# RESTful API & Flask Assignment Answers

This notebook contains the answers to the RESTful API & Flask Assignment questions.

## Installation

Run the following cell to install Flask, the primary library used in these questions. This is crucial for running the Flask application code. 🛠️

In [22]:
# Install Flask library
%pip install Flask

Note: you may need to restart the kernel to use updated packages.



[notice] A new release of pip is available: 25.1.1 -> 25.2
[notice] To update, run: python.exe -m pip install --upgrade pip


---

## Theoretical Questions

### 1. What is a RESTful API?

**Answer:** A **RESTful API** (Representational State Transfer Application Programming Interface) is an architectural style for designing networked applications. It defines a set of constraints for how web services should operate, primarily focusing on resources and their representation. Key principles include:
-   **Statelessness:** Each request from client to server must contain all information needed to understand the request.
-   **Client-Server Architecture:** Separation of concerns between client and server.
-   **Cacheability:** Responses can be cached to improve performance.
-   **Layered System:** Components can be layered to provide scalability, security, etc.
-   **Uniform Interface:** Resources are identified by URIs, and standard HTTP methods (GET, POST, PUT, DELETE) are used for operations.

RESTful APIs typically communicate over HTTP and return data in formats like JSON or XML.

### 2. Explain the concept of API specification.

**Answer:** An **API specification** (or API documentation) is a comprehensive contract that describes how an API works and how developers can interact with it. It details the endpoints available, the HTTP methods supported for each endpoint, the request and response formats (e.g., JSON schema), authentication requirements, error codes, and any other relevant information. Popular formats for API specifications include OpenAPI (formerly Swagger) and RAML. It helps in: 
-   **Clear Communication:** Provides a clear understanding for developers consuming the API.
-   **Consistency:** Ensures consistent design and behavior across different parts of the API.
-   **Automated Tooling:** Can be used to generate client SDKs, server stubs, and interactive documentation (like Swagger UI).

### 3. What is Flask, and why is it popular for building APIs?

**Answer:** **Flask** is a micro web framework for Python. It is called a "micro" framework because it provides the bare essentials for web development without imposing a specific structure or requiring many dependencies. It's popular for building APIs due to its:
-   **Simplicity and Lightweightness:** Easy to learn and quick to set up for small to medium-sized projects.
-   **Flexibility:** It doesn't force developers to use any particular ORM, templating engine, or other libraries,     allowing them to choose the best tools for their specific needs.
-   **Extensibility:** A rich ecosystem of Flask extensions exists for various functionalities like database integration,     authentication, and REST API building (`Flask-RESTful`, `Flask-RESTX`).
-   **Pythonic:** Follows Python's principles, making the code readable and idiomatic.

### 4. What is routing in Flask?

**Answer:** **Routing** in Flask refers to the mechanism that maps incoming URL requests to specific Python functions that handle those requests. When a user accesses a particular URL, Flask's routing system determines which function should be executed to generate the appropriate response. This is primarily done using the `@app.route()` decorator, which associates a URL path with a view function.

### 5. How do you create a simple Flask application?

**Answer:** A simple Flask application involves importing `Flask`, creating an app instance, defining a route using `@app.route()`, and running the application. See Practical Question 1 for a code example.

### 6. What are HTTP methods used in RESTful APIs?

**Answer:** HTTP methods (also known as HTTP verbs) define the type of action to be performed on a resource in a RESTful API. The most common ones are:
-   **`GET`:** Retrieves (reads) data from a resource. Should be idempotent and safe.
-   **`POST`:** Creates a new resource or submits data to be processed. Not idempotent.
-   **`PUT`:** Updates an existing resource or creates a new one if it doesn't exist (replaces the entire resource). Idempotent.
-   **`PATCH`:** Partially updates an existing resource. Not necessarily idempotent.
-   **`DELETE`:** Deletes a resource. Idempotent.

Other methods include `HEAD` (like GET but without the response body) and `OPTIONS` (describes communication options).

### 7. What is the purpose of the `@app.route()` decorator in Flask?

**Answer:** The `@app.route()` decorator in Flask is used to associate a URL path with a Python function. It tells Flask which function should be triggered when a client accesses a specific URL. It is the core mechanism for defining routes and their corresponding view functions in a Flask application.```python
from flask import Flask
app = Flask(__name__)

