diff options
Diffstat (limited to 'testing/web-platform/tests/trust-tokens')
4 files changed, 205 insertions, 0 deletions
diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/README.txt b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt new file mode 100644 index 0000000000..82d3cc844b --- /dev/null +++ b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt @@ -0,0 +1,5 @@ +These tests confirm that Private State Tokens protocol operations +executed correctly end to end (in contrast to just checking, as the +parent directory's trust-token-parameter-validation does, that a +method's interface is present and correctly rejects invalid +arguments). diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html new file mode 100644 index 0000000000..a384bec3c2 --- /dev/null +++ b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html @@ -0,0 +1,22 @@ +<!DOCTYPE html> +<meta charset="utf-8"> +<title>Tests the Private Token API's hasPrivateToken behavior in documents with no top frame</title> +<link rel="help" href="https://github.com/WICG/trust-token-api" /> +<script src="/resources/testharness.js"></script> +<script src="/resources/testharnessreport.js"></script> + +<body> + <script> + 'use strict'; + + const frame = document.createElement('iframe'); + document.body.appendChild(frame); + const cachedDocument = window[0].document; + frame.remove(); + + test(() => { + assert_equals(cachedDocument.hasPrivateToken("https://issuer.example"), undefined, + "Can't construct a Promise in a destroyed execution context."); + }, 'hasPrivateToken in a destroyed document.'); + </script> +</body> diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html new file mode 100644 index 0000000000..883c438fa9 --- /dev/null +++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html @@ -0,0 +1,100 @@ +<!DOCTYPE html> +<meta charset="utf-8"> +<title>JavaScript: the Private Token API XHR interface correctly validates its parameters</title> +<script src="/resources/testharness.js"></script> +<script src="/resources/testharnessreport.js"></script> +<script> + 'use strict'; + + test(() => { + assert_throws_dom("InvalidStateError", () => { + let request = new XMLHttpRequest(); + request.setPrivateToken({ + version: 1, + operation: 'token-request' + }); + }); + }, 'Setting XHR Private Token parameters requires that the XHR request be open.'); + + test(() => { + assert_throws_dom("InvalidStateError", () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.send(); + request.setPrivateToken({ + version: 1, + operation: 'token-request' + }); + }); + }, 'Setting XHR Private Token parameters requires that the XHR request not have been sent.'); + + test(() => { + assert_throws_js(TypeError, () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "token-request", + refreshPolicy: "not a member of the refreshPolicy enum", + }); + }); + }, 'Private Token operations require valid `refreshPolicy:` values, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "send-redemption-record", + issuers: [] + }); + }); + }, 'Private Token signing operations require at least one issuer URL.'); + + test(() => { + assert_throws_js(TypeError, () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "send-redemption-record", + issuers: [3] + }); + }); + }, 'Private Token operations require string issuer URLs, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "send-redemption-record", + issuers: ["not a valid URL"] + }); + }); + }, 'Private Token operations require valid issuer URLs, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "send-redemption-record", + issuers: ["http://not-secure.com"] + }); + }); + }, 'Private Token operations require secure issuer URLs, if provided.'); + + test(() => { + let request = new XMLHttpRequest(); + request.open('GET', 'https://privatetoken.example'); + request.setPrivateToken({ + version: 1, + operation: "send-redemption-record", + issuers: ["http://localhost"] + }); + }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.'); +</script> diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html new file mode 100644 index 0000000000..cf24b232e8 --- /dev/null +++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html @@ -0,0 +1,78 @@ +<!DOCTYPE html> +<meta charset="utf-8"> +<title>JavaScript: the Private Token API Fetch method correctly validates its parameters</title> +<script src="/resources/testharness.js"></script> +<script src="/resources/testharnessreport.js"></script> +<script> + 'use strict'; + + test(() => { + assert_throws_js(TypeError, () => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "token-request", + refreshPolicy: "not a member of the refreshPolicy enum", + } + }); + }); + }, 'Private Token fetches require valid `refreshPolicy:` values, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "send-redemption-record", + issuers: [] + } + }); + }); + }, 'Private Token signing operations require at least one issuer URL'); + + test(() => { + assert_throws_js(TypeError, () => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "send-redemption-record", + issuers: [3] + } + }); + }); + }, 'Private Token signing operations require string issuer URLs, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "send-redemption-record", + issuers: ["not a valid URL"] + } + }); + }); + }, 'Private Token signing operations require valid issuer URLs, if provided.'); + + test(() => { + assert_throws_js(TypeError, () => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "send-redemption-record", + issuers: ["http://not-secure.com"] + } + }); + }); + }, 'Private Token fetches require secure issuer URLs, if provided.'); + + test(() => { + new Request('https://example.com', { + privateToken: { + version: 1, + operation: "send-redemption-record", + issuers: ["http://localhost"] + } + }); + }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.'); +</script> |