Migrate to xsd-types

Author: tvdijen

src/Assert/Assert.php

@@ -8,7 +8,12 @@
 
 /**
  * @package simplesamlphp/ws-security
+ *
+ * @method static void validWSUDateTime(mixed $value, string $message = '', string $exception = '')
+ * @method static void allWSUDateTime(mixed $value, string $message = '', string $exception = '')
+ * @method static void nullOrValueWSUDateTime(mixed $value, string $message = '', string $exception = '')
  */
 class Assert extends BaseAssert
 {
+    use WSUDateTimeTrait;
 }

src/Assert/WSUDateTimeTrait.php

@@ -0,0 +1,33 @@
+<?php
+
+declare(strict_types=1);
+
+namespace SimpleSAML\WSSecurity\Assert;
+
+use SimpleSAML\Assert\AssertionFailedException;
+use SimpleSAML\WSSecurity\Exception\ProtocolViolationException;
+
+/**
+ * @package simplesamlphp/ws-security
+ */
+trait WSUDateTimeTrait
+{
+    /**
+     * @param string $value
+     * @param string $message
+     */
+    protected static function validWSUDateTime(string $value, string $message = ''): void
+    {
+        parent::validDateTime($value);
+
+        try {
+            parent::endsWith(
+                $value,
+                'Z',
+                '%s is not a DateTime expressed in the UTC timezone using the \'Z\' timezone identifier.',
+            );
+        } catch (AssertionFailedException $e) {
+            throw new ProtocolViolationException($e->getMessage());
+        }
+    }
+}

src/XML/wst_200512/Forwardable.php

@@ -7,7 +7,7 @@
 use SimpleSAML\XML\SchemaValidatableElementInterface;
 use SimpleSAML\XML\SchemaValidatableElementTrait;
 use SimpleSAML\XML\TypedTextContentTrait;
-use SimpleSAML\XMLSchema\Type\BooleanValue
+use SimpleSAML\XMLSchema\Type\BooleanValue;
 
 /**
  * A Forwardable element

src/XML/wsu/AbstractAttributedDateTime.php

@@ -4,15 +4,16 @@
 
 namespace SimpleSAML\WSSecurity\XML\wsu;
 
-use DateTimeImmutable;
 use DOMElement;
 use SimpleSAML\WSSecurity\Assert\Assert;
 use SimpleSAML\WSSecurity\Constants as C;
 use SimpleSAML\WSSecurity\Exception\ProtocolViolationException;
+use SimpleSAML\WSSecurity\XML\wsu\Type\IDValue;
+use SimpleSAML\WSSecurity\XML\wsu\Type\DateTimeValue;
 use SimpleSAML\XML\Attribute as XMLAttribute;
-use SimpleSAML\XML\Exception\InvalidDOMElementException;
 use SimpleSAML\XML\ExtendableAttributesTrait;
-use SimpleSAML\XML\XsNamespace as NS;
+use SimpleSAML\XMLSchema\Exception\InvalidDOMElementException;
+use SimpleSAML\XMLSchema\XML\Constants\NS;
 
 /**
  * Abstract class defining the AttributedDateTime type
@@ -30,24 +31,23 @@ abstract class AbstractAttributedDateTime extends AbstractWsuElement
     /**
      * AbstractAttributedDateTime constructor
      *
-     * @param \DateTimeImmutable $dateTime
-     * @param string|null $Id
+     * @param \SimpleSAML\WSSecurity\XML\wsu\Type\DateTimeValue $dateTime
+     * @param \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null $Id
      * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final public function __construct(
-        protected DateTimeImmutable $dateTime,
-        protected ?string $Id = null,
+        protected DateTimeValue $dateTime,
+        protected ?IDValue $Id = null,
         array $namespacedAttributes = [],
     ) {
-        Assert::nullOrValidNCName($Id);
         $this->setAttributesNS($namespacedAttributes);
     }
 
