Fix namespaced IncludeToken-attribute

Author: tvdijen

src/XML/sp_200507/AbstractIssuedTokenType.php

@@ -35,11 +35,6 @@ abstract class AbstractIssuedTokenType extends AbstractSpElement
     /** The namespace-attribute for the xs:anyAttribute element */
     public const string XS_ANY_ATTR_NAMESPACE = NS::ANY;
 
-    /** The exclusions for the xs:anyAttribute element */
-    public const array XS_ANY_ATTR_EXCLUSIONS = [
-        ['http://schemas.xmlsoap.org/ws/2005/07/securitypolicy', 'IncludeToken'],
-    ];
-
 
     /**
      * IssuedTokenType constructor.
@@ -48,18 +43,16 @@ abstract class AbstractIssuedTokenType extends AbstractSpElement
      *   \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\RequestSecurityTokenTemplate
      * ) $requestSecurityTokenTemplate
      * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Issuer|null $issuer
-     * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue|null $includeToken
      * @param \SimpleSAML\XML\SerializableElementInterface[] $elts
      * @param list<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final public function __construct(
         protected RequestSecurityTokenTemplate $requestSecurityTokenTemplate,
         protected ?Issuer $issuer = null,
-        ?IncludeTokenValue $includeToken = null,
         array $elts = [],
         array $namespacedAttributes = [],
     ) {
-        $this->setIncludeToken($includeToken);
+        $this->setIncludeToken($namespacedAttributes);
         $this->setElements($elts);
         $this->setAttributesNS($namespacedAttributes);
     }
@@ -114,7 +107,6 @@ public static function fromXML(DOMElement $xml): static
         return new static(
             $requestSecurityTokenTemplate[0],
             array_pop($issuer),
-            self::getOptionalAttribute($xml, 'IncludeToken', IncludeTokenValue::class, null),
             self::getChildElementsFromXML($xml),
             self::getAttributesNSFromXML($xml),
         );
@@ -128,10 +120,6 @@ public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
 
-        if ($this->getIncludeToken() !== null) {
-            $e->setAttribute('IncludeToken', $this->getIncludeToken()->getValue());
-        }
-
         if ($this->getIssuer() !== null) {
             $this->getIssuer()->toXML($e);
         }

src/XML/sp_200507/AbstractSecureConversationTokenType.php

@@ -33,27 +33,20 @@ abstract class AbstractSecureConversationTokenType extends AbstractSpElement
     /** The namespace-attribute for the xs:anyAttribute element */
     public const string XS_ANY_ATTR_NAMESPACE = NS::ANY;
 
-    /** The exclusions for the xs:anyAttribute element */
-    public const array XS_ANY_ATTR_EXCLUSIONS = [
-        ['http://schemas.xmlsoap.org/ws/2005/07/securitypolicy', 'IncludeToken'],
-    ];
-
 
     /**
      * SecureConversationTokenType constructor.
      *
      * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Issuer|null $issuer
-     * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue|null $includeToken
      * @param array<\SimpleSAML\XML\SerializableElementInterface> $elts
      * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final public function __construct(
         protected ?Issuer $issuer,
-        ?IncludeTokenValue $includeToken = null,
         array $elts = [],
         array $namespacedAttributes = [],
     ) {
-        $this->setIncludeToken($includeToken);
+        $this->setIncludeToken($namespacedAttributes);
         $this->setElements($elts);
         $this->setAttributesNS($namespacedAttributes);
     }
@@ -76,7 +69,6 @@ public function getIssuer(): ?Issuer
     public function isEmptyElement(): bool
     {
         return empty($this->getIssuer())
-            && empty($this->getIncludeToken())
             && empty($this->getAttributesNS())
             && empty($this->getElements());
     }
@@ -104,7 +96,6 @@ public static function fromXML(DOMElement $xml): static
 
         return new static(
             array_pop($issuer),
-            self::getOptionalAttribute($xml, 'IncludeToken', IncludeTokenValue::class, null),
             self::getChildElementsFromXML($xml),
             self::getAttributesNSFromXML($xml),
         );
@@ -118,10 +109,6 @@ public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
 
-        if ($this->getIncludeToken() !== null) {
-            $e->setAttribute('IncludeToken', $this->getIncludeToken()->getValue());
-        }
-
         if ($this->getIssuer() !== null) {
             $this->getIssuer()->toXML($e);
         }

src/XML/sp_200507/AbstractSpnegoContextTokenType.php

@@ -33,27 +33,20 @@ abstract class AbstractSpnegoContextTokenType extends AbstractSpElement
     /** The namespace-attribute for the xs:anyAttribute element */
     public const string XS_ANY_ATTR_NAMESPACE = NS::ANY;
 
