From eadc660d35e14eba9d3a9c199f10cc293857b747 Mon Sep 17 00:00:00 2001
From: John Dennis <jdennis@redhat.com>
Date: Thu, 15 Oct 2015 11:32:50 -0400
Subject: [PATCH] Add missing urn constants used in PAOS HTTP header

The new OASIS "SAML V2.0 Enhanced Client or Proxy Profile Version 2.0"
specification added new options that can appear in the PAOS HTTP header.

Section 2.3.1 enumerates the following URN options which can appear
in the PAOS HEADER:

urn:oasis:names:tc:SAML:protocol:ext:channel-binding
urn:oasis:names:tc:SAML:2.0:cm:holder-of-key
urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp:2.0:WantAuthnRequestsSigned
urn:oasis:names:tc:SAML:2.0:conditions:delegation

Of these only the holder-of-key was previously defined in Lasso,
this patch adds the other 3 constants.

License: MIT
Signed-off-by: John Dennis <jdennis@redhat.com>
---
 lasso/xml/saml-2.0/saml2_strings.h |  9 +++++++++
 lasso/xml/strings.h                | 10 ++++++++++
 2 files changed, 19 insertions(+)

diff --git a/lasso/xml/saml-2.0/saml2_strings.h b/lasso/xml/saml-2.0/saml2_strings.h
index b0505286..f6892125 100644
--- a/lasso/xml/saml-2.0/saml2_strings.h
+++ b/lasso/xml/saml-2.0/saml2_strings.h
@@ -414,4 +414,13 @@
 #define LASSO_SAML2_ATTRIBUTE_PROFILE_UUID "urn:oasis:names:tc:SAML:2.0:profiles:attribute:UUID"
 #define LASSO_SAML2_ATTRIBUTE_PROFILE_DCE "urn:oasis:names:tc:SAML:2.0:profiles:attribute:DCE"
 
+/* SAML 2.0 SSO Profile */
+
+#define LASSO_SAML2_ECP_PROFILE_WANT_AUTHN_SIGNED "urn:oasis:names:tc:SAML:2.0:profiles:SSO:ecp:2.0:WantAuthnRequestsSigned"
+
+/* SAML 2.0 Conditions */
+
+#define LASSO_SAML2_CONDITIONS_DELEGATION "urn:oasis:names:tc:SAML:2.0:conditions:delegation"
+
+
 #endif /* __LASSO_SAML2_STRINGS_H__ */
diff --git a/lasso/xml/strings.h b/lasso/xml/strings.h
index e0de9188..3abd53ee 100644
--- a/lasso/xml/strings.h
+++ b/lasso/xml/strings.h
@@ -927,6 +927,16 @@
 #define LASSO_SAML_CONFIRMATION_METHOD_SENDER_VOUCHES	 \
 	"urn:oasis:names:tc:SAML:1.0:cm:sender-vouches"
 
+/* Extensions */
+
+/**
+ * LASSO_SAML_EXT_CHANNEL_BINDING:
+ *
+ * Indicates support for channel binding
+ *
+ *
+#define LASSO_SAML_EXT_CHANNEL_BINDING "urn:oasis:names:tc:SAML:protocol:ext:channel-binding"
+
 /*****************************************************************************/
 /* POAS BINDING                                                              */
 /*****************************************************************************/