1. What is a Web API?


A Web API (Application Programming Interface) acts as a messenger between different applications or devices over the web. It's essentially a set of rules and specifications that allows applications to request and receive data from a web server or another web application.

2. How does a Web API differ from a web service?


Web API: A Web API (Application Programming Interface) is a set of rules and protocols for building and interacting with software applications. It allows different software systems to communicate with each other using HTTP requests and responses.
1. Lightweight, suitable for devices with limited bandwidth.
2. Use any communication protocol (e.g., HTTP).
3. Responses often in JSON format.
Examples: RESTful APIs.

Web Service: A Web Service is a standardized way of integrating web-based applications using open standards such as XML, SOAP (Simple Object Access Protocol), WSDL (Web Services Description Language), and UDDI (Universal Description, Discovery, and Integration).
1. Part of SOA (Services Oriented Architecture).
2. Responses in XML format.
Examples: SOAP-based services.

3. What are the benefits of using Web APIs in software development?


1. Enhanced User Experience: Web APIs allow integration of services like social media log-in options, geolocation, and weather forecasts, enhancing user experiences.
2. Reduced Development Time: APIs let developers leverage existing functionality, speeding up development by accessing external data and services.
3. Improved Adaptability: APIs facilitate modularity and scalability, enabling innovation by connecting different parts of an application.

4. Explain the difference between SOAP and RESTful APIs.


**SOAP (Simple Object Access Protocol):**

1. Structured and Standardized: SOAP follows a stricter set of rules and specifications. It uses XML for both data exchange and message formats, making it more heavyweight and complex.
2. Communication Protocol: Primarily relies on HTTP, but can potentially work with other protocols.
3. Focus: Primarily designed for machine-to-machine communication, often used in enterprise applications.

**RESTful (REpresentational State Transfer):**

1. Flexible and Lightweight: REST is a more lightweight and loosely coupled approach. It leverages HTTP methods (GET, POST, PUT, DELETE) for communication and supports various data formats like JSON, XML, or plain text.
2. Resource-Oriented: REST treats data as resources and focuses on how these resources are accessed and manipulated.
3. Focus: Well-suited for both machine-to-machine and web browser interactions, making it popular for modern web APIs.

5. What is JSON and how is it commonly used in Web APIs?


JSON (JavaScript Object Notation) is a lightweight and human-readable data format commonly used for exchanging information between applications in Web APIs.

**Uses**

   - **Data Exchange**: Web APIs often use JSON to format data responses between servers and clients.
   - **Front-End Consumption**: APIs return JSON-formatted data for easy consumption by front-end applications.
   - **Configuration Files**: JSON is used in web application configuration files due to its readability and ease of editing.
   - **Data Storage**: NoSQL databases like MongoDB use JSON for storing and exchanging data.


6. Can you name some popular Web API protocols other than REST?


1. REST (Representational State Transfer): Flexible and popular, like a casual conversation.
2. SOAP (Simple Object Access Protocol): Strict and standardized, like a formal letter.
3. GraphQL: Targeted data retrieval, gives you exactly what you ask for.
4. gRPC (Remote Procedure Call): Super fast for microservice communication.
5. WebSockets: Enables real-time, two-way communication for live updates.
6. MQTT (Message Queuing Telemetry Transport): Whispers data efficiently in M2M/IoT.

7. What role do HTTP methods (GET, POST, PUT, DELETE, etc.) play in Web API development?


1. GET: Used to retrieve data from a resource. It's essentially a request to "read" the data. (e.g., Getting a list of users from an API)
2. POST: Used to create a new resource on the server. It's like a request to "add" new data. (e.g., Creating a new user account)
3. PUT: Used to update an existing resource completely. It's like a request to "replace" the entire resource with new data. (e.g., Updating a user's profile information)
4. PATCH: Used to update a specific part of an existing resource. It's like a request to "partially modify" the resource. (e.g., Updating only the email address of a user)
5. DELETE: Used to delete a resource from the server. It's like a request to "remove" the data. (e.g., Deleting a user account)

8. What is the purpose of authentication and authorization in Web APIs?


1. Authentication: Authentication is the process of verifying the identity of a user or an application that makes a request to an API.
2. Authorization: Authorization determines what actions and resources an authenticated user is allowed to access based on their identity and roles.

