applications, particularly for APIs. Its key functionalities are:


• Serialization to JSON: It converts Python data structures (like dictionaries or lists) into a JSON formatted string. This is essential for sending structured data over the web, as JSON is a widely adopted data-interchange format.

• Creating a Flask Response Object: Unlike json.dumps(), which only returns a JSON string, jsonify() wraps the JSON string within a Flask Response object. This Response object is what Flask expects to return to the client.

• Setting the Content-Type Header: Crucially, jsonify() automatically sets the Content-Type HTTP header of the response to application/json. This informs the client that the response body contains JSON data, allowing the client to parse it correctly.


16.   Explain Flask’s url_for() function.

-      Flask's url_for() function dynamically generates URLs for specific view functions within a Flask application. This function is crucial for creating robust and maintainable web applications by avoiding hardcoded URLs.

How it works:

Takes the endpoint name: The primary argument to url_for() is the endpoint name of the view function for which a URL is desired. By default, the endpoint name is the same as the Python function name that handles the route.

Generates the URL: url_for() uses the application's routing map to construct the correct URL based on the provided endpoint name and any additional parameters.

Handles variable parts: If a route contains variable parts (e.g., <int:post_id>), url_for() accepts these as keyword arguments and integrates them into the generated URL.

Appends unknown parameters: Any keyword arguments passed to url_for() that do not correspond to variable parts in the route are appended to the URL as query string parameters.

Benefits of using url_for():

Flexibility and Maintainability: If a URL structure changes, only the route definition needs modification; url_for() automatically adapts, preventing broken links throughout the application (especially in templates).

Dynamic URL Building: Enables the creation of URLs with dynamic values, such as user IDs or post IDs, without string concatenation.

Error Prevention: Reduces the likelihood of errors caused by typos or inconsistencies in hardcoded URLs.

Unicode and Special Character Handling: Transparently handles Unicode characters and correctly escapes special characters in URLs.

Example:
Consider the following Flask application:

In [None]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return 'Welcome to the index page!'

@app.route('/user/<username>')
def show_user_profile(username):
    return f'User: {username}'

@app.route('/post/<int:post_id>')
def show_post(post_id):
    return f'Post ID: {post_id}'

if __name__ == '__main__':
    with app.test_request_context():
        print(url_for('index'))
        print(url_for('show_user_profile', username='Alice'))
        print(url_for('show_post', post_id=123))
        print(url_for('show_post', post_id=456, query_param='value'))

17.  How does Flask handle static files (CSS, JavaScript, etc.)?


-    Flask provides a straightforward mechanism for handling static files like CSS, JavaScript, and images.

Static Folder: By default, Flask looks for static files in a directory named static located in the root of your application. You should place all your static assets within this folder. For better organization, you can create subdirectories within static, such as static/css, static/js, and static/img.

Accessing Static Files in Templates: To reference static files within your HTML templates, use the url_for() function with the static endpoint and the filename argument.

18.   What is an API specification, and how does it help in building a Flask API?


-   An API specification is a formal, machine-readable document that describes the structure and behavior of an Application Programming Interface (API). It acts as a contract between the API provider and consumers, detailing aspects such as:


• Endpoints: The specific URLs accessible through the API (e.g., /users, /products).

• Operations: The HTTP methods supported for each endpoint (e.g., GET, POST, PUT, DELETE).

• Parameters: The input data required for each operation, including their types, formats, and whether they are optional or required.

• Responses: The expected output data for each operation, including status codes and data schemas.

• Authentication and Security: How users or applications can authenticate and authorize themselves to access the API.

• Data Models: The structure of data exchanged through the API.

The OpenAPI Specification (formerly Swagger Specification) is a widely adopted standard for defining RESTful APIs.
How an API Specification Helps in Building a Flask API:


• Clear Design and Planning: Before writing any code, the specification forces a clear and comprehensive design of the API's functionality, preventing inconsistencies and ambiguities.

