Cloudflare demo app

DriveMart — Car buy & sell website for Cloudflare feature testing

Use this site to test WAF, API Shield, Bot Management, rate limiting, JWT-protected APIs, file uploads, and cache behaviors.

Quick test accounts

Dealer: [email protected] / Password123!

Buyer: [email protected] / Password123!

The site stores this locally in your browser.

Login & JWT validation


        


        

          
Upload file for WAF content scanning

          

            
            
            
          

          

            Use this for malicious upload / content scanning tests. Apply WAF rules
            and rate limiting on /api/uploads.
          

          

        

      


      

        

          
Create car listing (protected API)

          

            
            
            
            
            
            
            
            
            
            
            
            
            
          

          

        


        

          
Cache testing panel

          

            
            
            
            
            
          

          

        

      


      

        

          
Browse car inventory

          

            
            
          

        

        

      


      

        

          
WAF tests

          
Use search, create listing, upload, and login routes to test managed rules, custom rules, and rate limiting.

        

        

          
API Shield tests

          
Publish /openapi.json, enable discovery, turn on JWT validation, schema validation, and protect partner routes with mTLS.

        

        

          
Bot tests

          
Add Bot Management or Super Bot Fight Mode to listing scrape routes, login, and uploads to see automated traffic handling.