9. How can you handle versioning in Web API development?


1. **URL-Based Versioning**: Include the version number in the URL (e.g., `/api/v1/resource`). It's straightforward but can clutter the URL.

2. **Query String-Based Versioning**: Specify the version using query parameters (e.g., `/api/resource?version=1`). Clear, but not as RESTful.

3. **Header-Based Versioning**: Use custom headers (e.g., `Accept-Version: 1`). Keeps URLs clean but requires client awareness.

4. **Content Type-Based Versioning**: Vary the response format based on the requested version (e.g., `Accept: application/vnd.myapi.v1+json`). Useful for media types.


10. What are the main components of an HTTP request and response in the context of Web APIs?


1. **HTTP Request:**
   - **Method (Verb):** Specifies the action to be performed (e.g., GET, POST, PUT, DELETE).
   - **URL (Uniform Resource Locator):** The address of the resource being accessed.
   - **Headers:** Additional metadata about the request (e.g., content type, authentication).
   - **Body (Optional):** Data sent to the server (e.g., form data, JSON payload).

2. **HTTP Response:**
   - **Status Code:** Indicates the outcome of the request (e.g., 200 OK, 404 Not Found).
   - **Headers:** Metadata about the response (e.g., content type, caching instructions).
   - **Body:** The actual content returned by the server (e.g., HTML, JSON).



11. Describe the concept of rate limiting in the context of Web APIs.


Rate limiting is a technique used in Web APIs to control the number of requests a user or application can make within a specific timeframe. It acts like a safeguard to prevent abuse and ensure smooth operation of the API.

12. How can you handle errors and exceptions in Web API responses?

1. **HTTP Status Codes**: Use appropriate status codes (e.g., 200, 400, 404, 500) to indicate the outcome of an API request.
2. **Error Payloads**: Include descriptive error payloads in the response body.
3. **Custom Messages**: Provide clear error messages without revealing sensitive information.
4. **Exception Handling**: Catch exceptions on the server side and map them to relevant status codes and payloads.
5. **Logging and Monitoring**: Log errors for debugging and monitoring.
6. **Retry Strategies**: Implement retries for transient errors.



 13. Explain the concept of statelessness in RESTful Web APIs.

Statelessness is a fundamental principle in RESTful (REpresentational State Transfer) Web APIs. It dictates that each request made by a client (application) to the server must be entirely independent and contain all the information necessary for processing. The server doesn't store any contextual information about the client's previous requests.

14. What are the best practices for designing and documenting Web APIs?


1. **Consistent Naming and Structure**: Use simple, descriptive URLs with nouns (plural for collections).
2. **JSON Format**: Accept and respond with JSON for ease of use.
3. **Graceful Error Handling**: Return standard error codes and descriptive error payloads.
4. **Security and Authentication**: Implement proper authentication and follow security best practices.
5. **Comprehensive Documentation**: Provide clear API documentation with examples.

15. What role do API keys and tokens play in securing Web APIs?


API keys and tokens play a role in Web API security. API keys provide basic access control, while tokens offer increased security with temporary credentials and granular permission control.

1. API Keys:

Function: Act as unique identifiers assigned to applications or projects that grant them access to an API.
Typical Use: Suitable for server-to-server communication or public APIs with limited access control needs.

2. Tokens:

Function: Temporary credentials issued after successful authentication (e.g., username/password login).
Typical Use: Ideal for user-based authentication and authorization in private APIs. They offer more granular control and limited access windows.


16. What is REST, and what are its key principles?


REST (REpresentational State Transfer) is an architectural style, not a specific technology, for designing Web APIs. It emphasizes a set of guidelines that promote simplicity, flexibility, and scalability for communication between applications. Here are the key principles of REST:

1. Client-Server Model: Clearly separates the roles of client (application making requests) and server (providing resources).
2. Statelessness: Each request from the client must contain all information necessary for processing. The server doesn't store conversation history.
3.  Uniform Interface: Uses a standardized interface for communication, relying on HTTP methods (GET, POST, PUT, DELETE) and resources identified by URIs.
4. Resource-Based: Focuses on resources (data entities) like users, products, or orders. Clients interact with these resources through the API.
5. HATEOAS (Hypermedia as the Engine of Application State): The server provides links within responses that guide clients on how to interact with other resources and discover further functionalities. (Imagine a website with navigation menus and links)