@app.route('/') # This decorator maps the root URL to the home() function
def home():
    return 'Hello, World!'
```

### 8. What is the difference between GET and POST HTTP methods?

**Answer:**
-   **`GET` Method:**
    -   **Purpose:** To retrieve data from the server. It's used for fetching resources.
    -   **Data Transmission:** Data is sent in the URL's query parameters (e.g., `?param=value`).
    -   **Safety & Idempotence:** Considered "safe" (no side effects on the server) and "idempotent" (multiple identical requests have the same effect as a single one).
    -   **Cacheable:** Responses can be cached.
-   **`POST` Method:**
    -   **Purpose:** To send data to the server to create or update a resource. It's often used for submitting forms or uploading files.
    -   **Data Transmission:** Data is sent in the request body (not visible in the URL).
    -   **Safety & Idempotence:** Not considered safe (can have side effects) or idempotent.
    -   **Cacheable:** Responses are not typically cached.

### 9. How do you handle errors in Flask APIs?

**Answer:** Flask provides mechanisms to handle errors gracefully, preventing the application from crashing and returning informative responses (often JSON) to API clients:
-   **`@app.errorhandler()` decorator:** Used to register a function that handles specific HTTP error codes (e.g., 404 Not Found, 500 Internal Server Error) or Python exceptions.
-   **`abort()` function:** Used within a view function to immediately raise an HTTP error with a specific status code.
-   **Custom Exception Classes:** Define your own exceptions and handle them with `@app.errorhandler()`.
-   **`try-except` blocks:** For handling specific Python exceptions within view functions.
See Practical Question 10 for an example of handling a 404 error.

### 10. How do you connect Flask to a SQL database?

**Answer:** Flask itself does not come with built-in database ORM (Object-Relational Mapper) or direct database connectors. You connect Flask to a SQL database by using Python libraries designed for database interaction, typically via Flask extensions:
-   **`SQLAlchemy`:** A powerful and flexible Python SQL toolkit and ORM. You can use it directly or via `Flask-SQLAlchemy`.
-   **`Flask-SQLAlchemy`:** A Flask extension that provides SQLAlchemy integration for Flask applications,     making database setup and interaction much simpler and more Flask-friendly.
-   **`psycopg2` (for PostgreSQL), `mysql-connector-python` (for MySQL), `sqlite3` (built-in for SQLite):**     Raw database drivers can also be used, though ORMs are generally preferred for larger applications due to abstraction and maintainability.

### 11. What is the role of Flask-SQLAlchemy?

**Answer:** **Flask-SQLAlchemy** is a Flask extension that simplifies the integration of SQLAlchemy into Flask applications. Its main role is to provide convenient helpers and configurations for using SQLAlchemy within a Flask context. It manages the database connection, session handling, and query execution, allowing developers to focus more on their application's logic rather than boilerplate database code. It makes defining models, performing queries, and managing transactions more seamless within Flask.

### 12. What are Flask blueprints, and how are they useful?

**Answer:** **Flask Blueprints** are a way to organize your Flask application into smaller, reusable components. Instead of defining all routes and views directly on the main `app` object, you can define them within a Blueprint. This is particularly useful for:
-   **Modularity:** Breaking down large applications into logical, manageable modules.
-   **Reusability:** Blueprints can be registered with multiple Flask applications.
-   **URL Prefixes:** Allows you to define a URL prefix for all routes within a blueprint (e.g., `/admin` for an admin blueprint).
-   **Static and Template Folders:** Each blueprint can have its own static files and templates folders, preventing conflicts.
See Practical Question 11 for a code example.

### 13. What is the purpose of Flask's request object?

**Answer:** Flask's **`request` object** is a global object (thread-local proxy) that provides access to incoming request data for the current request. Its purpose is to encapsulate all the information sent by the client in an HTTP request. It allows your view functions to easily access data such as:
-   **Form data:** `request.form` (for `POST` requests).
-   **Query parameters:** `request.args` (for `GET` requests).
-   **JSON data:** `request.json` or `request.get_json()`.
-   **HTTP method:** `request.method`.
-   **Headers:** `request.headers`.
-   **Files:** `request.files` (for file uploads).

### 14. How do you create a RESTful API endpoint using Flask?

**Answer:** Creating a RESTful API endpoint in Flask typically involves defining a route that responds to specific HTTP methods (GET, POST, PUT, DELETE) and returns data, often in JSON format, using `jsonify()`.
```python
from flask import Flask, jsonify, request

app = Flask(__name__)

tasks = [
    {'id': 1, 'title': 'Buy groceries', 'done': False},
    {'id': 2, 'title': 'Learn Flask', 'done': True}
]

@app.route('/tasks', methods=['GET'])
def get_tasks():
    return jsonify({'tasks': tasks})

@app.route('/tasks', methods=['POST'])
def create_task():
    if not request.json or not 'title' in request.json:
        # In a real API, you'd return a 400 Bad Request here
        return jsonify({'error': 'Bad Request: Missing title'}), 400
    new_task = {
        'id': tasks[-1]['id'] + 1 if tasks else 1,
        'title': request.json['title'],
        'done': False
    }
    tasks.append(new_task)
    return jsonify({'task': new_task}), 201 # 201 Created status code