 
     /**
-     * @return string|null
+     * @return \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null
      */
-    public function getId(): ?string
+    public function getId(): ?IDValue
     {
         return $this->Id;
     }
@@ -56,9 +56,9 @@ public function getId(): ?string
     /**
      * Collect the value of the dateTime property
      *
-     * @return \DateTimeImmutable
+     * @return \SimpleSAML\WSSecurity\XML\wsu\Type\DateTimeValue
      */
-    public function getDateTime(): DateTimeImmutable
+    public function getDateTime(): DateTimeValue
     {
         return $this->dateTime;
     }
@@ -70,25 +70,20 @@ public function getDateTime(): DateTimeImmutable
      * @param \DOMElement $xml
      * @return static
      *
-     * @throws \SimpleSAML\XML\Exception\InvalidDOMElementException
+     * @throws \SimpleSAML\XMLSchema\Exception\InvalidDOMElementException
      *   if the qualified name of the supplied element is wrong
      */
     public static function fromXML(DOMElement $xml): static
     {
         Assert::same($xml->localName, static::getLocalName(), InvalidDOMElementException::class);
         Assert::same($xml->namespaceURI, static::NS, InvalidDOMElementException::class);
 
-        // Time values MUST be expressed in the UTC timezone using the 'Z' timezone identifier
-        // Strip sub-seconds
-        $xml->textContent = preg_replace('/([.][0-9]+)/', '', $xml->textContent, 1);
-        Assert::validDateTime($xml->textContent, ProtocolViolationException::class);
-
         $Id = null;
         if ($xml->hasAttributeNS(static::NS, 'Id')) {
-            $Id = $xml->getAttributeNS(static::NS, 'Id');
+            $Id = IDValue::fromString($xml->getAttributeNS(static::NS, 'Id'));
         }
 
-        return new static(new DateTimeImmutable($xml->textContent), $Id, self::getAttributesNSFromXML($xml));
+        return new static(DateTimeValue::fromString($xml->textContent), $Id, self::getAttributesNSFromXML($xml));
     }
 
 
@@ -99,11 +94,11 @@ public static function fromXML(DOMElement $xml): static
     final public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
-        $e->textContent = $this->getDateTime()->format(C::DATETIME_FORMAT);
+        $e->textContent = $this->getDateTime()->getValue();
 
         $attributes = $this->getAttributesNS();
         if ($this->getId() !== null) {
-            $attributes[] = new XMLAttribute(static::NS, 'wsu', 'Id', $this->getId());
+            $this->getId()->toAttribute()->toXML($e);
         }
 
         foreach ($attributes as $attr) {

src/XML/wsu/AbstractAttributedURI.php

@@ -6,11 +6,13 @@
 
 use DOMElement;
 use SimpleSAML\WSSecurity\Assert\Assert;
+use SimpleSAML\WSSecurity\XML\wsu\Type\IDValue;
 use SimpleSAML\XML\Attribute as XMLAttribute;
-use SimpleSAML\XML\Exception\InvalidDOMElementException;
 use SimpleSAML\XML\ExtendableAttributesTrait;
-use SimpleSAML\XML\URIElementTrait;
-use SimpleSAML\XML\XsNamespace as NS;
+use SimpleSAML\XML\TypedTextContentTrait;
+use SimpleSAML\XMLSchema\Exception\InvalidDOMElementException;
+use SimpleSAML\XMLSchema\Type\AnyURIValue;
+use SimpleSAML\XMLSchema\XML\Constants\NS;
 
 /**
  * Abstract class defining the AttributedURI type
@@ -20,7 +22,10 @@
 abstract class AbstractAttributedURI extends AbstractWsuElement
 {
     use ExtendableAttributesTrait;
-    use URIElementTrait;
+    use TypedTextContentTrait;
+
+    /** @var string */
+    public const TEXTCONTENT_TYPE = AnyURIValue::class;
 
