HomeFlask in 5 DaysDay 5
Day 5 of 5
⏱ ~60 minutes
Flask in 5 Days — Day 5

REST API and Deploy

Build a JSON API with proper status codes, add CORS for frontend apps, and deploy to Render with gunicorn.

Building a JSON API

API views
from flask import jsonify

@app.route('/api/posts', methods=['GET'])
def api_posts():
    posts = Post.query.filter_by(published=True).all()
    return jsonify([{'id': p.id, 'title': p.title, 'body': p.body} for p in posts])

@app.route('/api/posts/', methods=['GET'])
def api_post(id):
    post = Post.query.get_or_404(id)
    return jsonify({'id': post.id, 'title': post.title, 'body': post.body})

@app.route('/api/posts', methods=['POST'])
@login_required
def api_create_post():
    data = request.get_json()
    if not data or not data.get('title'):
        return jsonify({'error': 'title required'}), 400
    post = Post(title=data['title'], body=data.get('body',''), user_id=current_user.id)
    db.session.add(post)
    db.session.commit()
    return jsonify({'id': post.id}), 201
CORS
pip install flask-cors

from flask_cors import CORS
CORS(app, resources={r'/api/*': {'origins': 'https://yourfrontend.com'}})
Deploy to Render
# render.com → New Web Service → Connect GitHub
# Build command: pip install -r requirements.txt
# Start command: gunicorn app:app
# Add env vars: SECRET_KEY, DATABASE_URL

# requirements.txt
flask
flask-sqlalchemy
flask-migrate
gunicorn
psycopg2-binary
dj-database-url
📝 Day 5 Exercise
Deploy Your Flask App
  1. A
  2. d
  3. d
  5. J
  6. S
  7. O
  8. N
  10. e
  11. n
  12. d
  13. p
  14. o
  15. i
  16. n
  17. t
  18. s
  20. f
  21. o
  22. r
  24. p
  25. o
  26. s
  27. t
  28. s
  30. (
  31. G
  32. E
  33. T
  35. l
  36. i
  37. s
  38. t
  39. ,
  41. G
  42. E
  43. T
  45. d
  46. e
  47. t
  48. a
  49. i
  50. l
  51. ,
  53. P
  54. O
  55. S
  56. T
  58. c
  59. r
  60. e
  61. a
  62. t
  63. e
  64. )
  65. .
  67. A
  68. d
  69. d
  71. C
  72. O
  73. R
  74. S
  75. .
  77. P
  78. u
  79. s
  80. h
  82. t
  83. o
  85. G
  86. i
  87. t
  88. H
  89. u
  90. b
  92. a
  93. n
  94. d
  96. d
  97. e
  98. p
  99. l
  100. o
  101. y
  103. t
  104. o
  106. R
  107. e
  108. n
  109. d
  110. e
  111. r
  112. .
  114. S
  115. e
  116. t
  118. e
  119. n
  120. v
  121. i
  122. r
  123. o
  124. n
  125. m
  126. e
  127. n
  128. t
  130. v
  131. a
  132. r
  133. i
  134. a
  135. b
  136. l
  137. e
  138. s
  140. i
  141. n
  143. t
  144. h
  145. e
  147. R
  148. e
  149. n
  150. d
  151. e
  152. r
  154. d
  155. a
  156. s
  157. h
  158. b
  159. o
  160. a
  161. r
  162. d
  163. .

Day 5 Summary

  • jsonify() converts Python dicts/lists to JSON responses with the correct Content-Type header.
  • Return proper status codes: 200 OK, 201 Created, 400 Bad Request, 404 Not Found, 401 Unauthorized.
  • Flask-CORS adds CORS headers. Restrict origins to your frontend domain in production.
  • gunicorn is the production WSGI server. gunicorn app:app = filename:flask_instance.
← Previous
Day 4: Authentication
Course Complete
Back to Flask in 5 Days
Finished this lesson?