davidbgk
/
larlet-fr-david-cache
Watch 1
Star 0
Fork 0
Code Releases 0 Activity
A place to cache linked articles (think custom and personal wayback machine)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
42 Commits
1 Branch
Tree: 2e4d51a7b7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2e4d51a7b7'
${ noResults }
larlet-fr-david-cache/cache/0d60b959f92d466e54c001a78b3.../index.md

index.md 19KB
Raw Normal View History

Add cache data
4 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263 
  1. title: What is a Web Framework?

  2. url: http://www.jeffknupp.com/blog/2014/03/03/what-is-a-web-framework/

  3. hash_url: 0d60b959f92d466e54c001a78b329e2b

  4. 

  5. <p>Web application frameworks, or simply "web frameworks", are the de facto way to

  6. build web-enabled applications. From simple blogs to complex AJAX-rich applications, every

  7. page on the web was created by writing code. I've recently found that

  8. many developers interested in learning a web framework like Flask or Django

  9. don't really understand what a web framework <em>is</em>, what their purpose is, or how they

  10. work. In this article, I'll explore the oft-overlooked topic of web framework

  11. fundamentals. By the end of the article, you should have a solid understanding

  12. of what a web framework is and why they exist in the first place.

  13. This will make it <em>far</em> easier to learn a new web framework and make an informed

  14. decision regarding which framework to use.

  15. </p>

  16. <h2>How The Web Works</h2>

  17. <p>Before we talk about frameworks, we need to understand how the web "works". To

  18. do so, we'll delve into what happens when you type a URL into your browser and

  19. hit <code>Enter</code>. Open a new tab in your browser and navigate to 

  20. <a href="http://www.jeffknupp.com">http://www.jeffknupp.com</a>. Let's talk about 

  21. the steps your browser took in order to display the page (minus DNS lookups).</p>

  22. <h3>Web Servers and ... web ... servers...</h3>

  23. <p>Every web page is transmitted to your browser as <code>HTML</code>, a language used by

  24. browsers to describe the content and structure of a web page. The application

  25. responsible for sending <code>HTML</code> to browsers is called a <em>web server</em>.

  26. Confusingly, the machine this application resides on is also usually called a

  27. web server. </p>

  28. <p>The important thing to realize, however, is that at the end of the

  29. day, all a web application really does is send <code>HTML</code> to browsers. No matter how

  30. complicated the logic of the application, the final result is always <code>HTML</code>

  31. being sent to a browser (I'm purposely glossing over the ability for

  32. applications to respond with different types of data, like <code>JSON</code> or CSS files,

  33. as the concept is the same).</p>

  34. <p>How does the web application know <em>what</em> to send to the browser? <strong>It sends

  35. whatever the browser requests</strong>.</p>

  36. <h3>HTTP</h3>

  37. <p>Browsers download websites from <em>web servers</em> (or "application servers") using

  38. the <code>HTTP</code> <em>protocol</em> (a <em>protocol</em>, in the realm of programming, is a 

  39. universally known data format and sequence of steps enabling communication 

  40. between two parties). The <code>HTTP</code> protocol is based on a <code>request-response</code> model. 

  41. The client (your browser) <em>requests</em> data from a web application that resides 

  42. on a physical machine. The web application in turn <em>responds</em> to the request with 

  43. the data your browser requested.</p>

  44. <p>An important point to remember is that communication is always initiated by the

  45. <em>client</em> (your browser). The <em>server</em> (web server, that is) has no way of

  46. initiating a connection to you and sending your browser unsolicited data. If you

  47. receive data from a web server, it is because your browser explicitly asked for

  48. it.</p>

  49. <h4>HTTP Methods</h4>

  50. <p>Every message in the <code>HTTP</code> protocol has an associated <em>method</em> (or <em>verb</em>). The various <code>HTTP</code> methods 

  51. correspond to logically different types of requests the client can send, which in turn

  52. represent different intentions on the client side. Requesting the HTML 

  53. of a web page, for example, is logically different than submitting a form, so the 