# To run this app, save it as a .py file (e.g., api_app.py) and run: flask run
if __name__ == '__main__':
    app.run(debug=True)
```

### 15. What is the purpose of Flask's `jsonify()` function?

**Answer:** Flask's `jsonify()` function is a utility function used to serialize data into JSON format and return it as a Flask response with the appropriate `Content-Type: application/json` header. It automatically converts Python dictionaries or lists into JSON strings, making it convenient for building RESTful APIs where JSON is the standard data exchange format. It also ensures proper encoding and header setting.

### 16. Explain Flask's `url_for()` function.

**Answer:** Flask's `url_for()` function is used for **URL building** or **reverse URL lookups**. Instead of hardcoding URLs in your templates or Python code, you pass the name of the view function to `url_for()`, and it generates the correct URL dynamically. This is highly recommended because:
-   **Flexibility:** If you change the URL pattern of a route, you only need to update the `@app.route()` decorator; `url_for()` will automatically generate the correct new URL.
-   **Maintainability:** Reduces hardcoding and makes your code more robust.
-   **Handling Variables:** Can correctly generate URLs for routes that accept variable parts.
See Practical Question 5 for a code example.

### 17. How does Flask handle static files (CSS, JavaScript, etc.)?

**Answer:** Flask automatically serves static files (CSS, JavaScript, images, etc.) from a folder named `static` located in the same directory as your main Flask application file. You can then reference these files in your templates using the `url_for()` function with the special endpoint name `'static'`. For example: `url_for('static', filename='css/style.css')`.See Practical Question 2 for a code example.

### 18. What is an API specification, and how does it help in building a Flask API?

**Answer:** This question is a duplicate of Q2. An **API specification** (or API documentation) is a comprehensive contract that describes how an API works and how developers can interact with it. It details the endpoints available, the HTTP methods supported for each endpoint, the request and response formats (e.g., JSON schema), authentication requirements, error codes, and any other relevant information. In building a Flask API, an API specification helps maintain consistency, clarify communication between backend and frontend developers, and can even be used to auto-generate code or interactive documentation using tools like `Flask-RESTX` (which integrates Swagger/OpenAPI).

### 19. What are HTTP status codes, and why are they important in a Flask API?

**Answer:** **HTTP status codes** are three-digit numbers returned by a server in response to a client's HTTP request. They indicate the outcome of the request (e.g., success, client error, server error). They are crucial in a Flask API because:
-   **Communication:** They provide standardized, machine-readable feedback to the client about the request's result.
-   **Client Behavior:** Clients (web browsers, mobile apps) rely on these codes to determine how to proceed (e.g., retry, show an error message).
-   **Debugging:** Helps in troubleshooting API issues.
-   **Standardization:** Ensures consistent API responses across different services.

**Common codes:**
-   `2xx` (Success): `200 OK`, `201 Created`, `204 No Content`.
-   `4xx` (Client Error): `400 Bad Request`, `401 Unauthorized`, `403 Forbidden`, `404 Not Found`, `405 Method Not Allowed`.
-   `5xx` (Server Error): `500 Internal Server Error`, `503 Service Unavailable`.
In Flask, you can return a status code by adding it as a second return value: `return jsonify({'message': 'Created'}), 201`.

### 20. How do you handle POST requests in Flask?

**Answer:** You handle `POST` requests in Flask by specifying `methods=['POST']` in the `@app.route()` decorator for a particular view function. Inside the function, you typically access the data sent in the request body using the `request` object, often `request.form` for form data or `request.json` (or `request.get_json()`) for JSON data.
See Practical Question 3 and 6 for examples.

### 21. How would you secure a Flask API?

**Answer:** Securing a Flask API involves several measures:
-   **Authentication:** Verify the identity of the client (e.g., JWT, OAuth, API Keys).
-   **Authorization:** Control what authenticated clients can access or modify.
-   **HTTPS:** Always use HTTPS to encrypt communication and prevent eavesdropping.
-   **Input Validation:** Sanitize and validate all user inputs to prevent injection attacks (SQL injection, XSS).
-   **Rate Limiting:** Prevent abuse by limiting the number of requests a client can make (e.g., `Flask-Limiter`).
-   **CORS (Cross-Origin Resource Sharing):** Properly configure CORS headers to restrict which domains can access your API (e.g., `Flask-CORS`).
-   **Error Handling:** Provide generic error messages and avoid leaking sensitive information in error responses.
-   **Secret Key:** Use a strong `app.secret_key` for session management and other security-sensitive operations.

### 22. What is the significance of the Flask-RESTful extension?

**Answer:** **Flask-RESTful** (or its successor `Flask-RESTX`) is a Flask extension that provides tools and conventions for quickly building REST APIs. Its significance lies in simplifying API development by:
-   **Resource Abstraction:** Allows you to define API resources as classes, making the code more organized and object-oriented.
