# Theory


1. What is a RESTful API?
* A RESTful API is an interface that allows applications to communicate with each other using the principles of REST (Representational State Transfer). It uses HTTP methods such as GET, POST, PUT, and DELETE to perform operations on resources. Each resource is identified by a unique URL. REST APIs are stateless, meaning every request is independent and must contain all required information. They are widely used because they are lightweight, scalable, and work well with web and mobile applications.

2. Explain the concept of API specification.
* An API specification is like a contract or blueprint that describes how the API should function. It defines the available endpoints, the request format (headers, parameters, and body), the response structure (data and status codes), and possible errors. For example, an API specification might state that GET /users returns a list of users in JSON format. API specifications are very important because they allow backend and frontend developers, as well as third-party users, to understand and use the API without confusion. Tools like OpenAPI (Swagger) are commonly used for writing specifications.

3. What is Flask, and why is it popular for building APIs?
> Flask is a lightweight Python web framework used for building web applications and APIs. It is popular because:

* It is minimal and flexible, allowing developers to build only what they need.

* It has an easy-to-understand syntax, which makes it beginner-friendly.

* Flask has strong community support and many useful extensions like Flask-SQLAlchemy and Flask-RESTful.

* It is excellent for building RESTful APIs because it allows quick development with simple routing and JSON handling.

4. What is routing in Flask?
* Routing in Flask means mapping a URL path to a Python function. When a user sends a request to a specific URL, Flask uses the route to determine which function should handle the request. For example:

In [None]:
@app.route('/hello')
def say_hello():
    return "Hello, Flask!"


> Here, if a user visits /hello, Flask runs the say_hello() function. Routing makes it easy to define different actions for different parts of a web application or API.

5. How do you create a simple Flask application?

* To create a simple Flask application:

1. Install Flask using pip install flask.

2. Import Flask and create an app instance:

> from flask import Flask

> app = Flask(__name__)


3. Define a route using @app.route().

4. Write a function that returns a response.

5. Run the application with app.run().
> @app.route('/')

> def home():

 > return "Hello, Flask World!"

6. What are HTTP methods used in RESTful APIs?

> RESTful APIs use standard HTTP methods to perform operations:

* GET – retrieve data (e.g., get user details).

* POST – create new data (e.g., add a new user).

* PUT – update existing data completely.

* PATCH – partially update data.

* DELETE – remove data from the server.

> Each method has its own purpose, which makes APIs predictable and easy to use.

7. What is the purpose of the @app.route() decorator in Flask?

* The @app.route() decorator in Flask is used to bind a URL to a specific function. It tells Flask which function should handle a request made to that URL. This is the basis of routing in Flask. Without routes, Flask would not know how to respond to requests from clients. It helps in organizing the application by linking different paths to different functionalities.

8. What is the difference between GET and POST HTTP methods?

* GET is used to request data from the server. The parameters are sent through the URL and are visible in the browser. It is generally used for reading or retrieving information.

* POST is used to send data to the server. The data is sent in the body of the request, which makes it more secure and suitable for sensitive or larger information. It is generally used for creating new resources.

> In simple words, GET is for reading data, while POST is for creating new data.

9. How do you handle errors in Flask APIs?

* Error handling in Flask APIs can be done using error handlers that return proper responses when something goes wrong. For example, if a user tries to access a resource that does not exist, the application should return a proper "Not Found" message with a relevant status code. This makes the API more user-friendly and professional. Custom error messages in JSON format are often used so that the client can understand the issue clearly.

10. How do you connect Flask to a SQL database?

* To connect Flask to a SQL database, developers generally use an extension like Flask-SQLAlchemy. This involves configuring the database connection string in the application, defining models (which represent tables), and then performing operations through Python objects. Instead of writing raw SQL queries, developers interact with the database using these models. This makes database integration easier and cleaner.

11. What is the role of Flask-SQLAlchemy?

* Flask-SQLAlchemy is an Object Relational Mapper (ORM) that helps developers interact with databases using Python code instead of SQL queries. It allows you to represent tables as classes and rows as objects, making database operations easier to manage. It also helps in writing cleaner, more readable code, reduces errors, and makes the application database-independent because the same code can work with multiple types of databases.

12. What are Flask blueprints, and how are they useful?

* Blueprints in Flask are a way to organize applications into smaller, reusable components. Instead of putting all routes and logic into a single file, developers can divide them into separate blueprints. For example, one blueprint can handle user-related routes, while another handles admin routes. This makes the application more structured, maintainable, and scalable, especially when working in teams or with large projects.

13. What is the purpose of Flask's request object?

* The request object in Flask represents the client’s incoming request. It contains all the information sent by the client, such as form data, JSON body, query parameters, headers, and cookies. This object allows the server to read and process client input. For example, in a login request, the username and password submitted by the user are available through the request object.

14. How do you create a RESTful API endpoint using Flask?

* To create a RESTful API endpoint in Flask, you define a route that accepts a specific HTTP method (such as GET or POST). Inside the route’s function, you write logic to process the request and return a structured response, usually in JSON format. Each endpoint corresponds to a resource, and different HTTP methods can be applied to that endpoint to perform operations like reading, creating, updating, or deleting data.

