# **Therory Question**

1. **What is a RESTful API?**
- A RESTful API (Representational State Transfer Application Programming Interface) is a web service that follows REST principles to enable communication between different systems. It provides a standardized way to structure and interact with data over the internet.
- By adhering to REST principles, RESTful APIs provide a robust, scalable, and efficient way for systems to interact.

2. **Explain the concept of API specification**.
- An API specification is a detailed, standardized description of how a software system or application communicates with other systems, defining the structure and behavior of an Application Programming Interface (API). It acts as a contract between the API provider and consumers, clearly outlining how developers can use the API to interact with specific services or data.
- An API specification is a detailed, standardized description of how a software system or application communicates with other systems, defining the structure and behavior of an Application Programming Interface (API). It acts as a contract between the API provider and consumers, clearly outlining how developers can use the API to interact with specific services or data.


3. **What is Flask, and why is it popular for building APIs?**
- Flask is a lightweight and flexible web framework in Python that is widely used for building web applications and APIs (Application Programming Interfaces). It is classified as a "micro-framework" because it provides essential tools and features for web development without including unnecessary components or forcing a specific structure.
- It is popular for building APIs because:
  - Flask's minimal design makes it easy to get started with creating simple APIs quickly.
  - Developers have full control over the components and architecture, allowing them to build highly customized APIs.
  - Flask's simplicity and extensibility make it ideal for building RESTful APIs, enabling efficient communication between clients and servers.
  - Flask leverages Python's robust ecosystem, making it easy to integrate with libraries for data analysis, machine learning, or other advanced features.
  - Due to its minimalistic approach, Flask is highly performant for small-to-medium-sized applications.
  - The availability of Flask extensions (e.g., Flask-RESTful, Flask-JWT) simplifies the process of adding features like authentication, database support, and API documentation.
  - Flask has a vibrant and supportive community, ensuring plenty of learning resources and troubleshooting help.

4. **What is routing in Flask?**
- Routing in Flask refers to the process of mapping URLs (Uniform Resource Locators) to specific functions in your Python application. This allows you to define the behavior of your application based on the requested URL, enabling Flask to serve content or perform specific operations.

5. **How do you create a simple Flask application?**
- Folowing are the steps for creating a Flask application:
  - Ensure Python is installed on your system. Flask requires Python (3.x is recommended).
  - Install Flask using pip
  - Create a folder for your project and navigate into it.
  - Create a file named  (or any other name you prefer) and write the following code:

In [None]:
from flask import Flask

# Initialize the Flask application
app = Flask(__name__)

# Define a route for the homepage
@app.route('/')
def home():
    return "Welcome to your first Flask app!"

# Run the Flask app
if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


- Open a terminal or command prompt, navigate to the project folder, and execute the following command:
  - python app.py

6. **What are HTTP methods used in RESTful APIs?**
- In RESTful APIs, HTTP methods are used to perform actions on resources. They represent the operations that clients can perform on the server. Here are the most commonly used methods:
  - GET: Retrieve data or a resource from the server.
  - POST: Create a new resource on the server.
  - PUT: Update an existing resource, often by replacing it entirely.
  - PATCH: Modify an existing resource, often partially.
  - DELETE: Remove a resource from the server.
  - OPTIONS: Describe the communication options available for a resource.
  - HEAD: Retrieve metadata about a resource without fetching the resource itself.

7. **What is the purpose of the @app.route() decorator in Flask?**
- The  decorator in Flask serves the critical purpose of defining routes for your web application. It maps specific URLs to functions in your code, allowing Flask to respond to incoming requests based on the requested URL.

8. **What is the difference between GET and POST HTTP methods?**
- GET Method:
  - It is a read-only operation and does not modify the server's data.
  - Data is appended to the URL as query parameters (e.g., ), making the request visible in the address bar.
  - Safe and idempotent
- POST Method:
  - The data is sent in the request body, not appended to the URL, making it more secure for sensitive information.
  - Not safe: Modifies server state (e.g., creates new data).
  - Not idempotent: Multiple identical POST requests can result in multiple resources being created (e.g., duplicate entries).
  - No size limit on the data being sent (within server capability).

9. **How do you handle errors in Flask APIs?**
- In Flask APIs, error handling ensures clear communication with clients and maintains application stability. It involves:
  - Returning Meaningful Status Codes (e.g., 400 for bad requests, 404 for missing resources, 500 for server errors).
  - Using Custom Error Handlers to define global responses for specific errors.
  - Validating User Input to catch errors early with descriptive error messages.
  - Consistent JSON Error Responses, ensuring structured and readable feedback.
  - Logging Errors for debugging while avoiding exposure of sensitive information
  - Using Flask-RESTful extensions for standardized error handling.