-   **Request Parsing:** Helps in parsing and validating incoming request data.
-   **Error Handling:** Provides standardized error responses.
-   **Swagger/OpenAPI Integration:** (Especially `Flask-RESTX`) Offers automatic generation of API documentation (Swagger UI).
-   **Marshalling:** Simplifies the process of serializing Python objects into JSON responses.

### 23. What is the role of Flask's session object?

**Answer:** Flask's **`session` object** provides a way to store data that is specific to a user from one request to the next. It acts like a dictionary that stores data on the server-side, but it's managed by sending a signed cookie to the client's browser. The role of the session object is to:
-   **Maintain User State:** Store user-specific information (e.g., logged-in status, user ID, preferences) across multiple requests.
-   **Security:** The session data is cryptographically signed to prevent tampering, requiring a `secret_key` for the Flask application.
-   **Convenience:** Abstracts away the complexities of cookie management and state persistence for user sessions.

## Practical Questions

### General Note for Practical Flask Questions:

To run the Flask applications or test the Flask-specific features shown below, you will typically need to:
1.  **Copy the code into a Python file** (e.g., `app.py`).
2.  **Save the file** in a directory.
3.  **Open your terminal or command prompt**, navigate to that directory.
4.  **Set the Flask environment variable:** `export FLASK_APP=app.py` (Linux/macOS) or `set FLASK_APP=app.py` (Windows).
5.  **Run the Flask development server:** `flask run` (or `python -m flask run` if `flask` command is not in PATH).
6.  **Access the URLs** from your web browser or a tool like Postman/curl.

Directly running `app.run()` inside a Jupyter cell can sometimes block the kernel or behave unexpectedly for interactive web servers. The provided code focuses on demonstrating the Flask constructs.

### 1. How do you create a basic Flask application?

In [23]:
from flask import Flask

# Create a Flask application instance
app = Flask(__name__)

# Define a route for the home page
@app.route('/')
def hello_world():
    return 'Hello, World! This is a basic Flask app.'

# This block allows you to run the app directly from this file.
# In a production environment, you'd use a WSGI server like Gunicorn or uWSGI.
if __name__ == '__main__':
    print("To run this app: Save this code as a .py file (e.g., app.py), then in terminal:")
    print("export FLASK_APP=app.py")
    print("flask run")
    # app.run(debug=True) # Uncomment to run directly in a script, but not ideal for Jupyter cells


To run this app: Save this code as a .py file (e.g., app.py), then in terminal:
export FLASK_APP=app.py
flask run


### 2. How do you serve static files like images or CSS in Flask?

In [24]:
# Create dummy static directory and file for demonstration
import os


static_dir = 'static'
css_dir = os.path.join(static_dir, 'css')
if not os.path.exists(css_dir):
    os.makedirs(css_dir)
with open(os.path.join(css_dir, 'style.css'), 'w') as f:
    f.write('body { font-family: Arial, sans-serif; background-color: #f0f0f0; }\n')
    f.write('h1 { color: navy; }\n')
print("Created dummy static/css/style.css for demonstration.")

# Create a dummy templates directory and file for demonstration
templates_dir = 'templates'
if not os.path.exists(templates_dir):
    os.makedirs(templates_dir)
with open(os.path.join(templates_dir, 'static_example.html'), 'w') as f:
    f.write('<!DOCTYPE html>\n')
    f.write('<html lang="en">\n')
    f.write('<head>\n')
    f.write('    <meta charset="UTF-8">\n')
    f.write('    <meta name="viewport" content="width=device-width, initial-scale=1.0">\n')
    f.write('    <title>Static Files Example</title>\n')
    f.write("    <link rel=\"stylesheet\" href=\"{{ url_for('static', filename='css/style.css') }}\">\n")
    f.write('</head>\n')
    f.write('<body>\n')
    f.write('    <h1>Hello from Static Files!</h1>\n')
    f.write('    <p>This page uses a CSS file served by Flask.</p>\n')
    f.write('</body>\n')
    f.write('</html>')
print("Created dummy templates/static_example.html for demonstration.")

from flask import Flask, render_template, url_for

app = Flask(__name__)

@app.route('/static_test')
def static_test():
    # Flask automatically looks for 'static' folder for static files
    # and 'templates' folder for templates.
    return render_template('static_example.html')

if __name__ == '__main__':
    print("\nTo test this: Save this code, the static/css/style.css, and templates/static_example.html files.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/static_test")
    # app.run(debug=True)

Created dummy static/css/style.css for demonstration.
Created dummy templates/static_example.html for demonstration.

To test this: Save this code, the static/css/style.css, and templates/static_example.html files.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/static_test


### 3. How do you define different routes with different HTTP methods in Flask?

In [25]:
from flask import Flask, request, jsonify

app = Flask(__name__)

@app.route('/data', methods=['GET'])
def get_data():
    return jsonify({"message": "This is GET data!"})

@app.route('/data', methods=['POST'])
def post_data():
    # Check if request has JSON data
    if request.is_json:
        received_data = request.json
