[SYNCOPE-1969] Adding missing SAMLRegisteredService configurations

client/am/console/src/main/java/org/apache/syncope/client/console/clientapps/ClientAppModalPanelBuilder.java

@@ -64,6 +64,7 @@
 import org.apache.syncope.common.lib.to.SAML2SPClientAppTO;
 import org.apache.syncope.common.lib.types.ClientAppType;
 import org.apache.syncope.common.lib.types.LogoutType;
+import org.apache.syncope.common.lib.types.MetadataCriteriaDirection;
 import org.apache.syncope.common.lib.types.OIDCApplicationType;
 import org.apache.syncope.common.lib.types.OIDCClientAuthenticationMethod;
 import org.apache.syncope.common.lib.types.OIDCGrantType;
@@ -73,7 +74,9 @@
 import org.apache.syncope.common.lib.types.OIDCTokenEncryptionEncoding;
 import org.apache.syncope.common.lib.types.OIDCTokenSigningAlg;
 import org.apache.syncope.common.lib.types.PolicyType;
+import org.apache.syncope.common.lib.types.SAML2BindingType;
 import org.apache.syncope.common.lib.types.SAML2SPNameId;
+import org.apache.syncope.common.lib.types.SigningCredentialType;
 import org.apache.syncope.common.lib.types.XmlSecAlgorithm;
 import org.apache.syncope.common.rest.api.service.SAML2IdPEntityService;
 import org.apache.wicket.Component;
@@ -518,6 +521,46 @@ public String getObject() {
                             "field", "metadataSignatureLocation",
                             new PropertyModel<>(clientAppTO, "metadataSignatureLocation"), false));
 
+                    AjaxDropDownChoicePanel<MetadataCriteriaDirection> metadataCriteriaDirection =
+                        new AjaxDropDownChoicePanel<>(
+                            "field", "metadataCriteriaDirection",
+                            new PropertyModel<>(clientAppTO, "metadataCriteriaDirection"),
+                            false);
+                    metadataCriteriaDirection.setChoices(List.of(MetadataCriteriaDirection.values()));
+                    fields.add(metadataCriteriaDirection);
+
+                    fields.add(new AjaxTextFieldPanel(
+                        "field", "metadataCriteriaPattern",
+                        new PropertyModel<>(clientAppTO, "metadataCriteriaPattern"), false));
+
+                    fields.add(new AjaxTextFieldPanel(
+                        "field", "subjectLocality",
+                        new PropertyModel<>(clientAppTO, "subjectLocality"), false));
+
+                    AjaxDropDownChoicePanel<SigningCredentialType> signingCredentialType =
+                        new AjaxDropDownChoicePanel<>(
+                        "field", "signingCredentialType",
+                            new PropertyModel<>(clientAppTO, "signingCredentialType"),
+                        false);
+                    signingCredentialType.setChoices(List.of(SigningCredentialType.values()));
+                    fields.add(signingCredentialType);
+
+                    AjaxDropDownChoicePanel<SAML2BindingType> logoutResponseBinding =
+                        new AjaxDropDownChoicePanel<>(
+                            "field", "logoutResponseBinding",
+                            new PropertyModel<>(clientAppTO, "logoutResponseBinding"),
+                            false);
+                    logoutResponseBinding.setChoices(List.of(SAML2BindingType.values()));
+                    fields.add(logoutResponseBinding);
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "logoutResponseEnabled",
+                        new PropertyModel<>(clientAppTO, "logoutResponseEnabled"), false));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "requireSignedRoot",
+                        new PropertyModel<>(clientAppTO, "requireSignedRoot"), false));
+
                     fields.add(new AjaxCheckBoxPanel(
                             "field", "signAssertions", new PropertyModel<>(clientAppTO, "signAssertions")));
 
@@ -530,6 +573,78 @@ public String getObject() {
                     fields.add(new AjaxCheckBoxPanel(
                             "field", "encryptAssertions", new PropertyModel<>(clientAppTO, "encryptAssertions")));
 
