diff options
Diffstat (limited to 'testing/web-platform/tests/permissions-policy/private-state-token-issue-disabled-by-permissions-policy.tentative.https.sub.html')
-rw-r--r-- | testing/web-platform/tests/permissions-policy/private-state-token-issue-disabled-by-permissions-policy.tentative.https.sub.html | 67 |
1 files changed, 67 insertions, 0 deletions
diff --git a/testing/web-platform/tests/permissions-policy/private-state-token-issue-disabled-by-permissions-policy.tentative.https.sub.html b/testing/web-platform/tests/permissions-policy/private-state-token-issue-disabled-by-permissions-policy.tentative.https.sub.html new file mode 100644 index 0000000000..0c72b3da88 --- /dev/null +++ b/testing/web-platform/tests/permissions-policy/private-state-token-issue-disabled-by-permissions-policy.tentative.https.sub.html @@ -0,0 +1,67 @@ +<!DOCTYPE html> +<body> + <script src=/resources/testharness.js></script> + <script src=/resources/testharnessreport.js></script> + <script src=/permissions-policy/resources/permissions-policy.js></script> + <script> + 'use strict'; + var same_origin_src = '/permissions-policy/resources/permissions-policy-private-state-token-issuance.html'; + var cross_origin_src = 'https://{{domains[www]}}:{{ports[https][0]}}' + + same_origin_src; + var test_desc_begin = 'Permissions policy header "private-state-token-issuance=()"'; + + test(() => { + + assert_throws_dom('NotAllowedError', () => { + const issue_request = new Request("https://issuer.example/", { + privateToken: { + version: 1, + operation: "token-request" + } + }); + }); + + assert_throws_dom('NotAllowedError', () => { + const xhr = new XMLHttpRequest(); + xhr.open("GET", "https://issuer.example/"); + xhr.setPrivateToken({ + version: 1, + operation: "token-request" + }); + }); + + }, test_desc_begin + ' disallows the top-level document.'); + + async_test(t => { + test_feature_availability('Private State Token issuance request', t, + same_origin_src, + (data, desc) => { + assert_equals(data.num_operations_enabled, 0, desc); + }); + }, test_desc_begin + ' disallows same-origin iframes.'); + + async_test(t => { + test_feature_availability('Private State Token issuance request', t, + cross_origin_src, + (data, desc) => { + assert_equals(data.num_operations_enabled, 0, desc); + }); + }, test_desc_begin + ' disallows cross-origin iframes.'); + + async_test(t => { + test_feature_availability( + 'Private State Token issuance request', t, same_origin_src, + (data, desc) => { + assert_equals(data.num_operations_enabled, 0, desc); + }, 'private-state-token-issuance'); + }, test_desc_begin + ' and allow="private-state-token-issuance" disallows same-origin iframes.'); + + async_test(t => { + test_feature_availability( + 'Private State Token issuance request', t, cross_origin_src, + (data, desc) => { + assert_equals(data.num_operations_enabled, 0, desc); + }, 'private-state-token-issuance'); + }, test_desc_begin + ' and allow="private-state-token-issuance" disallows cross-origin iframes.'); + </script> +</body> |