     /** The namespace-attribute for the xs:anyAttribute element */
     public const XS_ANY_ATTR_NAMESPACE = NS::OTHER;
@@ -29,13 +34,13 @@ abstract class AbstractAttributedURI extends AbstractWsuElement
     /**
      * AbstractAttributedURI constructor
      *
-     * @param string $uri
-     * @param string|null $Id
+     * @param \SimpleSAML\XMLSchema\Type\AnyURIValue $uri
+     * @param \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null $Id
      * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final protected function __construct(
-        string $uri,
-        protected ?string $Id = null,
+        AnyURIValue $uri,
+        protected ?IDValue $Id = null,
         array $namespacedAttributes = [],
     ) {
         Assert::nullOrValidNCName($Id);
@@ -46,9 +51,9 @@ final protected function __construct(
 
 
     /**
-     * @return string|null
+     * @return \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null
      */
-    public function getId(): ?string
+    public function getId(): ?IDValue
     {
         return $this->Id;
     }
@@ -60,7 +65,7 @@ public function getId(): ?string
      * @param \DOMElement $xml
      * @return static
      *
-     * @throws \SimpleSAML\XML\Exception\InvalidDOMElementException
+     * @throws \SimpleSAML\XMLSchema\Exception\InvalidDOMElementException
      *   if the qualified name of the supplied element is wrong
      */
     public static function fromXML(DOMElement $xml): static
@@ -70,10 +75,10 @@ public static function fromXML(DOMElement $xml): static
 
         $Id = null;
         if ($xml->hasAttributeNS(static::NS, 'Id')) {
-            $Id = $xml->getAttributeNS(static::NS, 'Id');
+            $Id = IDValue::fromString($xml->getAttributeNS(static::NS, 'Id'));
         }
 
-        return new static($xml->textContent, $Id, self::getAttributesNSFromXML($xml));
+        return new static(AnyURIValue::fromString($xml->textContent), $Id, self::getAttributesNSFromXML($xml));
     }
 
 
@@ -84,11 +89,11 @@ public static function fromXML(DOMElement $xml): static
     final public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
-        $e->textContent = $this->getContent();
+        $e->textContent = $this->getContent()->getValue();
 
         $attributes = $this->getAttributesNS();
         if ($this->getId() !== null) {
-            $attributes[] = new XMLAttribute(static::NS, 'wsu', 'Id', $this->getId());
+            $this->getId()->toAttribute()->toXML($e);
         }
 
         foreach ($attributes as $attr) {

src/XML/wsu/AbstractTimestamp.php

@@ -6,11 +6,12 @@
 
 use DOMElement;
 use SimpleSAML\WSSecurity\Assert\Assert;
+use SimpleSAML\WSSecurity\XML\wsu\Type\IDValue;
 use SimpleSAML\XML\Attribute as XMLAttribute;
-use SimpleSAML\XML\Exception\InvalidDOMElementException;
 use SimpleSAML\XML\ExtendableAttributesTrait;
 use SimpleSAML\XML\ExtendableElementTrait;
-use SimpleSAML\XML\XsNamespace as NS;
+use SimpleSAML\XMLSchema\Exception\InvalidDOMElementException;
+use SimpleSAML\XMLSchema\XML\Constants\NS;
 
 use function array_pop;
 
@@ -42,28 +43,26 @@ abstract class AbstractTimestamp extends AbstractWsuElement
      *
      * @param \SimpleSAML\WSSecurity\XML\wsu\Created|null $created
      * @param \SimpleSAML\WSSecurity\XML\wsu\Expires|null $expires
-     * @param string|null $Id
+     * @param \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null $Id
      * @param array<\SimpleSAML\XML\SerializableElementInterface> $elements
      * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final public function __construct(
         protected ?Created $created = null,
         protected ?Expires $expires = null,
-        protected ?string $Id = null,
+        protected ?IDValue $Id = null,
         array $elements = [],
         array $namespacedAttributes = [],
     ) {
-        Assert::nullOrValidNCName($Id);
-
         $this->setElements($elements);
         $this->setAttributesNS($namespacedAttributes);
     }
 