• Automated Documentation: Tools can generate interactive API documentation directly from the specification, making it easy for developers to understand and consume the API.

• Code Generation: Some tools can automatically generate server-side code (stubs or boilerplate) based on the specification, accelerating the development process in Flask.

• Client Library Generation: Client-side libraries can also be generated from the specification, simplifying the consumption of the Flask API by other applications.

• Testing and Validation: The specification provides a clear basis for testing the API's adherence to its defined behavior, ensuring consistency and correctness.

• Collaboration: It serves as a single source of truth for all stakeholders (developers, testers, product managers), fostering better communication and collaboration during the Flask API development.

• Consistency and Standardization: By adhering to a specification, the Flask API becomes more consistent in its design and easier to integrate with other systems.

19.   What are HTTP status codes, and why are they important in a Flask API?


-     HTTP status codes are three-digit numbers returned by a server in response to a client's HTTP request, indicating the outcome of that request. They are a fundamental part of the HTTP protocol, providing a standardized way for the server to communicate with the client. These codes are grouped into five classes based on their first digit:

1xx Informational: The request was received, continuing process.

2xx Success: The request was successfully received, understood, and accepted. (e.g., 200 OK, 201 Created)

3xx Redirection: Further action needs to be taken to complete the request. (e.g., 301 Moved Permanently, 304 Not Modified)

4xx Client Error: The request contains bad syntax or cannot be fulfilled due to a client-side issue. (e.g., 400 Bad Request, 404 Not Found, 403 Forbidden)

5xx Server Error: The server failed to fulfill an apparently valid request due to a server-side issue. (e.g., 500 Internal Server Error, 503 Service Unavailable)

Importance in a Flask API:

HTTP status codes are crucial in a Flask API for several reasons:

Clear Communication: They provide a standardized and unambiguous way for your API to communicate the result of an operation to the client. This allows clients (e.g., web browsers, other applications) to understand whether a request was successful, if there was a client-side error, or if a server-side issue occurred.

Error Handling: Status codes enable effective error handling. By returning appropriate 4xx codes for client errors (e.g., invalid input, unauthorized access) and 5xx codes for server errors, you guide clients on how to respond to issues. Flask allows you to define custom error handlers for specific status codes using the @app.errorhandler decorator.

API Design Consistency: Using standard HTTP status codes promotes consistency in your API design, making it easier for developers to understand and interact with your API.

Client-Side Logic: Clients can use status codes to implement specific logic. For example, a client might retry a request if it receives a 503 (Service Unavailable) or prompt the user for re-authentication if it receives a 401 (Unauthorized).

Debugging and Monitoring: Status codes are invaluable for debugging and monitoring your API. When an issue arises, the status code immediately indicates the type of problem, helping developers quickly pinpoint and resolve errors.

Example in Flask:

In [None]:
from flask import Flask, jsonify, abort

app = Flask(__name__)

@app.route('/resource/<int:resource_id>', methods=['GET'])
def get_resource(resource_id):
    if resource_id == 123:
        return jsonify({"id": 123, "name": "Example Resource"}), 200  # Success
    else:
        abort(404, description="Resource not found")  # Client error

@app.errorhandler(404)
def not_found_error(error):
    return jsonify({"error": error.description}), 404

if __name__ == '__main__':
    app.run(debug=True)

20.   How do you handle POST requests in Flask?

-     Handling POST requests in Flask involves defining a route that specifically accepts the POST method and then accessing the data sent in the request.

1. Define a Route for POST Requests:

Use the @app.route() decorator and specify methods=['POST'] (or methods=['GET', 'POST'] if the same route handles both) to indicate that the route function should handle POST requests.

In [None]:
from flask import Flask, request, redirect, url_for

app = Flask(__name__)

@app.route('/submit_form', methods=['POST'])
def submit_form():
    # ... handle POST request data here ...
    return "Form submitted successfully!"