        return jsonify({"message": "Data received via POST (JSON)", "data": received_data}), 200
    else:
        received_data = request.form # For form-encoded data
        return jsonify({"message": "Data received via POST (Form)", "data": dict(received_data)}), 200

@app.route('/data', methods=['PUT'])
def put_data():
    return jsonify({"message": "This is PUT data!"})

if __name__ == '__main__':
    print("To test this: Save this code as a .py file and run the Flask app.")
    print("Use tools like Postman or curl to send GET, POST, PUT requests to http://127.0.0.1:5000/data")
    # Example curl commands:
    # GET: curl http://127.0.0.1:5000/data
    # POST (JSON): curl -X POST -H "Content-Type: application/json" -d '{"item": "new_item"}' http://127.0.0.1:5000/data
    # PUT: curl -X PUT http://127.0.0.1:5000/data
    # app.run(debug=True)

To test this: Save this code as a .py file and run the Flask app.
Use tools like Postman or curl to send GET, POST, PUT requests to http://127.0.0.1:5000/data


### 4. How do you render HTML templates in Flask?

In [26]:
# Ensure the 'templates' directory exists from PQ2, or create it.
templates_dir = 'templates'
if not os.path.exists(templates_dir):
    os.makedirs(templates_dir)

# Create a dummy HTML template file
with open(os.path.join(templates_dir, 'index.html'), 'w') as f:
    f.write('<!DOCTYPE html>\n')
    f.write('<html lang="en">\n')
    f.write('<head>\n')
    f.write('    <meta charset="UTF-8">\n')
    f.write('    <meta name="viewport" content="width=device-width, initial-scale=1.0">\n')
    f.write('    <title>{{ title }}</title>\n')
    f.write('</head>\n')
    f.write('<body>\n')
    f.write('    <h1>Welcome, {{ user }}!</h1>\n')
    f.write('    <p>This is a demonstration of rendering HTML templates in Flask.</p>\n')
    f.write('    <ul>')
    f.write('        {% for item in items %}\n')
    f.write('        <li>{{ item }}</li>\n')
    f.write('        {% endfor %}\n')
    f.write('    </ul>')
    f.write('</body>\n')
    f.write('</html>')
print("Created dummy templates/index.html for demonstration.")

from flask import Flask, render_template

app = Flask(__name__)

@app.route('/hello')
def hello_template():
    # Flask will look for 'index.html' inside the 'templates' folder.
    # You can pass variables to the template as keyword arguments.
    return render_template('index.html', title='Flask Template Example', user='DevUser', items=['Item 1', 'Item 2', 'Item 3'])

if __name__ == '__main__':
    print("\nTo test this: Save this code, and the templates/index.html file.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/hello")
    # app.run(debug=True)

Created dummy templates/index.html for demonstration.

To test this: Save this code, and the templates/index.html file.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/hello


### 5. How can you generate URLs for routes in Flask using `url_for`?

In [27]:
from flask import Flask, url_for

app = Flask(__name__)

@app.route('/dashboard')
def dashboard():
    return "Welcome to the dashboard!"

@app.route('/user/<username>')
def show_user_profile(username):
    return f"User: {username}"

@app.route('/generate_urls')
def generate_urls():
    # Use app.test_request_context() to generate URLs outside of an actual request
    # This is for demonstration purposes in a script/notebook
    with app.test_request_context():
        home_url = url_for('dashboard')
        alice_profile_url = url_for('show_user_profile', username='Alice')
        bob_profile_url = url_for('show_user_profile', username='Bob', _external=True) # _external=True to get full URL
        
        output = f"Dashboard URL: {home_url}\n"
        output += f"Alice Profile URL: {alice_profile_url}\n"
        output += f"Bob Profile (external) URL: {bob_profile_url}\n"
        return output

if __name__ == '__main__':
    print("To test this: Save this code as a .py file and run the Flask app.")
    print("Access: http://127.0.0.1:5000/generate_urls")
    # app.run(debug=True)

To test this: Save this code as a .py file and run the Flask app.
Access: http://127.0.0.1:5000/generate_urls


### 6. How do you handle forms in Flask?

In [28]:
# Create a dummy templates directory if it doesn't exist.
templates_dir = 'templates'
if not os.path.exists(templates_dir):
    os.makedirs(templates_dir)

# Create a dummy HTML form file
with open(os.path.join(templates_dir, 'form_example.html'), 'w') as f:
    f.write('<!DOCTYPE html>\n')
    f.write('<html lang="en">\n')
    f.write('<head>\n')
    f.write('    <meta charset="UTF-8">\n')
    f.write('    <meta name="viewport" content="width=device-width, initial-scale=1.0">\n')
    f.write('    <title>Flask Form Example</title>\n')
    f.write('</head>\n')
    f.write('<body>\n')
    f.write('    <h1>Simple Form</h1>\n')
    f.write('    <form method="POST" action="{{ url_for(\'handle_form\') }}">\n')
    f.write('        <label for="name">Name:</label><br>\n')
    f.write('        <input type="text" id="name" name="name"><br><br>\n')
    f.write('        <label for="email">Email:</label><br>\n')
    f.write('        <input type="email" id="email" name="email"><br><br>\n')
    f.write('        <input type="submit" value="Submit" aria-label="Submit the form">\n')
    f.write('    </form>\n')
    f.write('    {% if name %}\n')
    f.write('        <h2>Submitted Data:</h2>\n')
    f.write('        <p>Name: {{ name }}</p>\n')
    f.write('        <p>Email: {{ email }}</p>\n')
    f.write('    {% endif %}\n')
