| Pass | Setting XHR Private Token parameters requires that the XHR request be open. | Asserts run| Pass | assert_throws_dom("InvalidStateError", function "() => { let request = new XMLHttpRequest(); request.setPrivateToken({ version: 1, operation: 'token-request' }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:10:5) |
|
| Pass | Setting XHR Private Token parameters requires that the XHR request not have been sent. | Asserts run| Pass | assert_throws_dom("InvalidStateError", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.send(); request.setPrivateToken({ version: 1, operation: 'token-request' }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:20:5) |
|
| Pass | Private Token operations require valid `refreshPolicy:` values, if provided. | Asserts run| Pass | assert_throws_js(function "function TypeError() { [native code] }", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.setPrivateToken({ version: 1, operation: "token-request", refreshPolicy: "not a member of the refreshPolicy enum", }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:32:5) |
|
| Pass | Private Token signing operations require at least one issuer URL. | Asserts run| Pass | assert_throws_js(function "function TypeError() { [native code] }", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.setPrivateToken({ version: 1, operation: "send-redemption-record", issuers: [] }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:44:5) |
|
| Pass | Private Token operations require string issuer URLs, if provided. | Asserts run| Pass | assert_throws_js(function "function TypeError() { [native code] }", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.setPrivateToken({ version: 1, operation: "send-redemption-record", issuers: [3] }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:56:5) |
|
| Pass | Private Token operations require valid issuer URLs, if provided. | Asserts run| Pass | assert_throws_js(function "function TypeError() { [native code] }", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.setPrivateToken({ version: 1, operation: "send-redemption-record", issuers: ["not a valid URL"] }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:68:5) |
|
| Pass | Private Token operations require secure issuer URLs, if provided. | Asserts run| Pass | assert_throws_js(function "function TypeError() { [native code] }", function "() => { let request = new XMLHttpRequest(); request.open('GET', 'https://privatetoken.example'); request.setPrivateToken({ version: 1, operation: "send-redemption-record", issuers: ["http://not-secure.com"] }); }")
at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation-xhr.tentative.https.html:80:5) |
|
| Pass | Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed. | Asserts runNo asserts ran |