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "encryptAttributes",
+                        new PropertyModel<>(clientAppTO, "encryptAttributes")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingAssertionNameId",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingAssertionNameId")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationInResponseTo",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationInResponseTo")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingResponseInResponseTo",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingResponseInResponseTo")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationNotOnOrAfter",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationNotOnOrAfter")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationRecipient",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationRecipient")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationRecipient",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationRecipient")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                            "field", "skipGeneratingSubjectConfirmationAddress", 
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationAddress")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationNotBefore",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationNotBefore")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSubjectConfirmationNameId",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSubjectConfirmationNameId")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingNameIdQualifiers",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingNameIdQualifiers")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingTransientNameId",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingTransientNameId")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipValidatingAuthnRequest",
+                        new PropertyModel<>(clientAppTO, "skipValidatingAuthnRequest")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingServiceProviderNameIdQualifier",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingServiceProviderNameIdQualifier")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingAuthenticatingAuthority",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingAuthenticatingAuthority")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingNameIdQualifier",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingNameIdQualifier")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "skipGeneratingSessionNotOnOrAfter",
+                        new PropertyModel<>(clientAppTO, "skipGeneratingSessionNotOnOrAfter")));
+
+                    fields.add(new AjaxCheckBoxPanel(
+                        "field", "validateMetadataCertificates",
+                        new PropertyModel<>(clientAppTO, "validateMetadataCertificates")));
+
                     fields.add(new AjaxTextFieldPanel(
                             "field", "requiredAuthenticationContextClass",
                             new PropertyModel<>(clientAppTO, "requiredAuthenticationContextClass"), false));

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel.properties

@@ -29,6 +29,30 @@ signAssertions=Sign Assertions
 signResponses=Sign Responses
 encryptionOptional=Encryption Optional
 encryptAssertions=Encrypt Assertions
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+encryptAttributes=Encrypt Attributes
+skipGeneratingAssertionNameId=Skip Generating Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Skip Generating SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Skip Generating Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Skip Generating SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Skip Generating SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Skip Generating SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Skip Generating SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Skip Generating SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Skip Generating NameIdQualifiers
+skipGeneratingTransientNameId=Skip Generating TransientNameId
+skipValidatingAuthnRequest=Skip Validating AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Skip Generating ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Skip Generating AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Skip Generating NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Skip Generating SessionNotOnOrAfter
+validateMetadataCertificates=Validate Metadata Certificates
 requiredNameIdFormat=NameId Format
 clientSecret=Client Secret
 signIdToken=Sign IdToken

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel_fr_CA.properties

@@ -29,6 +29,30 @@ signAssertions=Sign Assertions
 signResponses=Sign Responses
 encryptionOptional=Encryption Optional
 encryptAssertions=Encrypt Assertions
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+encryptAttributes=Encrypt Attributes
+skipGeneratingAssertionNameId=Skip Generating Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Skip Generating SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Skip Generating Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Skip Generating SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Skip Generating SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Skip Generating SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Skip Generating SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Skip Generating SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Skip Generating NameIdQualifiers
+skipGeneratingTransientNameId=Skip Generating TransientNameId
+skipValidatingAuthnRequest=Skip Validating AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Skip Generating ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Skip Generating AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Skip Generating NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Skip Generating SessionNotOnOrAfter
+validateMetadataCertificates=Validate Metadata Certificates
 requiredNameIdFormat=NameId Format
 clientSecret=Client Secret
 signIdToken=Sign IdToken

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel_it.properties

@@ -29,6 +29,30 @@ signAssertions=Firma Assertion
 signResponses=Firma Response
 encryptionOptional=Cifratura Opzionale
 encryptAssertions=Cifratura Assertion
+encryptAttributes=Encrypt Attributes
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+skipGeneratingAssertionNameId=Salta Generazione Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Salta Generazione SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Salta Generazione Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Salta Generazione SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Salta Generazione SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Salta Generazione SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Salta Generazione SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Salta Generazione SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Salta Generazione NameIdQualifiers
+skipGeneratingTransientNameId=Salta Generazione TransientNameId
+skipValidatingAuthnRequest=Salta Validazione AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Salta Generazione ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Salta Generazione AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Salta Generazione NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Salta Generazione SessionNotOnOrAfter
+validateMetadataCertificates=Valida Certificati Metadata
 requiredNameIdFormat=Formato NameId
 clientSecret=Client Secret
 signIdToken=Firma IdToken

