Complete the code to set a custom response header in Flask.
from flask import Flask, make_response app = Flask(__name__) @app.route('/') def home(): response = make_response('Hello World') response.headers['[1]'] = 'MyValue' return response
The header name X-Custom-Header is used to set a custom header in the response.
Complete the code to add a Content-Type header for JSON response.
from flask import Flask, make_response app = Flask(__name__) @app.route('/data') def data(): response = make_response('{"key": "value"}') response.headers['Content-Type'] = '[1]' return response
The Content-Type header should be set to application/json when returning JSON data.
Fix the error in setting multiple headers in Flask response.
from flask import Flask, make_response app = Flask(__name__) @app.route('/multi') def multi(): response = make_response('Multiple headers') response.headers['Cache-Control'] = '[1]' response.headers['Pragma'] = 'no-cache' return response
The Cache-Control header with value no-store tells browsers not to cache the response.
Fill both blanks to set security headers in Flask response.
from flask import Flask, make_response app = Flask(__name__) @app.route('/secure') def secure(): response = make_response('Secure headers') response.headers['[1]'] = 'deny' response.headers['[2]'] = '1; mode=block' return response
X-Frame-Options with value deny prevents clickjacking.
X-XSS-Protection with 1; mode=block enables XSS filtering in browsers.
Fill all three blanks to create a Flask response with CORS headers.
from flask import Flask, make_response app = Flask(__name__) @app.route('/cors') def cors(): response = make_response('CORS enabled') response.headers['[1]'] = '*' response.headers['[2]'] = 'GET, POST' response.headers['[3]'] = 'Content-Type' return response
To enable CORS, set Access-Control-Allow-Origin to allow origins, Access-Control-Allow-Methods to specify allowed HTTP methods, and Access-Control-Allow-Headers to specify allowed headers.