17. Explain the difference between RESTful APIs and traditional web services.


RESTful APIs:

Architectural Style: Follow a set of design principles (REST) for simplicity, flexibility, and scalability.
Focus on Resources: Centered around resources (data entities) like users, products, orders.
Standardized Interface: Use HTTP methods (GET, POST, PUT, DELETE) and URIs for clear communication.
Stateless: Each request is independent, server doesn't store conversation history.
Focus on Data: Designed primarily for data exchange and manipulation.
Traditional Web Services:

Technology Specific: Can use various communication protocols like SOAP, XML-RPC, or proprietary formats.
Focus on Functionality: May expose entire application functionalities, not just data.
Complex Contracts: Often require complex WSDL (Web Services Description Language) contracts defining interactions.
Stateful: Server might maintain session state for a series of interactions.
Focus on Actions: Designed for more than just data exchange, can invoke specific actions on the server.

18. What are the main HTTP methods used in RESTful architecture, and what are their purposes?


RESTful APIs use HTTP methods like verbs to tell the server what to do with data:

* GET: Read data (like getting a library book)
* POST: Create new data (like submitting a new document)
* PUT: Update all data (like replacing a book with a new edition)
* PATCH: Update specific parts of data (like editing a section of a book)
* DELETE: Remove data (like returning a library book)


19. Describe the concept of statelessness in RESTful APIs.


In RESTful APIs, statelessness means the server has no memory of past interactions with a client.  Each request from a client must be entirely self-contained, including all the information needed to be understood and processed by the server.  Imagine a restaurant where each order is independent - you tell the waiter what you want each time (data in request), and they fulfill your order without needing to remember what you had before (no stored state).

20. What is the significance of URIs (Uniform Resource Identifiers) in RESTful API design?


URIs (Uniform Resource Identifiers) are fundamental building blocks in RESTful API design. They act as unique addresses that identify resources and play a crucial role in how clients interact with the API.

21. Explain the role of hypermedia in RESTful APIs. How does it relate to HATEOAS?



Hypermedia plays a crucial role in RESTful APIs by providing an additional layer of information within responses. It goes beyond simply returning the requested data and empowers clients to discover and navigate the API's functionalities dynamically. Here's how it works:

Embedded Links: The server includes links within the response body that point to related resources or actions. These links act as signposts, guiding the client on how to interact with other parts of the API. (Imagine a website with navigation menus and hyperlinks)
Client-Driven Navigation: Unlike traditional APIs with predefined endpoints, hypermedia allows clients to explore the API based on the provided links. This promotes flexibility and adaptability for clients, especially when the API evolves.

22. What are the benefits of using RESTful APIs over other architectural styles?


RESTful APIs offer several advantages over other architectural styles, making them the dominant choice for modern web APIs:

Simplicity and Ease of Use: REST adheres to a clear set of principles, making it easy for developers to understand, design, and consume RESTful APIs. The use of standard HTTP methods and a focus on resources provides a familiar and intuitive approach.

Interoperability: RESTful APIs leverage standardized protocols (HTTP) and data formats (often JSON or XML). This allows applications built with different technologies and programming languages to interact seamlessly with RESTful APIs.

Scalability: The stateless nature of RESTful APIs simplifies server-side implementation. Adding more servers to handle increased load becomes easier as each request is independent. This makes RESTful APIs well-suited for web applications with potentially high traffic.

Maintainability: The clear separation of concerns between client and server promotes better maintainability. Developers can focus on their respective functionalities without worrying about intricate dependencies.

Flexibility: RESTful APIs can accommodate various use cases by supporting different HTTP methods for creating, retrieving, updating, and deleting resources. This flexibility allows for a wider range of interactions within the API.

Discoverability: HATEOAS, a principle often used in RESTful design, encourages the use of hypermedia links within responses. This allows clients to discover new functionalities and resources dynamically, reducing reliance on static documentation.

23. Discuss the concept of resource representations in RESTful APIs.


In RESTful APIs, resource representations refer to the various formats in which a resource (an object or data) can be presented when exchanged between a client and a server. These representations enable clients to interact with resources through standardized formats, ensuring consistent communication and data manipulation.
A representation encodes a resource so that it can be transmitted over the internet.
It includes both the data associated with the resource (e.g., user properties, order details) and metadata that describes the format of the representation.