  54. two actions require the use of different methods.</p>

  55. <h5>HTTP GET</h5>

  56. <p>The <code>GET</code> method does exactly what it sounds like: gets (requests) data from the

  57. web server. <code>GET</code> requests are the by far the most common <code>HTTP</code> request. During 

  58. a <code>GET</code> request the web application shouldn't need to do anything more than 

  59. respond with the requested page's HTML. Specifically, the web application should not 

  60. alter the state of the application as a result of a <code>GET</code> request (for example,

  61. it should not create a new user account based on a <code>GET</code> request). For 

  62. this reason, <code>GET</code> requests are usually considered "safe" since they don't

  63. result in changes to the application powering the website.</p>

  64. <h5>HTTP POST</h5>

  65. <p>Clearly, there is more to interacting with web sites than simply looking at

  66. pages. We are also able to <em>send</em> data to the application, e.g. via a form. 

  67. To do so, a different type of request is required: <code>POST</code>. <code>POST</code> requests

  68. usually carry data entered by the user and result in some action being taken

  69. within the web application. Signing up for a web site by entering your

  70. information on a form is done by <code>POST</code>ing the data contained in the form to the

  71. web application.</p>

  72. <p>Unlike a <code>GET</code> request, <code>POST</code> requests usually result in the state of the

  73. application changing. In our example, a new user account is created when the

  74. form is <code>POST</code>ed. Unlike <code>GET</code> requests, <code>POST</code> requests do not always result in

  75. a new HTML page being sent to the client. Instead, the client uses the response's

  76. <em>response code</em> do determine if the operation on the application was successful.</p>

  77. <h4>HTTP Response Codes</h4>

  78. <p>In the normal case, a web server returns a <em>response code</em> of 200, meaning, "I did

  79. what you asked me to and everything went fine". <em>Response codes</em> are always a 

  80. three digit numerical code. The web applications must send one with each

  81. response to indicate what happened as a result of a given request. The response code <code>200</code>

  82. literally means "OK" and is the code most often used when responding to a <code>GET</code>

  83. request. A <code>POST</code> request, however, may result in code <code>204</code> ("No Content")

  84. being sent back, meaning "Everything went OK but I don't really have anything to

  85. show you."</p>

  86. <p>It's important to realize that <code>POST</code> requests are still sent

  87. to a specific URL, which may be different from the page the data was submitted

  88. from. Continuing our sign up example, the form may reside at

  89. <code>www.foo.com/signup</code>. Hitting <code>submit</code>, however, may result in a <code>POST</code> request

  90. with the form data being sent to <code>www.foo.com/process_signup</code>. The location a

  91. <code>POST</code> request should be sent to is specified in the form's <code>HTML</code>.</p>

  92. <h2>Web Applications</h2>

  93. <p>You can get quite far using only <code>HTTP</code> <code>GET</code> and <code>POST</code>, as they're the two most

  94. common <code>HTTP</code> methods by a wide margin. A web application, then, is responsible

  95. for receiving an <code>HTTP</code> request and replying with an <code>HTTP</code> response, usually

  96. containing HTML that represents the page requested. <code>POST</code> requests cause the

  97. web application to take some action, perhaps adding a new record in the

  98. database. There are a number of other <code>HTTP</code> methods, but we'll focus on <code>GET</code> and

  99. <code>POST</code> for now.</p>

  100. <p>What would the simplest web application look like? We could write an application

  101. that listened for connections on port <code>80</code> (the well-known <code>HTTP</code> port that

  102. almost all <code>HTTP</code> traffic is sent to). Once it received a connection it would

  103. wait for the client to send a request, then it might reply with some very simple

  104. HTML.</p>

  105. <p>Here's what that would look like:</p>

  106. <div class="codehilite"><pre><span class="kn">import</span> <span class="nn">socket</span>

  107. 