 Accessing POST Data:

The request object, imported from flask, provides access to the incoming request data. The method used to access data depends on how it was sent in the POST request:

Form Data (e.g., from an HTML form):

Use request.form to access data sent as application/x-www-form-urlencoded or multipart/form-data. request.form is an immutable dictionary-like object where keys are the name attributes of your HTML form fields.

In [None]:
    @app.route('/submit_form', methods=['POST'])
    def submit_form():
        username = request.form['username']
        password = request.form['password']
        # Process username and password
        return f"Username: {username}, Password: {password}"

JSON Data (e.g., from an API call):

Use request.get_json() to parse and retrieve JSON data sent in the request body with a Content-Type header of application/json.

In [None]:
    @app.route('/api/data', methods=['POST'])
    def receive_json_data():
        data = request.get_json()
        if data:
            item_name = data.get('name')
            item_value = data.get('value')
            # Process item_name and item_value
            return {"message": "Data received", "name": item_name}, 200
        return {"error": "Invalid JSON"}, 400

files.

Use request.files to access uploaded files

In [None]:
    @app.route('/upload_file', methods=['POST'])
    def upload_file():
        if 'file' in request.files:
            file = request.files['file']
            # Save or process the file
            file.save(f"uploads/{file.filename}")
            return "File uploaded successfully!"
        return "No file provided", 400

Processing and Responding:

After accessing the data, you can perform necessary operations (e.g., saving to a database, performing calculations). Finally, return an appropriate response, which could be:

A simple success message.

A redirect to another page using redirect(url_for('some_route')).

JSON data for API endpoints.

An HTTP status code to indicate success or failure (e.g., 200 OK, 201 Created, 400 Bad Request).


21.  How would you secure a Flask API?


-    Securing a Flask API involves implementing various measures to protect against unauthorized access, data breaches, and other vulnerabilities. Key aspects of securing a Flask API include:

. Authentication and Authorization:

Token-based Authentication (e.g., JWT): This is a common and recommended approach. After a user logs in, a JSON Web Token (JWT) is issued. This token is then sent with each subsequent API request in the Authorization header. The API validates the token's signature and expiration to ensure authenticity and prevent tampering. Libraries like Flask-JWT-Extended simplify this.

API Keys: For specific use cases, API keys can be used for authentication. These are unique, secret keys provided to authorized clients, typically sent in request headers.

Basic Authentication: While simpler, Basic Authentication (sending username and password in each request, often base64 encoded) is less secure than token-based methods and should generally be avoided for public-facing APIs without HTTPS.

Role-Based Access Control (RBAC): Implement roles and permissions to control which users or clients can access specific API endpoints or perform certain actions.

. Data Protection:

HTTPS/SSL/TLS: Always use HTTPS to encrypt data in transit between the client and the API, protecting against eavesdropping and man-in-the-middle attacks.

Data Encryption at Rest: If sensitive data is stored in a database or other storage, ensure it is encrypted at rest.

Secure Secret Key Management: Use a strong, randomly generated secret key for your Flask application and store it securely, ideally in environment variables or an encrypted configuration file, not directly in your codebase.

. Input Validation and Sanitization:

Validate all inputs: Ensure that incoming data conforms to expected types, formats, and constraints to prevent injection attacks (SQL injection, XSS) and other vulnerabilities.

Sanitize user-generated content: Remove or escape potentially malicious characters from user inputs before processing or displaying them.

. Error Handling and Logging:

Secure Error Handling: Avoid revealing sensitive information in error messages (e.g., stack traces, database details). Provide generic error messages to clients.

Comprehensive Logging: Log API access, authentication attempts, and any security-related events to detect and investigate potential breaches.

. Additional Security Measures:

CORS (Cross-Origin Resource Sharing): Properly configure CORS headers to control which origins are allowed to access your API, preventing unauthorized cross-origin requests.