Common Formats:
The two popular formats for representing resources are JSON (JavaScript Object Notation) and XML (Extensible Markup Language).
REST doesnâ€™t impose restrictions on the format; developers choose based on project requirements.


24. How does REST handle communication between clients and servers?


RESTful APIs rely on a well-defined communication style between clients (applications) and servers.

1. **Clients Initiate Requests:**  Clients, which can be web browsers, mobile apps, or other software, initiate communication by sending requests to the server. These requests specify the desired action and target resource.

2. **HTTP Methods:**  RESTful APIs leverage standardized HTTP methods that act like verbs indicating the desired action on a resource. Common methods include:
    * **GET:** Retrieve data from a resource (like reading a book)
    * **POST:** Create a new resource (like submitting a new document)
    * **PUT:** Update an entire existing resource (like replacing a book)
    * **PATCH:** Update specific parts of an existing resource (like editing a section of a book)
    * **DELETE:** Remove a resource (deleting a profile)

3. **URIs (Uniform Resource Identifiers):**  Clients use URIs to identify the specific resource they want to interact with. URIs act like web addresses for resources within the API.

4. **Headers (Optional):**  Requests can include additional headers containing information like authentication credentials, preferred data format (JSON, XML), or other relevant details.

5. **Request Body (Optional):**  For operations like POST or PUT, the request body might contain the actual data to be created or updated within the resource.

6. **Server Processes Requests:**  The server receives the request and processes it based on the HTTP method, URI, and any additional data provided.

7. **Server Responses:**  The server sends a response back to the client. This response includes:
    * **Status Code:**  An HTTP status code indicating the outcome (e.g., 200 for success, 404 for not found).
    * **Headers:**  May contain additional information like content type or error details.
    * **Response Body:**  Contains the requested data (for GET requests), confirmation of creation/update (for POST/PUT), or error message (if applicable).

8. **Client Handles Responses:**  The client receives and interprets the server's response. Based on the status code and response body, the client application can take further actions like displaying retrieved data, handling errors, or processing confirmation messages.


25. What are the common data formats used in RESTful API communication?


JSON: Most popular, readable, good balance of size and info, works across languages.
XML: More structured, for complex data or legacy systems.
Plain Text: Simple messages, like error messages.

26. Explain the importance of status codes in RESTful API responses.


1. **Understanding Results**: Status codes inform clients about the outcome of their requests. They help users comprehend what happened and take appropriate actions.

2. **Data Integrity**: By providing clear responses, status codes help maintain data integrity. Clients can handle errors effectively based on the received code.

3. **Error Management**: Different status codes indicate various scenarios (e.g., success, redirection, client errors, server errors). This consistency aids in error handling.

27. Describe the process of versioning in RESTful API development.


Versioning is a critical aspect of RESTful API development as it ensures smooth evolution and backwards compatibility while accommodating changes to the API.

Versioning Strategy: There are two main approaches to versioning RESTful APIs:

URI Versioning: Incorporate the version number directly into the URI path used to access resources. This clearly indicates the API version being used and allows for multiple versions to coexist on the server. (Example: /api/v1/users, /api/v2/users)

Custom Headers: Include the version number in a custom HTTP header sent with each request. This keeps the URIs cleaner but requires clients to specify the version explicitly. (Example: Version: 1.0 in request header)


28. How can you ensure security in RESTful API development? What are common authentication methods?

By following these security practices and choosing appropriate authentication methods, you can build robust RESTful APIs that protect sensitive data and ensure trust with your users and applications.

* **HTTPS:** Encrypt communication to keep data hidden.
* **Authentication:** Check IDs (like passwords or API keys) to verify who's knocking.
* **Authorization:** Grant access only to those allowed in (control what users can do).
* **Input Validation:** Inspect incoming data for traps (prevent attacks).
* **Error Handling:** Keep error messages informative but secretive (don't reveal weaknesses).
* **Updates:** Patch any holes quickly (keep software current).

Common ways to verify users:

* **Basic Auth:** Simple but risky (like sending your password in plain sight).
* **API Keys:** Easier to manage but one key unlocks everything (not ideal).
* **OAuth:** More secure, lets users control access (like logging into a site with Facebook).
* **JWT:** Compact tokens for remembering users (like a digital passport).

The best method depends on your API's needs: high security, client types, and scalability.

