2003500 - [wpt-sync] Sync PR 56404 - Digital credentials: move permissions policy files

Status: NEW

(Testing :: web-platform-tests, task, P4)

Description

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

Sync web-platform-tests PR 56404 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/56404
Details from upstream follow.

Marcos Caceres <caceres_m@apple.com> wrote:

Digital credentials: move permissions policy files

In WebKit, we generally only import one directory at a time, so having things in multiple directories means things get out of sync easily.

Comment 1

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

Pushed to try (stability) https://treeherder.mozilla.org/#/jobs?repo=try&revision=64066643fa23b897f3a92dd8d90c686a9ff4b397

Comment 2

[Web Platform Test Sync Bot [:wpt-sync] (Matrix: #interop:mozilla.org)]

CI Results

Ran 9 Firefox configurations based on mozilla-central, and Firefox, Chrome, and Safari on GitHub CI

Total 14 tests and 4 subtests

Status Summary

Firefox

OK : 4[GitHub] 14[Gecko-android-em-14-x86_64-debug-geckoview, Gecko-android-em-14-x86_64-lite-opt-geckoview, Gecko-android-em-14-x86_64-opt-geckoview, Gecko-linux2404-64-debug, Gecko-linux2404-64-opt, Gecko-windows11-32-24h2-debug, Gecko-windows11-32-24h2-opt, Gecko-windows11-64-24h2-debug, Gecko-windows11-64-24h2-opt]
PASS: 4
FAIL: 16[GitHub] 72[Gecko-android-em-14-x86_64-debug-geckoview, Gecko-android-em-14-x86_64-lite-opt-geckoview, Gecko-android-em-14-x86_64-opt-geckoview, Gecko-linux2404-64-debug, Gecko-linux2404-64-opt, Gecko-windows11-32-24h2-debug, Gecko-windows11-32-24h2-opt, Gecko-windows11-64-24h2-debug, Gecko-windows11-64-24h2-opt]

Chrome

OK : 4
PASS: 16

Safari

OK : 4
PASS: 4
FAIL: 12

Links

Gecko CI (Treeherder)
GitHub PR Head
GitHub PR Base

Details

Firefox-only Failures

• /digital-credentials/default-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy is by default 'self' for get().: FAIL
• /digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy header digital-credentials-get=(self) allows the top-level document.: FAIL
  • Permissions-Policy header digital-credentials-get=(self) allows same-origin iframes.: FAIL
  • Permissions-Policy header digital-credentials-get=(self) disallows cross-origin iframes.: FAIL