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel_ja.properties

@@ -29,6 +29,30 @@ signAssertions=Sign Assertions
 signResponses=Sign Responses
 encryptionOptional=Encryption Optional
 encryptAssertions=Encrypt Assertions
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+encryptAttributes=Encrypt Attributes
+skipGeneratingAssertionNameId=Skip Generating Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Skip Generating SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Skip Generating Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Skip Generating SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Skip Generating SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Skip Generating SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Skip Generating SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Skip Generating SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Skip Generating NameIdQualifiers
+skipGeneratingTransientNameId=Skip Generating TransientNameId
+skipValidatingAuthnRequest=Skip Validating AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Skip Generating ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Skip Generating AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Skip Generating NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Skip Generating SessionNotOnOrAfter
+validateMetadataCertificates=Validate Metadata Certificates
 requiredNameIdFormat=NameId Format
 clientSecret=Client Secret
 signIdToken=Sign IdToken

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel_pt_BR.properties

@@ -29,6 +29,30 @@ signAssertions=Sign Assertions
 signResponses=Sign Responses
 encryptionOptional=Encryption Optional
 encryptAssertions=Encrypt Assertions
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+encryptAttributes=Encrypt Attributes
+skipGeneratingAssertionNameId=Skip Generating Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Skip Generating SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Skip Generating Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Skip Generating SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Skip Generating SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Skip Generating SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Skip Generating SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Skip Generating SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Skip Generating NameIdQualifiers
+skipGeneratingTransientNameId=Skip Generating TransientNameId
+skipValidatingAuthnRequest=Skip Validating AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Skip Generating ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Skip Generating AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Skip Generating NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Skip Generating SessionNotOnOrAfter
+validateMetadataCertificates=Validate Metadata Certificates
 requiredNameIdFormat=NameId Format
 clientSecret=Client Secret
 signIdToken=Sign IdToken

client/am/console/src/main/resources/org/apache/syncope/client/console/clientapps/ClientAppDirectoryPanel_ru.properties

@@ -30,6 +30,30 @@ signAssertions=Sign Assertions
 signResponses=Sign Responses
 encryptionOptional=Encryption Optional
 encryptAssertions=Encrypt Assertions
+metadataCriteriaPattern=Metadata Criteria Pattern
+subjectLocality=Subject Locality
+metadataCriteriaDirection=Metadata Criteria Direction
+signingCredentialType=Signing Credential Type
+logoutResponseBinding=Logout Response Binding
+requireSignedRoot=Require Signed Root
+logoutResponseEnabled=Logout Response Enabled
+encryptAttributes=Encrypt Attributes
+skipGeneratingAssertionNameId=Skip Generating Assertion NameId
+skipGeneratingSubjectConfirmationInResponseTo=Skip Generating SubjectConfirmation In ResponseTO
+skipGeneratingResponseInResponseTo=Skip Generating Response In ResponseTO
+skipGeneratingSubjectConfirmationNotOnOrAfter=Skip Generating SubjectConfirmationNotOnOrAfter
+skipGeneratingSubjectConfirmationRecipient=Skip Generating SubjectConfirmationRecipient
+skipGeneratingSubjectConfirmationAddress=Skip Generating SubjectConfirmationAddress
+skipGeneratingSubjectConfirmationNotBefore=Skip Generating SubjectConfirmationNotBefore
+skipGeneratingSubjectConfirmationNameId=Skip Generating SubjectConfirmationNameId
+skipGeneratingNameIdQualifiers=Skip Generating NameIdQualifiers
+skipGeneratingTransientNameId=Skip Generating TransientNameId
+skipValidatingAuthnRequest=Skip Validating AuthnRequest
+skipGeneratingServiceProviderNameIdQualifier=Skip Generating ServiceProviderNameIdQualifier
+skipGeneratingAuthenticatingAuthority=Skip Generating AuthenticatingAuthority
+skipGeneratingNameIdQualifier=Skip Generating NameIdQualifier
+skipGeneratingSessionNotOnOrAfter=Skip Generating SessionNotOnOrAfter
+validateMetadataCertificates=Validate Metadata Certificates
 requiredNameIdFormat=NameId Format
 clientSecret=Client Secret
 signIdToken=Sign IdToken