Feature/lab11

.github/pull_request_template.md

@@ -0,0 +1,16 @@
+## Goal
+
+
+## Changes
+
+
+## Testing
+
+
+## Artifacts & Screenshots
+
+
+## Checklist
+- [ ] Clear title
+- [ ] Docs updated
+- [ ] No secrets in code

labs/lab11/analysis/cert-details.txt

@@ -0,0 +1,6 @@
+subject=CN = localhost
+issuer=CN = localhost
+notBefore=May  7 06:38:43 2026 GMT
+notAfter=May  7 06:38:43 2027 GMT
+X509v3 Subject Alternative Name: 
+    DNS:localhost, IP Address:127.0.0.1, IP Address:0:0:0:0:0:0:0:1

labs/lab11/analysis/docker-compose-ps.txt

@@ -0,0 +1,3 @@
+NAME            IMAGE                           COMMAND                  SERVICE   CREATED         STATUS         PORTS
+lab11-juice-1   bkimminich/juice-shop:v19.0.0   "/nodejs/bin/node /j…"   juice     9 seconds ago   Up 9 seconds   3000/tcp
+lab11-nginx-1   nginx:stable-alpine             "/docker-entrypoint.…"   nginx     9 seconds ago   Up 9 seconds   0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 80/tcp, 0.0.0.0:8443->8443/tcp, [::]:8443->8443/tcp

labs/lab11/analysis/headers-http.txt

@@ -0,0 +1,15 @@
+HTTP/1.1 308 Permanent Redirect
+Server: nginx
+Date: Thu, 07 May 2026 06:39:14 GMT
+Content-Type: text/html
+Content-Length: 164
+Connection: keep-alive
+Location: https://localhost:8443/
+X-Frame-Options: DENY
+X-Content-Type-Options: nosniff
+Referrer-Policy: strict-origin-when-cross-origin
+Permissions-Policy: camera=(), geolocation=(), microphone=()
+Cross-Origin-Opener-Policy: same-origin
+Cross-Origin-Resource-Policy: same-origin
+Content-Security-Policy-Report-Only: default-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
+

labs/lab11/analysis/headers-https.txt

@@ -0,0 +1,21 @@
+HTTP/2 200 
+server: nginx
+date: Thu, 07 May 2026 06:39:14 GMT
+content-type: text/html; charset=UTF-8
+content-length: 75002
+feature-policy: payment 'self'
+x-recruiting: /#/jobs
+accept-ranges: bytes
+cache-control: public, max-age=0
+last-modified: Thu, 07 May 2026 06:39:08 GMT
+etag: W/"124fa-19e01295da7"
+vary: Accept-Encoding
+strict-transport-security: max-age=31536000; includeSubDomains; preload
+x-frame-options: DENY
+x-content-type-options: nosniff
+referrer-policy: strict-origin-when-cross-origin
+permissions-policy: camera=(), geolocation=(), microphone=()
+cross-origin-opener-policy: same-origin
+cross-origin-resource-policy: same-origin
+content-security-policy-report-only: default-src 'self'; img-src 'self' data:; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline'
+

labs/lab11/analysis/http-redirect-status.txt

@@ -0,0 +1 @@
+HTTP 308

labs/lab11/analysis/nginx-error-tail.txt

@@ -0,0 +1,50 @@
+2026/05/07 06:39:35 [crit] 31#31: *50 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:36 [crit] 31#31: *51 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:36 [crit] 31#31: *52 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:37 [crit] 33#33: *53 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:37 [crit] 33#33: *55 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:38 [crit] 33#33: *56 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:39 [crit] 33#33: *60 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:39 [crit] 33#33: *61 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:40 [crit] 33#33: *62 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:41 [crit] 32#32: *69 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:41 [crit] 32#32: *70 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:41 [crit] 32#32: *71 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:42 [crit] 32#32: *74 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:43 [crit] 32#32: *75 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:44 [crit] 32#32: *78 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:45 [crit] 32#32: *79 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:46 [crit] 32#32: *80 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:51 [crit] 34#34: *95 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:54 [crit] 35#35: *101 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:39:56 [crit] 35#35: *108 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:08 [crit] 36#36: *133 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:08 [crit] 36#36: *134 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:09 [crit] 36#36: *135 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:09 [crit] 37#37: *136 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:10 [crit] 37#37: *137 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:10 [crit] 37#37: *138 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:11 [crit] 37#37: *139 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:11 [crit] 37#37: *140 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:11 [crit] 37#37: *141 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:14 [crit] 37#37: *148 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:15 [crit] 37#37: *149 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:15 [crit] 37#37: *150 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:16 [crit] 37#37: *151 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:16 [crit] 38#38: *152 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:17 [crit] 38#38: *154 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:17 [crit] 38#38: *155 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:18 [crit] 38#38: *156 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:18 [crit] 38#38: *157 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:19 [crit] 38#38: *158 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:19 [crit] 38#38: *159 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:20 [crit] 38#38: *161 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:21 [crit] 38#38: *162 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:21 [crit] 38#38: *163 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:22 [crit] 38#38: *165 SSL_do_handshake() failed (SSL: error:0A00010B:SSL routines::wrong version number error:0A000139:SSL routines::record layer failure) while SSL handshaking, client: 172.18.0.1, server: 0.0.0.0:8443
+2026/05/07 06:40:34 [warn] 39#39: *181 limiting requests, excess: 5.983 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"
+2026/05/07 06:40:34 [warn] 39#39: *182 limiting requests, excess: 5.982 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"
+2026/05/07 06:40:34 [warn] 39#39: *183 limiting requests, excess: 5.980 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"
+2026/05/07 06:40:34 [warn] 39#39: *184 limiting requests, excess: 5.978 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"
+2026/05/07 06:40:34 [warn] 39#39: *185 limiting requests, excess: 5.977 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"
+2026/05/07 06:40:34 [warn] 39#39: *186 limiting requests, excess: 5.975 by zone "login", client: 172.18.0.1, server: _, request: "POST /rest/user/login HTTP/2.0", host: "localhost:8443"

labs/lab11/analysis/rate-limit-access-log.txt

@@ -0,0 +1,6 @@
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-
+172.18.0.1 - - [07/May/2026:06:40:34 +0000] "POST /rest/user/login HTTP/2.0" 429 162 "-" "curl/8.5.0" rt=0.000 uct=- urt=-

labs/lab11/analysis/rate-limit-summary.txt

@@ -0,0 +1,2 @@
+401 6
+429 6

labs/lab11/analysis/rate-limit-test.txt

@@ -0,0 +1,12 @@
+401
+401
+401
+401
+401
+401
+429
+429
+429
+429
+429
+429