  108. <span class="n">HOST</span> <span class="o">=</span> <span class="s">''</span>

  109. <span class="n">PORT</span> <span class="o">=</span> <span class="mi">80</span>

  110. <span class="n">listen_socket</span> <span class="o">=</span> <span class="n">socket</span><span class="o">.</span><span class="n">socket</span><span class="p">(</span><span class="n">socket</span><span class="o">.</span><span class="n">AF_INET</span><span class="p">,</span> <span class="n">socket</span><span class="o">.</span><span class="n">SOCK_STREAM</span><span class="p">)</span>

  111. <span class="n">listen_socket</span><span class="o">.</span><span class="n">bind</span><span class="p">((</span><span class="n">HOST</span><span class="p">,</span> <span class="n">PORT</span><span class="p">))</span>

  112. <span class="n">listen_socket</span><span class="o">.</span><span class="n">listen</span><span class="p">(</span><span class="mi">1</span><span class="p">)</span>

  113. <span class="n">connection</span><span class="p">,</span> <span class="n">address</span> <span class="o">=</span> <span class="n">listen_socket</span><span class="o">.</span><span class="n">accept</span><span class="p">()</span>

  114. <span class="n">request</span> <span class="o">=</span> <span class="n">connection</span><span class="o">.</span><span class="n">recv</span><span class="p">(</span><span class="mi">1024</span><span class="p">)</span>

  115. <span class="n">connection</span><span class="o">.</span><span class="n">sendall</span><span class="p">(</span><span class="s">"""HTTP/1.1 200 OK</span>

  116. <span class="s">Content-type: text/html</span>

  117. 

  118. 

  119. <span class="s">&lt;html&gt;</span>

  120. <span class="s">    &lt;body&gt;</span>

  121. <span class="s">        &lt;h1&gt;Hello, World!&lt;/h1&gt;</span>

  122. <span class="s">    &lt;/body&gt;</span>

  123. <span class="s">&lt;/html&gt;"""</span><span class="p">)</span>

  124. <span class="n">connection</span><span class="o">.</span><span class="n">close</span><span class="p">()</span>

  125. </pre></div>

  126. 

  127. 

  128. <p>(If the above doesn't work, try changing the <code>PORT</code> to something like <code>8080</code>)</p>

  129. <p>This code accepts a single connection and a single request. Regardless of what

  130. URL was requested, it responds with an <code>HTTP 200</code> response (so it's not <em>really</em> a

  131. web server). The <code>Content-type: text/html</code> line represents a <em>header</em> field.

  132. <em>Headers</em> are used to supply meta-information about the request or response.

  133. In this case, we're telling the client that the data that follows

  134. is HTML (rather than, say, JSON).</p>

  135. <h3>Anatomy of a Request</h3>

  136. <p>If I look at the <code>HTTP</code> request I sent to test the program above, I find it looks

  137. quite similar to the response. The first line is <code>&lt;HTTP Method&gt; &lt;URL&gt; &lt;HTTP version&gt;</code>

  138. or, in this case, <code>GET / HTTP/1.1</code>. After the first line come a few headers like <code>Accept: */*</code>

  139. (meaning we will accept any type of content in a response). That's basically it.</p>

  140. <p>The reply we send has a similar first request line, in the format <code>&lt;HTTP version&gt; &lt;HTTP

  141. Status-Code&gt; &lt;Status-Code Reason-Phrase&gt;</code> or <code>HTTP/1.1 200 OK</code> in our case. Next

  142. come headers, in the same format as the request headers. Lastly, the actual

  143. content of the response is included. Note that this can be encoded as a string

  144. or binary object (in the case of files). The <code>Content-type</code> header lets the

  145. client know how to interpret the response.</p>

  146. <h3>Web Server Fatigue</h3>

  147. <p>If we were going to continue building on the example above as the basis for a

  148. web application, there are a number of problems we'd need to solve:</p>

  149. <ol>

  150. <li>How do we inspect the requested URL and return the appropriate page?</li>

  151. <li>How do we deal with <code>POST</code> requests in addition to simple <code>GET</code> requests</li>

  152. <li>How do we handle more advanced concepts like sessions and cookies?</li>

  153. <li>How do we scale the application to handle thousands of concurrent connections?</li>