10. **How do you connect Flask to a SQL database?**
- Steps to Connect Flask to a SQL Database:
  - Install Flask-SQLAlchemy (a popular ORM) via pip.
  - Install the database driver, depending on the SQL database you're using:
    - SQLite
    - MySQL
    - PostgreSQL
  - Set up the database URI in your Flask app’s configuration.
  - Create Python classes that represent database tables (known as models).
  - Use SQLAlchemy to create tables from your models.
  - Add, retrieve, update, and delete records in the database.
  - Run your Flask app and test database interactions using the defined endpoints.

11. **What is the role of Flask-SQLAlchemy?**
- Flask-SQLAlchemy is an extension for Flask that integrates SQLAlchemy, a popular Object Relational Mapper (ORM), with Flask applications. Its primary role is to simplify database management and interaction within Flask apps by providing a seamless interface between Python objects and relational databases.

12. **What are Flask blueprints, and how are they useful?**
- Flask Blueprints are a feature in Flask that allow you to organize and structure your application into smaller, modular components. Blueprints are essentially reusable application segments that can contain routes, templates, static files, and other functionality. They help manage complex Flask applications by dividing them into logical sections.
- Benefits:
  - Helps keep route definitions and logic grouped together for better project structure.
  - Facilitates the development of large-scale applications by modularizing functionality.
  - Allows reusing blueprints across multiple apps, reducing redundant code.
  - Keeps related files and logic grouped, making debugging and testing easier.

13. **What is the purpose of Flask's request object?**
- The  object in Flask plays a crucial role in handling incoming HTTP requests. It provides all the information sent by the client to the server, including data like headers, form inputs, query parameters, cookies, and files. Developers use the  object to access and process the details of each request.

14. **How do you create a RESTful API endpoint using Flask?**
- Steps:
  - Make sure Flask is installed in your environment.
  - Create a file (e.g., ) and initialize a Flask application.
  - Use Flask's  decorator to define your endpoint and specify the HTTP method(s).
  - Define additional methods for creating, updating, and deleting items.
  - Add the following code to run your app.
  - Test Your API:
    - Start the server (), then test the API endpoints using tools like:
      - Postman: Send GET, POST, PUT, or DELETE requests.
      - Curl: Use command-line HTTP requests.

15. **What is the purpose of Flask's jsonify() function?**
- The  function in Flask is used to convert Python data structures (such as dictionaries or lists) into JSON (JavaScript Object Notation) format and create a Flask  object. This is essential for building APIs, as JSON is the standard format for exchanging data between a server and a client.

16. **Explain Flask’s url_for() function.**
- The  function in Flask is a utility that dynamically generates URLs for specific routes defined in your application. Instead of hardcoding URLs directly,  builds them based on the route’s function name and optional arguments, ensuring flexibility and maintainability.


17. **How does Flask handle static files (CSS, Javascript, etc.)?**
- Flask handles static files such as CSS, JavaScript, and images by serving them from a designated static directory in your Flask project. These files are used to enhance the frontend of your web application and can be accessed directly by clients.
- Flask Handles Static Files:
  - By default, Flask looks for static files in a folder named , located at the root of your project directory.
  - Flask makes static files available via the  URL path.
  - Use Flask's  function to dynamically generate the URL for static files in your templates. This ensures that your application remains maintainable and works even if file paths change.
  - If you want to use a different directory for static files, you can specify it when initializing the Flask app.

18. **What is an API specification, and how does it help in building a Flask API?**
- An API specification is a detailed, standardized description of how an API behaves, including its endpoints, data formats, methods, authentication, and other critical features. It acts as a blueprint, offering developers clear instructions on how to interact with the API. In the context of building a Flask API, an API specification can serve as a guideline to design, implement, and document the API effectively.
- An API Specification Helps in Building a Flask API by:
  - An API specification provides a roadmap for designing routes, methods, and responses in Flask, ensuring the API aligns with intended behavior.
  - Helps maintain consistency across endpoints, making the API user-friendly and predictable.
  - Acts as a shared contract between backend developers, frontend developers, and other stakeholders, avoiding misunderstandings during implementation.
  - Tools like Swagger (OpenAPI) or Postman can generate interactive API documentation and test scripts directly from the specification.
  - A detailed API specification outlines expected behaviors, making it easier to test endpoints and identify issues.
  - Serves as a base for extending the API as new features or endpoints are added.

19. **What are HTTP status codes, and why are they important in a Flask API?**
- HTTP status codes are standardized numerical responses sent by a server to indicate the result of a client's HTTP request. They help communicate whether a request was successful, encountered an error, or requires further action. Status codes are essential in Flask APIs to inform clients about the outcome of their interactions with the server.
- HTTP Status Codes are Important in Flask APIs because:
  - Status codes provide concise, standardized feedback to clients about the outcome of their requests, improving communication.
  - Enables API developers to inform clients about specific issues (e.g., invalid input, resource not found), allowing clients to respond accordingly.
  - Help developers diagnose issues by providing clarity on whether errors originate from the client or the server.
  - Returning appropriate status codes ensures the API adheres to REST principles, enhancing reliability and usability.
  - By using meaningful status codes, the API can guide users to resolve issues (e.g.,  for bad inputs,  for authentication).