New Tests That Don't Pass

• /digital-credentials/allow-attribute-with-create.https.html [wpt.fyi]
  • With Create: Policy to use: null, is cross-origin: false, is allowed by policy: true: FAIL
  • With Create: Policy to use: null, is cross-origin: true, is allowed by policy: false: FAIL
  • With Create: Policy to use: digital-credentials-create, is cross-origin: false, is allowed by policy: true: FAIL
  • With Create: Policy to use: digital-credentials-create, is cross-origin: true, is allowed by policy: true: FAIL
  • With Create: Policy to use: digital-credentials-create *, is cross-origin: false, is allowed by policy: true: FAIL
  • With Create: Policy to use: digital-credentials-create *, is cross-origin: true, is allowed by policy: true: FAIL
  • With Create: Policy to use: digital-credentials-create 'none', is cross-origin: false, is allowed by policy: false: FAIL
  • With Create: Policy to use: digital-credentials-create 'none', is cross-origin: true, is allowed by policy: false: FAIL
  • With Create: Policy to use: digital-credentials-create 'self', is cross-origin: false, is allowed by policy: true: FAIL
  • With Create: Policy to use: digital-credentials-create 'self', is cross-origin: true, is allowed by policy: false: FAIL
  • With Create: Policy to use: digital-credentials-create https://www1.web-platform.test:8443, is cross-origin: false, is allowed by policy: false: FAIL
  • With Create: Policy to use: digital-credentials-create https://www1.web-platform.test:8443, is cross-origin: true, is allowed by policy: true: FAIL
• /digital-credentials/allow-attribute-with-get.https.html [wpt.fyi]
  • With Get: Policy to use: null, is cross-origin: false, is allowed by policy: true: FAIL
  • With Get: Policy to use: null, is cross-origin: true, is allowed by policy: false: FAIL
  • With Get: Policy to use: digital-credentials-get, is cross-origin: false, is allowed by policy: true: FAIL
  • With Get: Policy to use: digital-credentials-get, is cross-origin: true, is allowed by policy: true: FAIL
  • With Get: Policy to use: digital-credentials-get *, is cross-origin: false, is allowed by policy: true: FAIL
  • With Get: Policy to use: digital-credentials-get *, is cross-origin: true, is allowed by policy: true: FAIL
  • With Get: Policy to use: digital-credentials-get 'none', is cross-origin: false, is allowed by policy: false: FAIL
  • With Get: Policy to use: digital-credentials-get 'none', is cross-origin: true, is allowed by policy: false: FAIL
  • With Get: Policy to use: digital-credentials-get 'self', is cross-origin: false, is allowed by policy: true: FAIL
  • With Get: Policy to use: digital-credentials-get 'self', is cross-origin: true, is allowed by policy: false: FAIL
  • With Get: Policy to use: digital-credentials-get https://www1.web-platform.test:8443, is cross-origin: false, is allowed by policy: false: FAIL
  • With Get: Policy to use: digital-credentials-get https://www1.web-platform.test:8443, is cross-origin: true, is allowed by policy: true: FAIL
• /digital-credentials/create.disabled-by-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy header digital-credentials-create=() disallows the top-level document.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-create=() disallows same-origin iframes.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-create=() cannot be overridden using the allow attribute.: FAIL (Chrome: PASS, Safari: FAIL)
• /digital-credentials/create.tentative.https.html [wpt.fyi]
  • navigator.credentials.create() API rejects if there are no credential request.: FAIL
  • navigator.credentials.create() API rejects if there are no credential request for same-origin iframe.: FAIL
  • navigator.credentials.create() API rejects if there are no credential request in cross-origin iframe.: FAIL
  • navigator.credentials.create() promise is rejected if called with an aborted controller.: FAIL
  • navigator.credentials.create() promise is rejected if called with an aborted controller in same-origin iframe.: FAIL
  • navigator.credentials.create() promise is rejected if called with an aborted signal in cross-origin iframe.: FAIL
  • navigator.credentials.create() promise is rejected if abort controller is aborted after call to create().: FAIL
  • navigator.credentials.create() promise is rejected if abort controller is aborted after call to create() in cross-origin iframe.: FAIL
  • Mediation is implicitly required and hence ignored. Request is aborted regardless.: FAIL
  • requests field is required in the options object.: FAIL
  • Throws TypeError when request data is not JSON stringifiable.: FAIL
• /digital-credentials/default-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy is by default 'self' for get().: FAIL (Chrome: PASS, Safari: PASS)
  • Permissions-Policy is by default 'self' for create().: FAIL (Chrome: PASS, Safari: FAIL)
• /digital-credentials/digital-credential-user-agent-allows-protocol.https.html [wpt.fyi]
  • User agent does not allow invalid protocol identifiers.: FAIL
• /digital-credentials/digital-credentials-static-methods.tentative.https.html [wpt.fyi]
  • check default isConditionalMediationAvailable() behavior, inherited from Credential interface.: FAIL
  • check default willRequestConditionalCreation() behavior, inherited from Credential interface: FAIL
• /digital-credentials/enabled-on-self-origin-by-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy header digital-credentials-get=(self) allows the top-level document.: FAIL (Chrome: PASS, Safari: PASS)
  • Permissions-Policy header digital-credentials-get=(self) allows same-origin iframes.: FAIL (Chrome: PASS, Safari: PASS)
  • Permissions-Policy header digital-credentials-get=(self) disallows cross-origin iframes.: FAIL (Chrome: PASS, Safari: PASS)
  • Permissions-Policy header explicitly set to digital-credentials-get=(self) cannot be overridden by allow attribute.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-create=(self) allows the top-level document.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-create=(self) allows same-origin iframes.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-create=(self) disallows cross-origin iframes.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header explicitly set to digital-credentials-create=(self) cannot be overridden by allow attribute.: FAIL (Chrome: PASS, Safari: FAIL)
• /digital-credentials/get.disabled-by-permissions-policy.https.sub.html [wpt.fyi]
  • Permissions-Policy header digital-credentials-get=() disallows the top-level document.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-get=() disallows same-origin iframes.: FAIL (Chrome: PASS, Safari: FAIL)
  • Permissions-Policy header digital-credentials-get=() cannot be overridden using the allow attribute.: FAIL (Chrome: PASS, Safari: FAIL)
• /digital-credentials/get.tentative.https.html [wpt.fyi]
  • Type conversion happens on the data member of the DigitalCredentialGetRequest object.: FAIL
  • navigator.credentials.get() API rejects if there are no credential request.: FAIL
  • navigator.credentials.get() API rejects if there are no credential request for same-origin iframe.: FAIL
  • navigator.credentials.get() API rejects if there are no credential request in cross-origin iframe.: FAIL
  • navigator.credentials.get() promise is rejected if called with an aborted controller.: FAIL
  • navigator.credentials.get() promise is rejected if called with an aborted controller in same-origin iframe.: FAIL
  • navigator.credentials.get() promise is rejected if called with an aborted signal in cross-origin iframe.: FAIL
  • navigator.credentials.get() promise is rejected if abort controller is aborted after call to get().: FAIL
  • navigator.credentials.get() promise is rejected if abort controller is aborted after call to get() in cross-origin iframe.: FAIL
  • Mediation is implicitly required and hence ignored. Request is aborted regardless.: FAIL
  • Throws TypeError when request data is not JSON stringifiable.: FAIL
  • requests field is required in the options object.: FAIL
• /digital-credentials/non-fully-active.https.html [wpt.fyi]
  • non-fully active document behavior for CredentialsContainer: FAIL
  • Promise rejects with DOMException when the document becomes non-fully active: FAIL
• /digital-credentials/user-activation.https.html [wpt.fyi]
  • navigator.credentials.get() calling the API without user activation should reject with NotAllowedError.: FAIL
  • navigator.credentials.get() consumes user activation.: FAIL
  • navigator.credentials.create() calling the API without user activation should reject with NotAllowedError.: FAIL
  • navigator.credentials.create() consumes user activation.: FAIL