    f.write('</body>\n')
    f.write('</html>')
print("Created dummy templates/form_example.html for demonstration.")

from flask import Flask, request, render_template

app = Flask(__name__)

@app.route('/form', methods=['GET', 'POST'])
def handle_form():
    if request.method == 'POST':
        # Access form data using request.form (a dictionary-like object)
        name = request.form['name']
        email = request.form['email']
        return render_template('form_example.html', name=name, email=email)
    # For GET request, just render the empty form
    return render_template('form_example.html')

if __name__ == '__main__':
    print("\nTo test this: Save this code and templates/form_example.html.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/form")
    # app.run(debug=True)

Created dummy templates/form_example.html for demonstration.

To test this: Save this code and templates/form_example.html.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/form


### 7. How can you validate form data in Flask?

In [29]:
# Reuse form_example.html from PQ6

from flask import Flask, request, render_template, flash, redirect, url_for

app = Flask(__name__)
app.secret_key = 'a_very_secret_key_for_flash_messages' # Needed for flash messages

@app.route('/validate_form', methods=['GET', 'POST'])
def validate_form():
    if request.method == 'POST':
        name = request.form['name']
        email = request.form['email']
        
        errors = []
        if not name: # Check if name is empty
            errors.append("Name is required.")
        if not email: # Check if email is empty
            errors.append("Email is required.")
        elif "@" not in email or "." not in email: # Basic email format validation
            errors.append("Invalid email format.")
            
        if errors:
            # Flash messages are good for displaying temporary messages to the user
            for error in errors:
                flash(error, 'error') # 'error' is a category for styling
            return render_template('form_example.html', name=name, email=email) # Re-render form with errors
        else:
            flash(f"Form submitted successfully! Name: {name}, Email: {email}", 'success')
            return redirect(url_for('validate_form')) # Redirect to GET to prevent resubmission
            
    return render_template('form_example.html')

if __name__ == '__main__':
    print("\nTo test this: Save this code and templates/form_example.html.")
    print("Ensure you have a line like <ul class=flashes>{% for message in get_flashed_messages(with_categories=true) %}<li class=\"{{ message[0] }}\">{{ message[1] }}</li>{% endfor %}</ul>")
    print("in your form_example.html to display flash messages.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/validate_form")
    # app.run(debug=True)


To test this: Save this code and templates/form_example.html.
Ensure you have a line like <ul class=flashes>{% for message in get_flashed_messages(with_categories=true) %}<li class="{{ message[0] }}">{{ message[1] }}</li>{% endfor %}</ul>
in your form_example.html to display flash messages.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/validate_form


### 8. How do you manage sessions in Flask?

In [32]:
from flask import Flask, session, redirect, url_for, request
from markupsafe import escape

app = Flask(__name__)
# A secret key is required for session management. It should be a strong, random value.
app.secret_key = 'your_super_secret_key_here_please_change_this'

@app.route('/login', methods=['GET', 'POST'])
def login():
    if request.method == 'POST':
        if request.form['username'] == 'admin' and request.form['password'] == 'password':
            session['username'] = request.form['username'] # Store username in session
            return redirect(url_for('profile'))
        else:
            return 'Invalid credentials'
    return '''
        <form method="post">
            <p><input type=text name=username>
            <p><input type=password name=password>
            <p><input type=submit value=Login>
        </form>
    '''

@app.route('/profile')
def profile():
    if 'username' in session:
        return f'Logged in as {escape(session["username"])} <br><a href="/logout">Logout</a>'
    return 'You are not logged in <br><a href="/login">Login</a>'

@app.route('/logout')
def logout():
    session.pop('username', None) # Remove username from session
    return redirect(url_for('profile'))

if __name__ == '__main__':
    print("\nTo test this: Save this code as a .py file and run the Flask app.")
    print("Access: http://127.0.0.1:5000/profile (initially not logged in)")
    print("Then go to http://127.0.0.1:5000/login to log in with username 'admin' and password 'password'.")
    # app.run(debug=True)


To test this: Save this code as a .py file and run the Flask app.
Access: http://127.0.0.1:5000/profile (initially not logged in)
Then go to http://127.0.0.1:5000/login to log in with username 'admin' and password 'password'.


### 9. How do you redirect to a different route in Flask?

In [33]:
from flask import Flask, redirect, url_for

app = Flask(__name__)

@app.route('/')
def index():
    return 'This is the index page. Go to /old_route to see a redirect.'

@app.route('/old_route')
def old_route():
    # Redirect to the 'new_route' view function
    return redirect(url_for('new_route'))

@app.route('/new_route')
def new_route():
    return 'You have been redirected to the new route!'