20. **How do you handle POST requests in Flask?**
- To handle POST requests in Flask:
  - Route Definition: Use  and specify
  - Access Request Data: Utilize the  object to retrieve.
  - Validation: Check for required data and formats to prevent errors.
  - Respond to Clients: Use  to return structured JSON responses with appropriate HTTP status codes.

21. **How would you secure a Flask API?**
- Always serve your API over HTTPS to encrypt data in transit and prevent man-in-the-middle attacks.
- Validate all incoming data to prevent SQL injection, XSS, and other malicious attacks.
- Implement authentication mechanisms such as:
  - API keys
  -  OAuth2
  - JSON Web Tokens (JWT)
- Restrict access based on roles or user permissions.
- Use tokens like CSRF tokens to secure POST, PUT, and DELETE requests. and so on

22. **What is the significance of the Flask-RESTful extension?**
- Flask-RESTful simplifies the process of building RESTful APIs by providing tools for:
- Resources are represented as classes, with HTTP methods defined as methods.
- Routes are linked to resources using the  object for better organization.
- Ensures consistent responses with features like .
- The  module helps validate and extract request data.
- Promotes adherence to RESTful principles, improving API design.
- Ideal for structuring and scaling complex APIs.

23. **What is the role of Flask’s session object?**
- Flask's  object manages user-specific data across multiple requests. Key points include:
  - Stores persistent data like authentication status or preferences.
  - Uses server-side storage with client-side session identifiers (cookies) protected by cryptographic signing.
  - Allows storing (), retrieving (), and clearing ( or ) data.
  - Facilitates login systems and personalized user experiences.

# **Practical Questions**

1. How do you create a basic Flask application?

In [None]:
from flask import Flask

# Initialize the Flask application
app = Flask(__name__)

# Define a route for the homepage
@app.route('/')
def home():
    return "Welcome to your first Flask app!"

# Run the Flask app
if __name__ == '__main__':
    app.run(debug=True)

 * Serving Flask app '__main__'
 * Debug mode: on


 * Running on http://127.0.0.1:5000
INFO:werkzeug:[33mPress CTRL+C to quit[0m
INFO:werkzeug: * Restarting with stat


2. How do you serve static files like images or CSS in Flask?

In [None]:
# In html file, we call all the images/ css files after storing on the static folder
# <!DOCTYPE html>
# <html>
# <head>
#     <link rel="stylesheet" href="{{ url_for('static', filename='styles.css') }}">
# </head>
# <body>
#     <h1>Hello, Flask!</h1>
#     <img src="{{ url_for('static', filename='images/logo.png') }}" alt="Logo">
#     <script src="{{ url_for('static', filename='script.js') }}"></script>
# </body>
# </html>

In [None]:
# now html file is stored in templates folder, and it is now called
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')

if __name__ == '__main__':
    app.run(debug=True)

3. How do you define different routes with different HTTP methods in Flask?

In [None]:
# Basic Route with a Single HTTP Method
from flask import Flask, request

app = Flask(__name__)

@app.route('/')
def home():
    return "This is a GET request"

In [None]:
# Route with Multiple HTTP Methods
@app.route('/submit', methods=['GET', 'POST'])
def submit():
    if request.method == 'POST':
        return "This is a POST request"
    else:
        return "This is a GET request"

In [None]:
# Routes for Specific HTTP Methods
@app.route('/update', methods=['PUT'])
def update():
    return "This is a PUT request"

@app.route('/delete', methods=['DELETE'])
def delete():
    return "This is a DELETE request"

In [None]:
# Handle Data in HTTP Methods
@app.route('/data', methods=['POST'])
def handle_data():
    data = request.json  # Parse JSON data from the request body
    return f"Data received: {data}", 200

4. How do you render HTML templates in Flask?

In [None]:
from flask import Flask, render_template

app = Flask(__name__)

@app.route('/')
def home():
    return render_template('index.html')# html file is rendered

if __name__ == '__main__':
    app.run(debug=True)

5. How can you generate URLs for routes in Flask using url_for?

In [None]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Homepage!"

@app.route('/about')
def about():
    return "About Us Page!"

# Generating URLs
with app.test_request_context():
    print(url_for('home'))
    print(url_for('about'))

6. How do you handle forms in Flask?

In [None]:
# Create an HTML Form
# <form action="/submit" method="POST">
#     <label for="name">Name:</label>
#     <input type="text" id="name" name="name" required>
#     <button type="submit">Submit</button>
# </form>

# Define a Route to Handle the Form Data
from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/form')
def form():
    return render_template('form.html')

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form['name']
    return f"Hello, {name}!"

