Adding upstream version 124.0.1.upstream/124.0.1

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
author: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-19 00:47:55 +0000
committer: Daniel Baumann <daniel.baumann@progress-linux.org> 2024-04-19 00:47:55 +0000
commit: 26a029d407be480d791972afb5975cf62c9360a6 (patch)
tree: f435a8308119effd964b339f76abb83a57c29483 /testing/web-platform/tests/trust-tokens
parent: Initial commit. (diff)
download: firefox-26a029d407be480d791972afb5975cf62c9360a6.tar.xz
firefox-26a029d407be480d791972afb5975cf62c9360a6.zip
4 files changed, 205 insertions, 0 deletions
diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/README.txt b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt
new file mode 100644
index 0000000000..82d3cc844b
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt
@@ -0,0 +1,5 @@
+These tests confirm that Private State Tokens protocol operations
+executed correctly end to end (in contrast to just checking, as the
+parent directory's trust-token-parameter-validation does, that a
+method's interface is present and correctly rejects invalid
+arguments).
diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html
new file mode 100644
index 0000000000..a384bec3c2
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html
@@ -0,0 +1,22 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>Tests the Private Token API's hasPrivateToken behavior in documents with no top frame</title>
+<link rel="help" href="https://github.com/WICG/trust-token-api" />
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+
+<body>
+  <script>
+    'use strict';
+
+    const frame = document.createElement('iframe');
+    document.body.appendChild(frame);
+    const cachedDocument = window[0].document;
+    frame.remove();
+
+    test(() => {
+      assert_equals(cachedDocument.hasPrivateToken("https://issuer.example"), undefined,
+        "Can't construct a Promise in a destroyed execution context.");
+    }, 'hasPrivateToken in a destroyed document.');
+  </script>
+</body>
diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html
new file mode 100644
index 0000000000..883c438fa9
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html
@@ -0,0 +1,100 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>JavaScript: the Private Token API XHR interface correctly validates its parameters</title>
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script>
+  'use strict';
+
+  test(() => {
+    assert_throws_dom("InvalidStateError", () => {
+      let request = new XMLHttpRequest();
+      request.setPrivateToken({
+        version: 1,
+        operation: 'token-request'
+      });
+    });
+  }, 'Setting XHR Private Token parameters requires that the XHR request be open.');
+
+  test(() => {
+    assert_throws_dom("InvalidStateError", () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.send();
+      request.setPrivateToken({
+        version: 1,
+        operation: 'token-request'
+      });
+    });
+  }, 'Setting XHR Private Token parameters requires that the XHR request not have been sent.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.setPrivateToken({
+        version: 1,
+        operation: "token-request",
+        refreshPolicy: "not a member of the refreshPolicy enum",
+      });
+    });
+  }, 'Private Token operations require valid `refreshPolicy:` values, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.setPrivateToken({
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: []
+      });
+    });
+  }, 'Private Token signing operations require at least one issuer URL.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.setPrivateToken({
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: [3]
+      });
+    });
+  }, 'Private Token operations require string issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.setPrivateToken({
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: ["not a valid URL"]
+      });
+    });
+  }, 'Private Token operations require valid issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      let request = new XMLHttpRequest();
+      request.open('GET', 'https://privatetoken.example');
+      request.setPrivateToken({
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: ["http://not-secure.com"]
+      });
+    });
+  }, 'Private Token operations require secure issuer URLs, if provided.');
+
+  test(() => {
+    let request = new XMLHttpRequest();
+    request.open('GET', 'https://privatetoken.example');
+    request.setPrivateToken({
+      version: 1,
+      operation: "send-redemption-record",
+      issuers: ["http://localhost"]
+    });
+  }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
+</script>
diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
new file mode 100644
index 0000000000..cf24b232e8
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
@@ -0,0 +1,78 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>JavaScript: the Private Token API Fetch method correctly validates its parameters</title>
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script>
+  'use strict';
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "token-request",
+          refreshPolicy: "not a member of the refreshPolicy enum",
+        }
+      });
+    });
+  }, 'Private Token fetches require valid `refreshPolicy:` values, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: []
+        }
+      });
+    });
+  }, 'Private Token signing operations require at least one issuer URL');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: [3]
+        }
+      });
+    });
+  }, 'Private Token signing operations require string issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: ["not a valid URL"]
+        }
+      });
+    });
+  }, 'Private Token signing operations require valid issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: ["http://not-secure.com"]
+        }
+      });
+    });
+  }, 'Private Token fetches require secure issuer URLs, if provided.');
+
+  test(() => {
+    new Request('https://example.com', {
+      privateToken: {
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: ["http://localhost"]
+      }
+    });
+  }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
+</script>
author	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-19 00:47:55 +0000
committer	Daniel Baumann <daniel.baumann@progress-linux.org>	2024-04-19 00:47:55 +0000
commit	26a029d407be480d791972afb5975cf62c9360a6 (patch)
tree	f435a8308119effd964b339f76abb83a57c29483 /testing/web-platform/tests/trust-tokens
parent	Initial commit. (diff)
download	firefox-26a029d407be480d791972afb5975cf62c9360a6.tar.xz firefox-26a029d407be480d791972afb5975cf62c9360a6.zip