1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
<!DOCTYPE html>
<body>
<script src=/resources/testharness.js></script>
<script src=/resources/testharnessreport.js></script>
<script src=/feature-policy/resources/featurepolicy.js></script>
<script>
'use strict';
var same_origin_src = '/feature-policy/resources/feature-policy-payment.html';
var cross_origin_src = 'https://{{domains[www]}}:{{ports[https][0]}}' +
same_origin_src;
var header = 'Feature-Policy header {"payment" : ["*"]}';
test(() => {
var supportedMethods = [ { supportedMethods: 'https://{{domains[nonexistent]}}/payment-request' } ];
var details = {
total: { label: 'Test', amount: { currency: 'USD', value: '5.00' } }
};
try {
new PaymentRequest(supportedMethods, details);
} catch (e) {
assert_unreached();
}
}, header + ' allows the top-level document.');
async_test(t => {
test_feature_availability('PaymentRequest()', t, same_origin_src,
expect_feature_available_default);
}, header + ' allows same-origin iframes.');
async_test(t => {
test_feature_availability('PaymentRequest()', t, cross_origin_src,
expect_feature_unavailable_default);
}, header + ' disallows cross-origin iframes.');
async_test(t => {
test_feature_availability('PaymentRequest()', t, cross_origin_src,
expect_feature_available_default, 'payment');
}, header + ' allow="payment" allows cross-origin iframes.');
</script>
</body>
|