Rate Limiting: Implement rate limiting to prevent brute-force attacks and denial-of-service (DoS) attacks by restricting the number of requests a client can make within a given timeframe.

Security Headers: Utilize security-enhancing HTTP headers like Content-Security-Policy, X-Content-Type-Options, and Strict-Transport-Security.

Dependencies and Updates: Regularly update Flask and its dependencies to benefit from security patches and fixes.

Security Audits and Testing: Conduct regular security audits, penetration testing, and vulnerability scanning to identify and address weaknesses.


22.  What is the significance of the Flask-RESTful extension?

-    Flask-RESTful simplifies and accelerates REST API development on top of the Flask framework by providing tools for defining API resources, handling requests (like GET, POST, PATCH, and DELETE), automatically parsing and formatting responses (often in JSON), and managing errors, leading to cleaner, more structured, and efficient API code. It encourages best practices and object-oriented design, making it an ideal choice for building robust APIs with minimal boilerplate.

Key Aspects of Flask-RESTful's Significance

Simplified API Development:

Flask-RESTful provides abstractions and tools that streamline the creation of REST APIs, allowing developers to focus on the core logic of their API rather than the intricate details of HTTP requests and responses.

Object-Oriented Approach:

It utilizes classes to define API resources, making the code more organized, reusable, and maintainable, which is similar to the structure of frameworks like the Django REST Framework.

Built-in Request Parsing:

The extension offers automatic request parsing, simplifying the process of extracting and validating data from incoming requests.

Automatic Response Formatting:

Flask-RESTful handles the formatting of responses, often converting data into standard JSON format, which is essential for web APIs.

Structured Resource Management:

It introduces a "resource" concept, allowing developers to define different API endpoints and their associated HTTP methods (GET, POST, PUT, DELETE) in a clear and modular way.

Encourages Best Practices:

By providing a framework for API development, Flask-RESTful guides developers to follow RESTful principles and best practices from the start.

Minimal Boilerplate Code:

Developers can create functional APIs with less code compared to using plain Flask, thanks to the added features and abstractions.

Integration with Other Libraries:

Flask-RESTful is designed to work seamlessly with other libraries, including object-relational mappers (ORMs), allowing for easier integration of databases into the API.


23.   What is the role of Flask’s session object?

-     
Flask's session object is used to store and retrieve user-specific data across multiple HTTP requests, allowing web applications to maintain state between different pages or actions. It functions as a server-side dictionary where data is cryptographically signed and stored in a cookie on the user's browser, allowing the server to identify and retrieve the data on subsequent requests using a unique session ID. This enables features like user authentication, shopping carts, and storing user preferences.

How it Works

Session ID Generation: When a user first accesses your Flask application, a unique session ID is generated.

Cookie Creation: This session ID is stored in a cryptographically signed cookie on the user's browser.

Subsequent Requests: For all subsequent requests from that user, the browser automatically sends the signed session cookie back to the server.

Data Retrieval: The server uses the session ID from the cookie to retrieve the corresponding session data, which is stored on the server.

Data Persistence: The session object, which behaves like a Python dictionary, allows you to add, delete, and retrieve data, making it persistent for the duration of the session.

Key Characteristics

Dictionary-like Interface:

You interact with the session object using simple dictionary syntax, such as session['username'] = 'Alice'.

Signed Cookies:

Flask uses a SECRET_KEY to sign the session cookie, encrypting its content to prevent users from reading or modifying it.

Server-Side Storage:

While a unique ID is stored on the client, the actual session data is stored on the server.

Common Use Cases

User Authentication:

To track whether a user is logged in and store their username or role.

Shopping Carts:

To store items a user has added to their cart across different pages of an e-commerce site.

User Preferences:

To store user settings, such as their preferred language or display options.

Form Data:

To preserve data a user entered into a form even after they navigate to a different page.

