Adding upstream version 1:115.7.0.upstream/1%115.7.0upstream

Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>

1 files changed, 78 insertions, 0 deletions

diff --git a/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
new file mode 100644
index 0000000000..cf24b232e8
--- /dev/null
+++ b/testing/web-platform/tests/trust-tokens/trust-token-parameter-validation.tentative.https.html
@@ -0,0 +1,78 @@
+<!DOCTYPE html>
+<meta charset="utf-8">
+<title>JavaScript: the Private Token API Fetch method correctly validates its parameters</title>
+<script src="/resources/testharness.js"></script>
+<script src="/resources/testharnessreport.js"></script>
+<script>
+  'use strict';
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "token-request",
+          refreshPolicy: "not a member of the refreshPolicy enum",
+        }
+      });
+    });
+  }, 'Private Token fetches require valid `refreshPolicy:` values, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: []
+        }
+      });
+    });
+  }, 'Private Token signing operations require at least one issuer URL');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: [3]
+        }
+      });
+    });
+  }, 'Private Token signing operations require string issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: ["not a valid URL"]
+        }
+      });
+    });
+  }, 'Private Token signing operations require valid issuer URLs, if provided.');
+
+  test(() => {
+    assert_throws_js(TypeError, () => {
+      new Request('https://example.com', {
+        privateToken: {
+          version: 1,
+          operation: "send-redemption-record",
+          issuers: ["http://not-secure.com"]
+        }
+      });
+    });
+  }, 'Private Token fetches require secure issuer URLs, if provided.');
+
+  test(() => {
+    new Request('https://example.com', {
+      privateToken: {
+        version: 1,
+        operation: "send-redemption-record",
+        issuers: ["http://localhost"]
+      }
+    });
+  }, 'Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.');
+</script>