WAF Test App - Google Cloud Armor Testing

Purpose: This app helps test Google Cloud Armor WAF rules on Cloud Run. Each endpoint is designed to trigger different security patterns.

1. Request Info - GET /info

View request details including headers, IP address, and parameters.

2. Search - GET /search

Test XSS/SQLi pattern detection with search queries.

Try: <script>alert('xss')</script> or ' OR '1'='1

3. Login - POST /login

Test form-based authentication endpoint.



4. API Data - POST /api/data

Test JSON API endpoint (Content-Type: application/json).



        


        

            
5. File Upload - POST /upload

            
Test file upload endpoint.

            

                

                
            

        


        

            
6. Health Check - GET /health

            
Simple health check endpoint for monitoring.