#   Practical

1.  How do you create a basic Flask application?

-  

In [None]:
python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate

In [None]:
pip install Flask

In [None]:
from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello_world():
    return 'Hello, World!'

if __name__ == '__main__':
    app.run(debug=True)

In [None]:
python app.py

2.   How do you serve static files like images or CSS in Flask?

-    

In [None]:
your_project/
│
├── app.py
├── static/
│   ├── style.css
│   └── images/
│       └── logo.png
└── templates/
    └── index.html

In [None]:
<!-- templates/index.html -->
<!DOCTYPE html>
<html>
<head>
    <title>Flask Static Demo</title>
    <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
</head>
<body>
    <h1>Welcome, Aarush!</h1>
    <img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
</body>
</html>

In [None]:
# app.py
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

3.   How do you define different routes with different HTTP methods in Flask?

-

In [None]:
@app.route('/submit', methods=['GET'])
def show_form():
    return 'Form goes here'

@app.route('/submit', methods=['POST'])
def process_form():
    data = request.form.get('name')
    return f'Hello, {data}!'

4.   How do you render HTML templates in Flask?

-

In [None]:
/your_project
│
├── app.py
├── /templates
│   └── index.html

In [None]:
<!DOCTYPE html>
<html>
<head>
    <title>Welcome</title>
</head>
<body>
    <h1>Hello, {{ name }}!</h1>
</body>
</html>

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html', name='Aarush')

In [None]:
@app.route('/stats')
def stats():
    player = {
        'name': 'Aryan Sikarwar',
        'runs': 87,
        'wickets': 3
    }
    return render_template('stats.html', player=player)

In [None]:
<h2>{{ player.name }}'s Match Stats</h2>
<p>Runs: {{ player.runs }}</p>
<p>Wickets: {{ player.wickets }}</p>

5.   How can you generate URLs for routes in Flask using url_for?

-

In [None]:
@app.route('/profile')
def show_profile():
    return "This is the profile page"

In [None]:
url_for('show_profile')  # Returns '/profile'

In [None]:
@app.route('/user/<username>')
def user_profile(username):
    return f"User: {username}"

In [None]:
url_for('user_profile', username='AryanSikarwar')  # Returns '/user/AryanSikarwar'

In [None]:
url_for('static', filename='style.css')  # Returns '/static/style.css'

In [None]:
<a href="{{ url_for('user_profile', username='Aarush') }}">Visit Profile</a>

In [None]:
<a href="/user/Aarush">Visit Profile</a>

6.  How do you handle forms in Flask?

-

In [None]:
<form method="POST" action="/submit">
  <label for="name">Name:</label>
  <input type="text" name="name" id="name">
  <input type="submit" value="Submit">
</form>

In [None]:
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/')
def form():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form['name']
    return f"Hello, {name}!"

In [None]:
pip install flask-wtf

In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired

class NameForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired()])
    submit = SubmitField('Submit')

In [None]:
app.config['SECRET_KEY'] = 'your_secret_key'

@app.route('/', methods=['GET', 'POST'])
def index():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

In [None]:
<form method="POST">
  {{ form.hidden_tag() }}
  {{ form.name.label }} {{ form.name() }}
  {{ form.submit() }}
</form>

In [None]:
class MatchForm(FlaskForm):
    runs = StringField('Runs')
    wickets = StringField('Wickets')
    submit = SubmitField('Save')

7.  How can you validate form data in Flask?

-

In [None]:
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/', methods=['GET', 'POST'])
def index():
    error = None
    if request.method == 'POST':
        name = request.form.get('name')
        if not name or len(name) < 3:
            error = "Name must be at least 3 characters long."
        else:
            return f"Hello, {name}!"
    return render_template('form.html', error=error)

In [None]:
<form method="POST">
  <input type="text" name="name">
  <input type="submit" value="Submit">
  {% if error %}
    <p style="color:red;">{{ error }}</p>
  {% endif %}
</form>

