JavaScript: the Private Token API Fetch method correctly validates its parameters

Summary

Harness status: OK

Found 6 tests

6 Pass

Details

Result

Test Name

Message

Pass

Private Token fetches require valid `refreshPolicy:` values, if provided.

Asserts run

Pass

assert_throws_js(function "function TypeError() { [native code] }", function "() => {       new Request('https://example.com', {         privateToken: {           version: 1,           operation: "token-request",           refreshPolicy: "not a member of the refreshPolicy enum",         }       });     }")
    at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation.tentative.https.html:10:5)

Pass

Private Token signing operations require at least one issuer URL

Asserts run

Pass

assert_throws_js(function "function TypeError() { [native code] }", function "() => {       new Request('https://example.com', {         privateToken: {           version: 1,           operation: "send-redemption-record",           issuers: []         }       });     }")
    at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation.tentative.https.html:22:5)

Pass

Private Token signing operations require string issuer URLs, if provided.

Asserts run

Pass

assert_throws_js(function "function TypeError() { [native code] }", function "() => {       new Request('https://example.com', {         privateToken: {           version: 1,           operation: "send-redemption-record",           issuers: [3]         }       });     }")
    at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation.tentative.https.html:34:5)

Pass

Private Token signing operations require valid issuer URLs, if provided.

Asserts run

Pass

assert_throws_js(function "function TypeError() { [native code] }", function "() => {       new Request('https://example.com', {         privateToken: {           version: 1,           operation: "send-redemption-record",           issuers: ["not a valid URL"]         }       });     }")
    at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation.tentative.https.html:46:5)

Pass

Private Token fetches require secure issuer URLs, if provided.

Asserts run

Pass

assert_throws_js(function "function TypeError() { [native code] }", function "() => {       new Request('https://example.com', {         privateToken: {           version: 1,           operation: "send-redemption-record",           issuers: ["http://not-secure.com"]         }       });     }")
    at Test.<anonymous> ( /trust-tokens/trust-token-parameter-validation.tentative.https.html:58:5)

Pass

Since localhost URLs are potentially trustworthy, setting an issuer to localhost should succeed.

Asserts run

No asserts ran