if __name__ == '__main__':
    print("\nTo test this: Save this code as a .py file and run the Flask app.")
    print("Access: http://127.0.0.1:5000/old_route")
    # You will be automatically redirected to http://127.0.0.1:5000/new_route
    # app.run(debug=True)


To test this: Save this code as a .py file and run the Flask app.
Access: http://127.0.0.1:5000/old_route


### 10. How do you handle errors in Flask (e.g., 404)?

In [34]:
from flask import Flask, render_template, jsonify, request
import os

app = Flask(__name__)

# Ensure templates directory exists for error pages
templates_dir = 'templates'
if not os.path.exists(templates_dir):
    os.makedirs(templates_dir)

# Create a simple 404.html template
with open(os.path.join(templates_dir, '404.html'), 'w') as f:
    f.write('<!DOCTYPE html>\n')
    f.write('<html lang="en">\n')
    f.write('<head>\n')
    f.write('    <meta charset="UTF-8">\n')
    f.write('    <title>Page Not Found</title>\n')
    f.write('</head>\n')
    f.write('<body>\n')
    f.write('    <h1>404 - Page Not Found</h1>\n')
    f.write('    <p>Sorry, the page you are looking for does not exist.</p>\n')
    f.write('    <a href="/">Go to Home</a>\n')
    f.write('</body>\n')
    f.write('</html>')
print("Created dummy templates/404.html for demonstration.")

# Define a custom error handler for 404 Not Found errors
@app.errorhandler(404)
def page_not_found(e):
    # Check if the client expects JSON (e.g., an API client)
    if request.accept_mimetypes.accept_json and \
       not request.accept_mimetypes.accept_html:
        return jsonify({"error": "Resource not found"}), 404
    
    # Otherwise, render a custom HTML error page
    return render_template('404.html'), 404

@app.route('/')
def home():
    return "Welcome to the home page! Try going to a non-existent URL like /blah."

if __name__ == '__main__':
    print("\nTo test this: Save this code and templates/404.html.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/ (home page)")
    print("Then try: http://127.0.0.1:5000/nonexistent_page (should show 404 HTML)")
    print("Or, for JSON error: curl -H \"Accept: application/json\" http://127.0.0.1:5000/nonexistent_page")
    # app.run(debug=True)

Created dummy templates/404.html for demonstration.

To test this: Save this code and templates/404.html.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/ (home page)
Then try: http://127.0.0.1:5000/nonexistent_page (should show 404 HTML)
Or, for JSON error: curl -H "Accept: application/json" http://127.0.0.1:5000/nonexistent_page


### 11. How do you structure a Flask app using Blueprints?

In [35]:
from flask import Flask, Blueprint

# --- user_routes.py (Conceptual File) ---
# This would typically be in a separate file (e.g., app/users/routes.py)

# Create a Blueprint instance
users_bp = Blueprint('users', __name__, url_prefix='/users')

@users_bp.route('/')
def list_users():
    return 'Listing all users (from users blueprint)'

@users_bp.route('/<int:user_id>')
def get_user(user_id):
    return f'Getting user with ID: {user_id} (from users blueprint)'

# --- product_routes.py (Conceptual File) ---
# This would typically be in another separate file (e.g., app/products/routes.py)

products_bp = Blueprint('products', __name__, url_prefix='/products')

@products_bp.route('/')
def list_products():
    return 'Listing all products (from products blueprint)'

# --- main_app.py (Conceptual File) ---
# This is your main application file

app = Flask(__name__)

# Register the blueprints with the main application
app.register_blueprint(users_bp)
app.register_blueprint(products_bp)

@app.route('/')
def index():
    return 'Welcome to the main application! Try /users or /products.'

if __name__ == '__main__':
    print("To test this: Save the code above into separate .py files if structuring a real app (e.g., users_bp in users.py).")
    print("For this example, you can save the whole block in one file and run Flask.")
    print("Access: http://127.0.0.1:5000/ (main index)")
    print("Access: http://127.0.0.1:5000/users (users blueprint)")
    print("Access: http://127.0.0.1:5000/users/123 (users blueprint with ID)")
    print("Access: http://127.0.0.1:5000/products (products blueprint)")
    # app.run(debug=True)

To test this: Save the code above into separate .py files if structuring a real app (e.g., users_bp in users.py).
For this example, you can save the whole block in one file and run Flask.
Access: http://127.0.0.1:5000/ (main index)
Access: http://127.0.0.1:5000/users (users blueprint)
Access: http://127.0.0.1:5000/users/123 (users blueprint with ID)
Access: http://127.0.0.1:5000/products (products blueprint)


### 12. How do you define a custom Jinja filter in Flask?

In [36]:
# Ensure the 'templates' directory exists.
templates_dir = 'templates'
if not os.path.exists(templates_dir):
    os.makedirs(templates_dir)

# Create a dummy HTML template file with a custom filter
with open(os.path.join(templates_dir, 'filter_example.html'), 'w') as f:
    f.write('<!DOCTYPE html>\n')
    f.write('<html lang="en">\n')
    f.write('<head>\n')
    f.write('    <meta charset="UTF-8">\n')
    f.write('    <title>Custom Filter Example</title>\n')
    f.write('</head>\n')
    f.write('<body>\n')
    f.write('    <h1>Custom Jinja Filter Demo</h1>\n')
    f.write('    <p>Original Text: {{ original_text }}</p>\n')
    f.write('    <p>Title Case: {{ original_text | titlecase }}</p>\n')