29. What are some best practices for documenting RESTful APIs?


By following these best practices, you can create high-quality documentation that empowers developers to effectively use your RESTful API and unlocks its full potential.

* **Clear & Concise:** Keep it simple and user-friendly, avoid jargon.
* **Target Audience:** Cater to both beginners and experts.
* **Standardized Format:** Use a common style guide or tools like OpenAPI for interactive docs.
* **Cover Everything:** Document resources, methods, formats, authentication, errors, code samples.
* **Versioning:** Highlight changes between versions.
* **Examples & Tutorials:** Show developers how to use your API effectively.
* **Keep it Fresh:** Update docs as your API evolves.
* **Bonus Tips:** Easy search, version control, and a developer community can go a long way.


30. What considerations should be made for error handling in RESTful APIs?


1. **Centralized Error Handling**: Implement a centralized error handling mechanism within your API. You can achieve this through middleware or a dedicated error handling components.

2. **Log Errors Effectively**: Logging errors is essential for debugging and monitoring your API in production environments. Properly formatted logs help identify issues and track down problems.

3. **Avoid Exposing Sensitive Information**: When returning error responses, avoid revealing sensitive details about your system. Provide meaningful but generic error messages to users.

4. **Rate Limiting and Throttling**: Protect your API by implementing rate limiting and throttling mechanisms. This prevents abuse and ensures fair usage.

5. **Graceful Degradation**: Handle errors gracefully by providing fallback responses or alternative data when certain endpoints or services are unavailable.


31. What is SOAP, and how does it differ from REST?


1. **SOAP (Simple Object Access Protocol)**:
   - **Protocol**: SOAP is a protocol for decentralized, distributed communication.
   - **Data Format**: It uses XML for message formatting.
   - **Service Interface**: SOAP APIs expose specific functions.
   - **Communication**: Rigid structure based on service interfaces.
   - **Security**: Built-in security features (e.g., WS-Security).
   - **Use Cases**: Complex applications with transaction management.
   - **Bandwidth**: Requires more due to XML overhead.

2. **REST (Representational State Transfer)**:
   - **Architectural Style**: REST is an architectural style.
   - **Data Format**: Supports XML or JSON.
   - **Resource Access**: Relies on URIs.
   - **Flexibility**: Adaptable; suitable for modern architectures.
   - **Security**: Generally lighter on security.
   - **Use Cases**: Simple CRUD-style applications, mobile apps.
   - **Bandwidth**: Requires less compared to SOAP.

32. Describe the structure of a SOAP message.


**SOAP message** is an XML document that consists of the following elements:

1. **Envelope**: The root element that identifies the XML document as a SOAP message. It encapsulates the entire message.
2. **Header** (optional): Contains application-specific information (e.g., authentication, payment) about the SOAP message.
3. **Body**: Contains the actual message being transmitted.
4. **Fault** (within Body): Used for reporting errors or exceptions.


33. How does SOAP handle communication between clients and servers?


**SOAP (Simple Object Access Protocol)** operates on a **server-client model**. Here's how it works:

1. **Client Sends SOAP Requests**:
   - Clients create SOAP requests, which are XML-formatted SOAP envelopes.
   - These requests contain information needed by the server (e.g., method calls, data).

2. **Server Processes Requests**:
   - The SOAP server receives these requests.
   - It processes the data, performs actions (e.g., invoking methods), and prepares responses.

3. **Server Sends SOAP Responses**:
   - The server constructs SOAP responses as XML envelopes.
   - These responses contain the results of the requested actions (e.g., data, status).

4. **Client Processes Responses**:
   - Clients receive the SOAP responses.
   - They parse the XML, extract relevant information, and act accordingly.


34. What are the advantages and disadvantages of using SOAP-based web services?


1. **Advantages**:
   - **WS Security**: SOAP defines its own security standard known as WS Security, providing robust authentication and encryption options.
   - **Language and Platform Independence**: SOAP web services can be written in any programming language and executed on any platform.

2. **Disadvantages**:
   - **Slowness**: SOAP uses XML format, which must be parsed for reading. This parsing overhead makes it slower and consumes more bandwidth and resources.
   - **Complexity**: SOAP defines many standards that developers must follow, making it less straightforward than some alternatives


35. How does SOAP ensure security in web service communication?


**SOAP (Simple Object Access Protocol)** ensures security in web service communication through the **Web Services Security (WS-Security)** specification. Here's how it works:

1. **WS-Security Specification**:
   - WS-Security provides a foundational set of SOAP message extensions for building secure web services.
   - It defines elements to be used in the SOAP header for message-level security.