In [None]:
pip install flask-wtf

In [None]:
from flask_wtf import FlaskForm
from wtforms import StringField, SubmitField
from wtforms.validators import DataRequired, Length

class NameForm(FlaskForm):
    name = StringField('Name', validators=[DataRequired(), Length(min=3)])
    submit = SubmitField('Submit')

In [None]:
app.config['SECRET_KEY'] = 'your_secret_key'

@app.route('/', methods=['GET', 'POST'])
def index():
    form = NameForm()
    if form.validate_on_submit():
        return f"Hello, {form.name.data}!"
    return render_template('form.html', form=form)

In [None]:
<form method="POST">
  {{ form.hidden_tag() }}
  {{ form.name.label }} {{ form.name() }}
  {% for error in form.name.errors %}
    <p style="color:red;">{{ error }}</p>
  {% endfor %}
  {{ form.submit() }}
</form>

In [None]:
from wtforms.validators import NumberRange

runs = IntegerField('Runs', validators=[DataRequired(), NumberRange(min=0)])
wickets = IntegerField('Wickets', validators=[DataRequired(), NumberRange(min=0, max=10)])

8.  How do you manage sessions in Flask?

-

In [None]:
from flask import Flask, session

app = Flask(__name__)
app.secret_key = 'your_secret_key'  # Keep this secret!

In [None]:
@app.route('/login')
def login():
    session['username'] = 'Aarush'
    return 'Logged in as Aarush'

In [None]:
@app.route('/profile')
def profile():
    username = session.get('username')
    if username:
        return f'Welcome back, {username}!'
    return 'You are not logged in.'

In [None]:
@app.route('/logout')
def logout():
    session.pop('username', None)
    return 'Logged out'

In [None]:
session['match'] = {'runs': 87, 'wickets': 3}

In [None]:
match = session.get('match')
if match:
    print(f"Runs: {match['runs']}, Wickets: {match['wickets']}")

9. How do you redirect to a different route in Flask?

-

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('home'))

@app.route('/home')
def home():
    return "Welcome to the Home Page"

In [None]:
@app.route('/go-to-profile/<username>')
def go_to_profile(username):
    return redirect(url_for('profile', username=username))

@app.route('/profile/<username>')
def profile(username):
    return f"Welcome, {username}!"

In [None]:
@app.route('/submit', methods=['POST'])
def submit():
    # process form data...
    return redirect(url_for('thank_you'))

@app.route('/thank-you')
def thank_you():
    return "Thanks for submitting your match stats!"

10.  How do you handle errors in Flask (e.g., 404)?

-

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.errorhandler(404)
def page_not_found(e):
    return render_template('404.html'), 404

@app.errorhandler(500)
def internal_error(e):
    return render_template('500.html'), 500

In [None]:
<!DOCTYPE html>
<html>
<head><title>Page Not Found</title></head>
<body>
  <h1>Oops! Page not found.</h1>
  <p>The page you're looking for doesn't exist.</p>
  <a href="{{ url_for('index') }}">Go back home</a>
</body>
</html>

In [None]:
import logging

logging.basicConfig(filename='error.log', level=logging.ERROR)

@app.errorhandler(500)
def internal_error(e):
    logging.error(f"Server error: {e}")
    return render_template('500.html'), 500

In [None]:
from flask import abort

@app.route('/player/<int:id>')
def player_profile(id):
    player = get_player_by_id(id)
    if not player:
        abort(404)
    return render_template('profile.html', player=player)

11.  How do you structure a Flask app using Blueprints?

-

In [None]:
/myapp
│
├── app.py
├── /templates
│   └── base.html
├── /static
│   └── style.css
├── /auth
│   ├── __init__.py
│   ├── routes.py
│   └── templates/
│       └── login.html
├── /cricket
│   ├── __init__.py
│   ├── routes.py
│   └── templates/
│       └── stats.html