    f.write('    <p>Reversed List: {{ my_list | reverse_list_filter }}</p>\n')
    f.write('</body>\n')
    f.write('</html>')
print("Created dummy templates/filter_example.html for demonstration.")

from flask import Flask, render_template

app = Flask(__name__)

# Define the custom filter function
def reverse_list_filter(a_list):
    return a_list[::-1]

# Add the custom filter to the Jinja2 environment
app.jinja_env.filters['reverse_list_filter'] = reverse_list_filter

# Another example: a simple titlecase filter
def to_title_case(s):
    return s.title()

app.add_template_filter(to_title_case, 'titlecase')


@app.route('/filters')
def show_filters():
    return render_template('filter_example.html',
                           original_text="hello world from flask",
                           my_list=[1, 2, 3, 4, 5])

if __name__ == '__main__':
    print("\nTo test this: Save this code and templates/filter_example.html.")
    print("Then run the Flask app as described in the general note.")
    print("Access: http://127.0.0.1:5000/filters")
    # app.run(debug=True)

Created dummy templates/filter_example.html for demonstration.

To test this: Save this code and templates/filter_example.html.
Then run the Flask app as described in the general note.
Access: http://127.0.0.1:5000/filters


### 13. How can you redirect with query parameters in Flask?

In [37]:
from flask import Flask, redirect, url_for, request

app = Flask(__name__)

@app.route('/search')
def search_results():
    query = request.args.get('q', 'No query provided')
    category = request.args.get('cat', 'All')
    return f"Search results for query: '{query}' in category: '{category}'"

@app.route('/redirect_to_search')
def redirect_with_params():
    # Redirect to the 'search_results' function, passing query parameters
    return redirect(url_for('search_results', q='python programming', cat='books'))

if __name__ == '__main__':
    print("\nTo test this: Save this code as a .py file and run the Flask app.")
    print("Access: http://127.0.0.1:5000/redirect_to_search")
    # You will be redirected to: http://127.0.0.1:5000/search?q=python+programming&cat=books
    # app.run(debug=True)


To test this: Save this code as a .py file and run the Flask app.
Access: http://127.0.0.1:5000/redirect_to_search


### 14. How do you return JSON responses in Flask?

In [38]:
from flask import Flask, jsonify

app = Flask(__name__)

@app.route('/json_data')
def get_json_data():
    data = {
        "name": "Flask App",
        "version": "1.0",
        "status": "running",
        "items": ["item1", "item2", "item3"]
    }
    # jsonify converts the Python dictionary to a JSON response
    return jsonify(data)

@app.route('/api/users/<int:user_id>')
def get_user_json(user_id):
    users = {
        1: {"id": 1, "name": "Alice", "email": "alice@example.com"},
        2: {"id": 2, "name": "Bob", "email": "bob@example.com"}
    }
    user = users.get(user_id)
    if user:
        return jsonify(user), 200 # Return data with 200 OK status
    return jsonify({"error": "User not found"}), 404 # Return error with 404 Not Found status

if __name__ == '__main__':
    print("\nTo test this: Save this code as a .py file and run the Flask app.")
    print("Access: http://127.0.0.1:5000/json_data")
    print("Access: http://127.0.0.1:5000/api/users/1")
    print("Access: http://127.0.0.1:5000/api/users/99 (should be 404)")
    # app.run(debug=True)


To test this: Save this code as a .py file and run the Flask app.
Access: http://127.0.0.1:5000/json_data
Access: http://127.0.0.1:5000/api/users/1
Access: http://127.0.0.1:5000/api/users/99 (should be 404)


### 15. How do you capture URL parameters in Flask?

In [39]:
from flask import Flask, request

app = Flask(__name__)

# 1. Capturing variable parts in the URL path (Path Parameters)
@app.route('/post/<int:post_id>')
def show_post(post_id):
    # post_id will be automatically converted to an integer
    return f'Post ID: {post_id}'

@app.route('/article/<string:article_name>')
def show_article(article_name):
    # article_name will be a string
    return f'Article Name: {article_name.replace("-", " ").title()}'

# 2. Capturing parameters from the URL query string (Query Parameters)
@app.route('/search_items')
def search_items():
    # request.args is a dictionary-like object for query parameters
    # .get() is safer as it returns None if the parameter is not present, avoiding KeyError
    query = request.args.get('q', 'No query provided')
    page = request.args.get('page', 1, type=int) # Specify type conversion
    return f"Searching for: '{query}', Page: {page}"

if __name__ == '__main__':
    print("\nTo test this: Save this code as a .py file and run the Flask app.")
    print("Path Parameters:")
    print("  Access: http://127.0.0.1:5000/post/123")
    print("  Access: http://127.0.0.1:5000/article/my-first-blog-post")
    print("\nQuery Parameters:")
    print("  Access: http://127.0.0.1:5000/search_items?q=flask&page=2")
    print("  Access: http://127.0.0.1:5000/search_items?q=python")
    print("  Access: http://127.0.0.1:5000/search_items")
    # app.run(debug=True)


To test this: Save this code as a .py file and run the Flask app.
Path Parameters:
  Access: http://127.0.0.1:5000/post/123
  Access: http://127.0.0.1:5000/article/my-first-blog-post

Query Parameters:
  Access: http://127.0.0.1:5000/search_items?q=flask&page=2
  Access: http://127.0.0.1:5000/search_items?q=python
  Access: http://127.0.0.1:5000/search_items