 
     /**
-     * @return string|null
+     * @return \SimpleSAML\WSSecurity\XML\wsu\Type\IDValue|null
      */
-    public function getId(): ?string
+    public function getId(): ?IDValue
     {
         return $this->Id;
     }
@@ -108,7 +107,7 @@ public function isEmptyElement(): bool
      * @param \DOMElement $xml
      * @return static
      *
-     * @throws \SimpleSAML\XML\Exception\InvalidDOMElementException
+     * @throws \SimpleSAML\XMLSchema\Exception\InvalidDOMElementException
      *   if the qualified name of the supplied element is wrong
      */
     public static function fromXML(DOMElement $xml): static
@@ -122,7 +121,7 @@ public static function fromXML(DOMElement $xml): static
 
         $Id = null;
         if ($xml->hasAttributeNS(static::NS, 'Id')) {
-            $Id = $xml->getAttributeNS(static::NS, 'Id');
+            $Id = IDValue::fromString($xml->getAttributeNS(static::NS, 'Id'));
         }
 
         return new static(
@@ -147,7 +146,7 @@ public function toXML(?DOMElement $parent = null): DOMElement
 
         $attributes = $this->getAttributesNS();
         if ($this->getId() !== null) {
-            $attributes[] = new XMLAttribute(static::NS, 'wsu', 'Id', $this->getId());
+            $this->getId()->toAttribute()->toXML($e);
         }
 
         foreach ($attributes as $attr) {
@@ -158,7 +157,6 @@ public function toXML(?DOMElement $parent = null): DOMElement
         $this->getExpires()?->toXML($e);
 
         foreach ($this->getElements() as $detail) {
-            /** @psalm-var \SimpleSAML\XML\SerializableElementInterface $detail */
             $detail->toXML($e);
         }
 

src/XML/wsu/Type/DateTimeValue.php

@@ -0,0 +1,31 @@
+<?php
+
+declare(strict_types=1);
+
+namespace SimpleSAML\WSSecurity\XML\wsu\Type;
+
+use SimpleSAML\WSSecurity\Assert\Assert;
+use SimpleSAML\WSSecurity\Exception\ProtocolViolationException;
+use SimpleSAML\XMLSchema\Type\DateTimeValue as BaseDateTimeValue;
+
+/**
+ * @package simplesaml/saml2
+ */
+class DateTimeValue extends BaseDateTimeValue
+{
+    // Lowercase p as opposed to the base-class to covert the timestamp to UTC as demanded by the WSSecurity specifications
+    public const DATETIME_FORMAT = 'Y-m-d\\TH:i:sp';
+
+
+    /**
+     * Validate the value.
+     *
+     * @param string $value
+     * @return void
+     */
+    protected function validateValue(string $value): void
+    {
+        // Note: value must already be sanitized before validating
+        Assert::validWSUDateTime($this->sanitizeValue($value), ProtocolViolationException::class);
+    }
+}

src/XML/wsu/Type/IDValue.php

@@ -0,0 +1,26 @@
+<?php
+
+declare(strict_types=1);
+
+namespace SimpleSAML\WSSecurity\XML\wsu\Type;
+
+use SimpleSAML\WSSecurity\Constants as C;
+use SimpleSAML\XML\Attribute;
+use SimpleSAML\XMLSchema\Type\IDValue as XSDIDValue;
+use SimpleSAML\XMLSchema\Type\Interface\AttributeTypeInterface;
+
+/**
+ * @package simplesaml/ws-security
+ */
+class IDValue extends XSDIDValue implements AttributeTypeInterface
+{
+    /**
+     * Convert this value to an attribute
+     *
+     * @return \SimpleSAML\XML\Attribute
+     */
+    public function toAttribute(): Attribute
+    {
+        return new Attribute(C::NS_SEC_UTIL, 'wsu', 'Id', $this);
+    }
+}