In [None]:
from flask import Blueprint, render_template

auth_bp = Blueprint('auth', __name__, template_folder='templates')

@auth_bp.route('/login')
def login():
    return render_template('login.html')

In [None]:
from .routes import auth_bp

In [None]:
from flask import Flask
from auth import auth_bp
from cricket import cricket_bp  # if you have another module

app = Flask(__name__)
app.register_blueprint(auth_bp, url_prefix='/auth')
app.register_blueprint(cricket_bp, url_prefix='/cricket')

In [None]:
from flask import Blueprint, render_template

cricket_bp = Blueprint('cricket', __name__, template_folder='templates')

@cricket_bp.route('/stats')
def stats():
    return render_template('stats.html', player={'name': 'Aryan', 'runs': 87, 'wickets': 3})

12.   How do you define a custom Jinja filter in Flask?

-

In [None]:
def reverse_string(s):
    return s[::-1]

In [None]:
from flask import Flask

app = Flask(__name__)

# Register the filter
app.jinja_env.filters['reverse'] = reverse_string

In [None]:
<p>Original: {{ "Aryan" }}</p>
<p>Reversed: {{ "Aryan" | reverse }}</p>

In [None]:
def strike_rate(runs, balls):
    try:
        return round((runs / balls) * 100, 2)
    except ZeroDivisionError:
        return 0

In [None]:
def format_strike_rate(player):
    return strike_rate(player['runs'], player['balls'])

app.jinja_env.filters['strike_rate'] = format_strike_rate

In [None]:
<p>Strike Rate: {{ player | strike_rate }}</p>

13.  How can you redirect with query parameters in Flask?

-

In [None]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/')
def index():
    return redirect(url_for('stats', player='Aryan', match_id=42))

In [None]:
/stats?player=Aryan&match_id=42

In [None]:
@app.route('/stats')
def stats():
    player = request.args.get('player')
    match_id = request.args.get('match_id')
    return f"Stats for {player}, Match ID: {match_id}"

In [None]:
@app.route('/match-summary')
def match_summary():
    return redirect(url_for('player_stats', name='Aarush', runs=87, wickets=3))

@app.route('/player-stats')
def player_stats():
    name = request.args.get('name')
    runs = request.args.get('runs')
    wickets = request.args.get('wickets')
    return f"{name} scored {runs} runs and took {wickets} wickets."

14.  How do you return JSON responses in Flask?

-

In [None]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/api/data')
def get_data():
    return jsonify({'name': 'Aarush', 'score': 87})

In [None]:
@app.route('/api/match')
def match():
    return jsonify({
        'player': 'Aryan Sikarwar',
        'stats': {
            'runs': 87,
            'wickets': 3
        },
        'status': 'completed'
    })

In [None]:
from flask import Response
import json

@app.route('/custom')
def custom():
    data = {'message': 'Custom JSON'}
    return Response(json.dumps(data), mimetype='application/json')

In [None]:
@app.route('/api/player/<name>')
def player_stats(name):
    stats = {
        'name': name,
        'matches': 5,
        'total_runs': 342,
        'average': round(342 / 5, 2)
    }
    return jsonify(stats)

15.  How do you capture URL parameters in Flask?

-

In [None]:
@app.route('/player/<name>')
def show_player(name):
    return f"Player name: {name}"

In [None]:
@app.route('/match/<int:match_id>')
def show_match(match_id):
    return f"Match ID: {match_id}"

In [None]:
@app.route('/stats/<player>/<int:runs>/<int:wickets>')
def stats(player, runs, wickets):
    return f"{player} scored {runs} runs and took {wickets} wickets."

In [None]:
@app.route('/summary/<player>')
@app.route('/summary/<player>/<int:match_id>')
def summary(player, match_id=None):
    if match_id:
        return f"{player}'s summary for match {match_id}"
    return f"{player}'s overall summary"