15. What is the purpose of Flask's jsonify() function?

* The jsonify() function in Flask is used to convert Python dictionaries or lists into JSON responses that can be returned to the client. JSON (JavaScript Object Notation) is the standard data format used in REST APIs. Using jsonify() ensures the response is correctly formatted and includes the right headers so that the client understands it as JSON.

16. Explain Flask’s url_for() function.

* The url_for() function in Flask generates URLs dynamically by referring to the function names instead of hardcoding paths. This is helpful because if the route changes, you only need to update it in one place, and Flask will generate the correct URL everywhere it is used. It makes the application more maintainable and avoids broken links.

17. How does Flask handle static files (CSS, JavaScript, etc.)?

* Flask serves static files such as CSS, JavaScript, and images from a special folder named "static". Developers place their frontend assets inside this folder, and Flask automatically makes them accessible through a specific URL path. This setup allows the integration of backend Flask code with frontend design files, making it easier to build complete web applications.

18. What is an API specification, and how does it help in building a Flask API?

* An API specification is a formal description of how an API should work. It defines the structure of requests, responses, endpoints, and error handling. In Flask development, an API specification helps developers know exactly what to build and how to interact with it. It ensures smooth communication between teams, reduces mistakes, and provides consistency. It acts as a guide for both developers and users of the API.

19. What are HTTP status codes, and why are they important in a Flask API?

* HTTP status codes are numerical codes returned by the server to indicate the outcome of a client’s request. They are important because they provide clear communication between the server and client. For example, 200 means success, 404 means resource not found, 400 means bad request, and 500 means server error. In a Flask API, returning the correct status code is essential because it tells the client whether the operation was successful or if an error occurred.

20. How do you handle POST requests in Flask?

* POST requests are used to send data to the server, usually to create new resources. In Flask, handling POST requests involves defining a route that accepts POST as the method and then reading the data from the request object. The server processes this data and returns a response, often confirming that the resource was created successfully.

21. How would you secure a Flask API?

> Securing a Flask API involves several measures:

* Using authentication methods such as API keys, JWT (JSON Web Tokens), or OAuth to ensure only authorized users can access the API.

* Validating and sanitizing all input to prevent attacks like SQL injection.

* Using HTTPS to encrypt communication.

* Implementing rate limiting to protect against abuse and denial-of-service attacks.

* Proper error handling to prevent exposing sensitive system details.

> These practices help protect the application and its data from unauthorized access and security threats.

22. What is the significance of the Flask-RESTful extension?

* Flask-RESTful is an extension that simplifies the process of creating REST APIs with Flask. It provides features like a Resource class for structuring endpoints, request parsing for validating inputs, and automatic error handling. It helps developers write cleaner, more organized, and more professional APIs. Flask-RESTful saves time and effort compared to writing everything manually.

23. What is the role of Flask’s session object?

* The session object in Flask is used to store information about a user across multiple requests. Since HTTP is stateless, sessions allow the application to remember data such as login status or user preferences. The data is stored securely on the server, while a session ID is stored in the client’s browser as a cookie. This way, users can stay logged in or have a personalized experience while navigating through the application.


# Practical

In [None]:
# 1. How do you create a basic Flask application?

from flask import Flask
app = Flask(__name__)

@app.route('/')
def home():
    return "Hello, Flask!"

if __name__ == '__main__':
    app.run()


In [None]:
# 2. How do you serve static files like images or CSS in Flask?

# Place files in 'static' folder
# In template: <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">


In [3]:
# 3. How do you define different routes with different HTTP methods in Flask?

@app.route('/submit', methods=['GET', 'POST'])
def submit():
    return "Handled GET or POST"


In [None]:
# 4. How do you render HTML templates in Flask?

from flask import render_template

@app.route('/home')
def home():
    return render_template('index.html')


In [None]:
# 5. How can you generate URLs for routes in Flask using url_for?

from flask import url_for
# url_for('home') will generate the URL for the home route


In [4]:
# 6. How do you handle forms in Flask?

from flask import request

@app.route('/login', methods=['POST'])
def login():
    username = request.form['username']
    return f"Hello {username}"


In [None]:
# 7. How can you validate form data in Flask?

if not request.form['email']:
    return "Email required"

In [None]:
# 8. How do you manage sessions in Flask?

from flask import session
session['user'] = 'Yuvraj'


In [None]:
# 9. How do you redirect to a different route in Flask?

from flask import redirect, url_for
return redirect(url_for('home'))


In [None]:
# 10. How do you handle errors in Flask (e.g., 404)?

@app.errorhandler(404)
def page_not_found(e):
    return "Page not found", 404


In [None]:
# 11. How do you structure a Flask app using Blueprints?

from flask import Blueprint
users_bp = Blueprint('users', __name__)

@users_bp.route('/profile')
def profile():
    return "User profile"

# Register blueprint in main app
# app.register_blueprint(users_bp)


In [None]:
# 12. How do you define a custom Jinja filter in Flask?

@app.template_filter('capitalize')
def capitalize_filter(s):
    return s.upper()


In [None]:
# 13. How can you redirect with query parameters in Flask?

return redirect(url_for('search', query='flask'))


In [None]:
# 14. How do you return JSON responses in Flask?

from flask import jsonify
return jsonify({"name": "Yuvraj", "role": "Student"})


In [None]:
# 15. How do you capture URL parameters in Flask?

@app.route('/user/<username>')
def user_profile(username):
    return f"User: {username}"
