summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/trust-tokens
diff options
context:
space:
mode:
Diffstat (limited to 'testing/web-platform/tests/trust-tokens')
-rw-r--r--testing/web-platform/tests/trust-tokens/end-to-end/README.txt5
-rw-r--r--testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html22
-rw-r--r--testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html110
-rw-r--r--testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html90
4 files changed, 227 insertions, 0 deletions
diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/README.txt b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt
new file mode 100644
index 0000000000..82d3cc844b
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/end-to-end/README.txt
@@ -0,0 +1,5 @@
+These tests confirm that Private State Tokens protocol operations
+executed correctly end to end (in contrast to just checking, as the
+parent directory's trust-token-parameter-validation does, that a
+method's interface is present and correctly rejects invalid
+arguments).
diff --git a/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html
new file mode 100644
index 0000000000..587c641d8d
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/end-to-end/has-trust-token-with-no-top-frame.tentative.https.html
@@ -0,0 +1,22 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>Tests the Private Token API's hasPrivateToken behavior in documents with no top frame</title>
+<link rel="help" href="https://github.com/WICG/trust-token-api" />
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+
+<body>
+ <script>
+ 'use strict';
+
+ const frame = document.createElement('iframe');
+ document.body.appendChild(frame);
+ const cachedDocument = window[0].document;
+ frame.remove();
+
+ test(() => {
+ assert_equals(cachedDocument.hasPrivateToken("https://issuer.example", 'private-state-token'), undefined,
+ "Can't construct a Promise in a destroyed execution context.");
+ }, 'hasPrivateToken in a destroyed document.');
+ </script>
+</body>
diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html
new file mode 100644
index 0000000000..56ac7f0e4e
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html
@@ -0,0 +1,110 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>JavaScript: the Trust Token API XHR interface correctly validates its parameters</title>
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script>
+ 'use strict';
+
+ test(() => {
+ assert_throws_dom("InvalidStateError", () => {
+ let request = new XMLHttpRequest();
+ request.setTrustToken({
+ type: 'token-request'
+ });
+ });
+ }, 'Setting XHR Trust Tokens parameters requires that the XHR request be open.');
+
+ test(() => {
+ assert_throws_dom("InvalidStateError", () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.send();
+ request.setTrustToken({
+ type: 'token-request'
+ });
+ });
+ }, 'Setting XHR Trust Tokens parameters requires that the XHR request not have been sent.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({});
+ });
+ }, 'Trust Tokens operations require present `type` values.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "invalid"
+ });
+ });
+ }, 'Trust Tokens operations require valid `type` values.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "token-request",
+ refreshPolicy: "not a member of the refreshPolicy enum",
+ });
+ });
+ }, 'Trust Tokens operations require valid `refreshPolicy:` values, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "send-redemption-record",
+ issuers: []
+ });
+ });
+ }, 'Trust Tokens signing operations require at least one issuer URL.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "send-redemption-record",
+ issuers: [3]
+ });
+ });
+ }, 'Trust Tokens operations require string issuer URLs, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "send-redemption-record",
+ issuers: ["not a valid URL"]
+ });
+ });
+ }, 'Trust Tokens operations require valid issuer URLs, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "send-redemption-record",
+ issuers: ["http://not-secure.com"]
+ });
+ });
+ }, 'Trust Tokens operations require secure issuer URLs, if provided.');
+
+ test(() => {
+ let request = new XMLHttpRequest();
+ request.open('GET', 'https://trusttoken.example');
+ request.setTrustToken({
+ type: "send-redemption-record",
+ issuers: ["http://localhost"]
+ });
+ }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
+</script>
diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
new file mode 100644
index 0000000000..5f01e5527b
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
@@ -0,0 +1,90 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>JavaScript: the Trust Token API Fetch method correctly validates its parameters</title>
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script>
+ 'use strict';
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {}
+ });
+ });
+ }, 'Trust Tokens fetches require present `type` values.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "invalid"
+ }
+ });
+ });
+ }, 'Trust Tokens fetches require valid `type` values.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "token-request",
+ refreshPolicy: "not a member of the refreshPolicy enum",
+ }
+ });
+ });
+ }, 'Trust Tokens fetches require valid `refreshPolicy:` values, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "send-redemption-record",
+ issuers: []
+ }
+ });
+ });
+ }, 'Trust Tokens signing operations require at least one issuer URL');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "send-redemption-record",
+ issuers: [3]
+ }
+ });
+ });
+ }, 'Trust Tokens signing operations require string issuer URLs, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "send-redemption-record",
+ issuers: ["not a valid URL"]
+ }
+ });
+ });
+ }, 'Trust Tokens signing operations require valid issuer URLs, if provided.');
+
+ test(() => {
+ assert_throws_js(TypeError, () => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "send-redemption-record",
+ issuers: ["http://not-secure.com"]
+ }
+ });
+ });
+ }, 'Trust Tokens fetches require secure issuer URLs, if provided.');
+
+ test(() => {
+ new Request('https://example.com', {
+ trustToken: {
+ type: "send-redemption-record",
+ issuers: ["http://localhost"]
+ }
+ });
+ }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
+</script>