7. How can you validate form data in Flask?

In [None]:
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/submit', methods=['POST'])
def submit():
    name = request.form.get('name')
    email = request.form.get('email')


    if not name or not email:
        return jsonify({"error": "Name and email are required"}), 400
    if "@" not in email:
        return jsonify({"error": "Invalid email format"}), 400

    return jsonify({"message": f"Welcome, {name}!"})

8. How do you manage sessions in Flask?

In [None]:
from flask import Flask, session, request, jsonify

app = Flask(__name__)


app.secret_key = 'your_secret_key'


@app.route('/set_session', methods=['POST'])
def set_session():
    username = request.json.get('username')
    if not username:
        return jsonify({"error": "Username is required"}), 400
    session['username'] = username
    return jsonify({"message": f"Session created for {username}!"}), 200


@app.route('/get_session', methods=['GET'])
def get_session():
    username = session.get('username')
    if not username:
        return jsonify({"error": "No active session"}), 404
    return jsonify({"username": username}), 200


@app.route('/clear_session', methods=['POST'])
def clear_session():
    session.clear()
    return jsonify({"message": "Session cleared successfully!"}), 200

if __name__ == '__main__':
    app.run(debug=True)

9. How do you redirect to a different route in Flask?

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)


@app.route('/')
def home():
    return "Welcome to the Home Page!"


@app.route('/about')
def about():
    return "This is the About Page!"


@app.route('/redirect-home')
def redirect_home():
    return redirect(url_for('home'))


@app.route('/redirect-about')
def redirect_about():
    return redirect(url_for('about'))


@app.route('/profile/<username>')
def profile(username):
    return f"Welcome to {username}'s Profile!"

@app.route('/redirect-to-profile')
def redirect_to_profile():
    return redirect(url_for('profile', username='Anuj'))

if __name__ == '__main__':
    app.run(debug=True)

10. How do you handle errors in Flask (e.g, 404)?

In [None]:
from flask import Flask, render_template, jsonify

app = Flask(__name__)


@app.route('/')
def home():
    return "Welcome to the Home Page!"


@app.route('/sample')
def sample():
    return "This is the Sample Page!"


@app.errorhandler(404)
def not_found_error(e):
    return jsonify({"error": "Page not found"}), 404


@app.errorhandler(500)
def internal_server_error(e):
    return jsonify({"error": "Internal Server Error occurred"}), 500

if __name__ == '__main__':
    app.run(debug=True)

11. How do you structure a Flask app using Blueprints?

In [None]:
from flask import Blueprint, render_template


user_bp = Blueprint('user_bp', __name__, template_folder='../templates')


@user_bp.route('/<username>')
def user_profile(username):
    return render_template('user.html', username=username)

12. How do you define a custom Jinja filter in Flask?

In [None]:
from flask import Flask, render_template

app = Flask(__name__)


@app.template_filter('reverse')
def reverse_string(value):
    """Reverses the given string."""
    return value[::-1]


@app.route('/')
def home():

    return render_template('example.html', message="Flask Filters")

if __name__ == '__main__':
    app.run(debug=True)

13. How can you redirect with query parameters in Flask?

In [None]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def home():
    return "Welcome to the Home Page!"

@app.route('/redirect')
def redirect_with_params():

    return redirect(url_for('home', q='Flask', page=1))

@app.route('/home')
def home_with_params():

    return "Welcome with parameters!"

14. How do you return JSON responses in Flask?

In [None]:
from flask import Flask, jsonify, request

app = Flask(__name__)


@app.route('/simple-json', methods=['GET'])
def simple_json():
    return jsonify({
        "message": "Hello, this is a JSON response!",
        "status": "success"
    })


@app.route('/greet', methods=['POST'])
def greet_user():
    data = request.json
    name = data.get('name', 'Guest')
    return jsonify({
        "message": f"Hello, {name}!",
        "status": "success"
    }), 200


@app.route('/error', methods=['GET'])
def error():
    return jsonify({
        "error": "Something went wrong",
        "code": 500
    }), 500

if __name__ == '__main__':
    app.run(debug=True)

15. How do you capture URL parameters in Flask?

In [None]:
from flask import Flask

app = Flask(__name__)

# Route with a dynamic URL parameter
@app.route('/user/<username>')
def user_profile(username):

    return f"Hello, {username}! Welcome to your profile."


@app.route('/product/<category>/<int:product_id>')
def product_details(category, product_id):

    return f"Category: {category}, Product ID: {product_id}"

if __name__ == '__main__':
    app.run(debug=True)