  154. </ol>

  155. <p>As you can imagine, no one wants to solve these problems each time they build a

  156. web application. For that reason, packages exist that handle the nitty-gritty

  157. details of the <code>HTTP</code> protocol and have sensible solutions to problems

  158. the problems above. Keep in mind, however, at their core they function in much 

  159. the same way as our example: listening for requests and sending <code>HTTP</code> responses with 

  160. some HTML back.</p>

  161. <p><em>Note that <strong>client-side</strong> web frameworks are a much different beast and deviate significantly from the above description.</em></p>

  162. <h2>Solving The Big Two: Routing and Templates</h2>

  163. <p>Of all the issues surrounding building a web application, two stand out.</p>

  164. <ol>

  165. <li>How do we map a requested URL to the code that is meant to handle it?</li>

  166. <li>How do we create the requested HTML dynamically, injecting calculated values

  167.    or information retrieved from a database?</li>

  168. </ol>

  169. <p>Every web framework solves these issues in some way, and there are many

  170. different approaches. Examples will be helpful, so I'll discuss Django 

  171. and Flask's solutions to both of these problems. First, though, we need 

  172. to briefly discuss the <em>MVC</em> pattern.</p>

  173. <h3>MVC in Django</h3>

  174. <p>Django makes use of the <em>MVC</em> pattern and requires code using the framework

  175. to do the same. <em>MVC</em>, or "Model-View-Controller" is simply a way of logically

  176. separating the different responsibilities of the application. Resources like

  177. database tables are represented by <em>models</em> (in much the same way a <code>class</code> in

  178. Python often models some real-world object). <em>controllers</em> contain the business

  179. logic of the application and operate on models. <em>Views</em> are given all of

  180. the information they needs to dynamically generate the HTML representation of the page.</p>

  181. <p>Somewhat confusingly, in Django, <em>controllers</em> are called <em>views</em> and <em>views</em>

  182. are called <em>templates</em>. Other than naming weirdness, Django is a pretty

  183. straightforward implementation of an <em>MVC</em> architecture.</p>

  184. <h3>Routing in Django</h3>

  185. <p><em>Routing</em> is the process of mapping a requested URL to the code responsible for

  186. generating the associated HTML. In the simplest case, <em>all</em> requests are handled

  187. by the same code (as was the case in our earlier example). Getting a little more

  188. complex, every URL could map 1:1 to a <code>view function</code>. For example, we could

  189. record somewhere that if the URL <code>www.foo.com/bar</code> is requested, the function

  190. <code>handle_bar()</code> is responsible for generating the response. We could build up

  191. this mapping table until all of the URLs our application supports are enumerated

  192. with their associated functions.</p>

  193. <p>However, this approach falls flat when the URLs contain useful data, such as the

  194. ID of a resource (as is the case in <code>www.foo.com/users/3/</code>). How do we map that

  195. URL to a view function, and at the same time make use of the fact that we want

  196. to display the user with ID <code>3</code>? </p>

  197. <p>Django's answer is to map URL <em>regular expressions</em> to view functions that can

  198. take parameters. So, for example, I may say that URLs that match

  199. <code>^/users/(?P&lt;id&gt;\d+)/$</code> calls the <code>display_user(id)</code> function where the <code>id</code>

  200. argument is the captured group <code>id</code> in the regular expression. In that way, any

  201. <code>/users/&lt;some number&gt;/</code> URL will map to the <code>display_user</code> function. These

  202. regular expressions can be arbitrarily complex and include both keyword and

  203. positional parameters.</p>

  204. <h3>Routing in Flask</h3>

  205. <p>Flask takes a somewhat different approach. The canonical method for hooking up

  206. a function to a requested URL is through the use of the <code>route()</code> decorator. The

  207. following Flask code will function identically to the regex and function listed 

  208. above:</p>

  209. <div class="codehilite"><pre><span class="nd">@app.route</span><span class="p">(</span><span class="s">'/users/&lt;id:int&gt;/'</span><span class="p">)</span>

  210. <span class="k">def</span> <span class="nf">display_user</span><span class="p">(</span><span class="nb">id</span><span class="p">):</span>

  211.     <span class="c"># ...</span>

  212. </pre></div>

  213. 

