1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
|
<!DOCTYPE html>
<script>
'use strict';
window.onload = function() {
// When the private-state-token-redemption permissions policy is enabled, redemption
// and signing ("send-redemption-record") should both be available; when it's disabled,
// they should both be unavailable. Send the number of available operations
// upstream in order to enforce this in assertions.
let num_enabled = 4;
try {
new Request("https://issuer.example/", {
privateToken: {
version: 1,
operation: "token-redemption"
}
});
} catch (e) {
num_enabled--;
}
try {
new Request("https://destination.example/", {
privateToken: {
version: 1,
operation: "send-redemption-record",
issuers: ["https://issuer.example/"]
}
});
} catch (e) {
num_enabled--;
}
try {
const xhr = new XMLHttpRequest();
xhr.open("GET", "https://issuer.example/");
xhr.setPrivateToken({
version: 1,
operation: "token-redemption"
});
} catch (e) {
num_enabled--;
}
try {
const xhr = new XMLHttpRequest();
xhr.open("GET", "https://destination.example/");
xhr.setPrivateToken({
version: 1,
operation: "send-redemption-record",
issuers: ["https://issuer.example/"]
});
} catch (e) {
num_enabled--;
}
parent.postMessage({
type: 'availability-result',
num_operations_enabled: num_enabled,
}, '*');
}
</script>
|