2. **Security Measures**:
   - WS-Security specifies the use of:
     - **Security Tokens**: Used for authentication and authorization.
     - **Digital Signatures**: Ensure message integrity and authenticity.
     - **XML Encryption**: Protect sensitive data within the SOAP message.

3. **Protection and Authentication**:
   - Without WS-Security, SOAP messages are sent in clear text.
   - WS-Security ensures that personal information (e.g., user IDs, account numbers) is protected during communication.

36. What is Flask, and what makes it different from other web frameworks?


**Flask** is a lightweight **Python web framework** designed for rapid development. Here's what sets it apart from other frameworks:

1. **Minimalistic Approach**: Flask provides the essentials without imposing a lot of built-in functionalities. Developers have more flexibility to choose components and extensions as needed.

2. **Micro-Framework**: Unlike full-stack frameworks like Django, Flask is considered a **micro-framework**. It focuses on simplicity and allows fine-tuning based on project requirements.

3. **Pythonic Code**: Flask's code is often more **explicit** and follows Python conventions closely. This makes it a favorite among beginners for quickly getting basic apps up and running.

4. **Ideal for Simple Projects**: Flask is great for building **basic sites** (e.g., blogs) with static content. It offers all necessary functionality while allowing extensive customization.

37. Describe the basic structure of a Flask application.


A Flask application typically follows a well-defined structure for organization and maintainability. Here's a breakdown of the essential components:

**1. Application Instance:**

* Core of your application, created using `Flask(__name__)`.
* Holds configurations, registered functions (routes and logic), and the overall application state.

**2. Project Folder:**

* Contains the main Flask script (often named `app.py`) and other files for your application.

**3. Routes:**

* Define how the application responds to different URL requests.
* Implemented as Python functions decorated with the `@app.route` decorator.
* These functions handle incoming requests, process any logic, and return a response (usually web pages or data).

**4. Templates (Optional):**

* HTML files used for generating dynamic content.
* Flask provides template rendering functionality to populate templates with data from your application logic.

**5. Static Files (Optional):**

* Static assets like CSS, JavaScript files, or images used by your application.
* These files are typically served directly by the web server without involving Flask.

**6. Configurations (Optional):**

* Define settings for your application, such as database connection details, secret keys, or debug mode.
* Can be stored in a separate configuration file or environment variables.


38. How do you install Flask on your local machine?


To install **Flask** on your local machine, follow these steps:

1. **Open a Terminal or Command Prompt**:
   - Depending on your operating system (Windows, macOS, or Linux), open the terminal or command prompt.

2. **Install Flask using pip**:
   - Run the following command:
     
     pip install Flask
     
   - This command installs Flask and its dependencies, making it ready for use in your projects.


39. Explain the concept of routing in Flask.


In Flask, routing involves mapping URLs to specific Python functions, known as view functions, within the application. This mechanism determines how a Flask application responds to a client's request for a specific endpoint or URL

* **`@app.route` Decorator:** This marks the function that handles a specific URL.
* **URL Endpoints:** These are the unique addresses users type in (like /home or /users/jane).
* **HTTP Methods (Optional):** You can specify if the route handles GET requests (to display data), POST requests (to submit data), etc.
* **View Functions:** These are the functions that get called, depending on the route. They do the job of processing the request and sending back a response.
* **Dynamic URLs (Optional):** You can create flexible URLs that capture parts of the address (like usernames).

Routing lets you build a well-organized Flask app that responds to different user interactions and requests.

40. What are Flask templates, and how are they used in web development?


1. **What Are Flask Templates?**
   - A Flask template is a **reusable HTML structure** that simplifies creating consistent web pages.
   - Instead of writing the same code for headers, footers, and other common elements on every page, templates allow you to define these once and reuse them across multiple views.

2. **How to Use Flask Templates:**
   - Create a folder named **'templates'** in your Flask project directory.
   - Inside this folder, create separate HTML files for each view or page of your web application.
   - Flask will automatically look for templates in the **'templates'** folder and render them when a request corresponds to a specific route.