  214. 

  215. <p>As you can see, the decorator uses an almost simplified form of regular expression

  216. to map URLs to arguments (one that implicitly uses <code>/</code> as separators). Arguments are 

  217. captured by including a <code>&lt;name:type&gt;</code> directive in the URL passed to <code>route()</code>. 

  218. Routing to static URLs like <code>/info/about_us.html</code> is handled as you would 

  219. expect: <code>@app.route('/info/about_us.html')</code></p>

  220. <h3>HTML Generation Through Templates</h3>

  221. <p>Continuing the example above, once we have the appropriate piece of code mapped

  222. to the correct URL, how do we dynamically generate HTML in a way that still

  223. allows web designers to hand-craft it? For both Django and Flask,

  224. the answer is through <em>HTML templating</em>.</p>

  225. <p><em>HTML Templating</em> is similar to using <code>str.format()</code>: the desired output is written 

  226. with placeholders for dynamic values. These are later replaced by arguments to

  227. the <code>str.format()</code> function. Imagine writing an entire web page as a single string, 

  228. marking dynamic data with braces, and calling <code>str.format()</code> at the end. 

  229. Both <em>Django templates</em> and <a href="http://jinja.pocoo.org">jinja2</a>, the template engine 

  230. Flask uses, are designed to be used in this way.</p>

  231. <p>However, not all templating engines are created equal. While Django has

  232. rudimentary support for programming in templates, Jinja2 basically lets you execute

  233. arbitrary code (it doesn't <em>really</em>, but close enough). Jinja2 also aggressively <em>caches</em>

  234. the result of rendering templates, so that subsequent requests with the exact

  235. same arguments are returned from the cache instead of expensively being

  236. re-rendered.</p>

  237. <h3>Database Interaction</h3>

  238. <p>Django, with its "batteries included" philosophy, includes an <code>ORM</code>

  239. ("Object Relational Mapper"). The purpose of an <code>ORM</code> is two-fold: it maps Python

  240. classes to database tables and abstracts away the differences between various

  241. database engines (though the former is its primary role). No one loves <code>ORM</code>s

  242. (because the mapping between domains is never perfect), rather, they are

  243. tolerated. Django's is reasonably full-featured. Flask, being a

  244. "micro-framework", does not include one (though it is quite compatible with

  245. SQLAlchemy, the Django <code>ORM</code>'s biggest/only competitor).</p>

  246. <p>The inclusion of an <code>ORM</code> gives Django the ability to create a full-featured

  247. <code>CRUD</code> application. <code>CRUD</code> (<strong>C</strong>reate <strong>R</strong>ead <strong>U</strong>pdate <strong>D</strong>elete)

  248. applications seem to be the sweet spot for web frameworks (on the server side).

  249. Django (and Flask-SQLAlchemy) make the various <code>CRUD</code> operations for each model

  250. straightforward.</p>

  251. <h2>Web Framework Round-Up</h2>

  252. <p>By now, the purpose of web frameworks should be clear: to hide the boilerplate

  253. and infrastructural code related to handling <code>HTTP</code> requests and responses. Just

  254. <em>how much</em> is hidden depends on the framework. Django and Flask represent two

  255. extremes. Django includes something for every situation, almost to its

  256. detriment. Flask bills itself as a "micro-framework" and handles the bare

  257. minimum of web application functionality, relying on third-party packages to do

  258. some of the less common web framework tasks.</p>

  259. <p>Remember, though, that at the end of the day, Python web frameworks all work the

  260. same way: they receive <code>HTTP</code> requests, dispatch code that generates HTML, and

  261. creates an <code>HTTP</code> response with that content. In fact, <em>all</em> major server-side

  262. frameworks work in this way (excluding JavaScript frameworks). Hopefully, you're

  263. now equipped to choose between frameworks as you understand their purpose.</p>