-    /** The exclusions for the xs:anyAttribute element */
-    public const array XS_ANY_ATTR_EXCLUSIONS = [
-        ['http://schemas.xmlsoap.org/ws/2005/07/securitypolicy', 'IncludeToken'],
-    ];
-
 
     /**
      * SpnegoContextTokenType constructor.
      *
      * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Issuer|null $issuer
-     * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue|null $includeToken
      * @param array<\SimpleSAML\XML\SerializableElementInterface> $elts
      * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
     final public function __construct(
         protected ?Issuer $issuer,
-        ?IncludeTokenValue $includeToken = null,
         array $elts = [],
         array $namespacedAttributes = [],
     ) {
-        $this->setIncludeToken($includeToken);
+        $this->setIncludeToken($namespacedAttributes);
         $this->setElements($elts);
         $this->setAttributesNS($namespacedAttributes);
     }
@@ -76,7 +69,6 @@ public function getIssuer(): ?Issuer
     public function isEmptyElement(): bool
     {
         return empty($this->getIssuer())
-            && empty($this->getIncludeToken())
             && empty($this->getAttributesNS())
             && empty($this->getElements());
     }
@@ -104,7 +96,6 @@ public static function fromXML(DOMElement $xml): static
 
         return new static(
             array_pop($issuer),
-            self::getOptionalAttribute($xml, 'IncludeToken', IncludeTokenValue::class, null),
             self::getChildElementsFromXML($xml),
             self::getAttributesNSFromXML($xml),
         );
@@ -118,10 +109,6 @@ public function toXML(?DOMElement $parent = null): DOMElement
     {
         $e = $this->instantiateParentElement($parent);
 
-        if ($this->getIncludeToken() !== null) {
-            $e->setAttribute('IncludeToken', $this->getIncludeToken()->getValue());
-        }
-
         if ($this->getIssuer() !== null) {
             $this->getIssuer()->toXML($e);
         }

src/XML/sp_200507/IncludeTokenTypeTrait.php

@@ -4,6 +4,7 @@
 
 namespace SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507;
 
+use SimpleSAML\WebServices\SecurityPolicy\Constants as C;
 use SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue;
 
 /**
@@ -18,7 +19,7 @@ trait IncludeTokenTypeTrait
      *
      * @var \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue|null
      */
-    protected ?IncludeTokenValue $includeToken;
+    protected ?IncludeTokenValue $includeToken = null;
 
 
     /**
@@ -35,10 +36,15 @@ public function getIncludeToken(): ?IncludeTokenValue
     /**
      * Set the value of the includeToken-property
      *
-     * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200507\Type\IncludeTokenValue|null $includeToken
+     * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
-    protected function setIncludeToken(?IncludeTokenValue $includeToken = null): void
+    protected function setIncludeToken(array $namespacedAttributes = []): void
     {
-        $this->includeToken = $includeToken;
+        foreach ($namespacedAttributes as $attr) {
+            if ($attr->getNamespaceURI() === C::NS_SEC_POLICY_11 && $attr->getAttrName() === 'IncludeToken') {
+                $this->includeToken = IncludeTokenValue::fromString($attr->getAttrValue()->getValue());
+                return;
+            }
+        }
     }
 }

src/XML/sp_200702/IncludeTokenTypeTrait.php

@@ -4,6 +4,7 @@
 
 namespace SimpleSAML\WebServices\SecurityPolicy\XML\sp_200702;
 
+use SimpleSAML\WebServices\SecurityPolicy\Constants as C;
 use SimpleSAML\WebServices\SecurityPolicy\XML\sp_200702\Type\IncludeTokenValue;
 
 /**
@@ -37,10 +38,15 @@ public function getIncludeToken(): ?IncludeTokenValue
     /**
      * Set the value of the includeToken-property
      *
-     * @param \SimpleSAML\WebServices\SecurityPolicy\XML\sp_200702\Type\IncludeTokenValue|null $includeToken
+     * @param array<\SimpleSAML\XML\Attribute> $namespacedAttributes
      */
-    protected function setIncludeToken(?IncludeTokenValue $includeToken): void
+    protected function setIncludeToken(array $namespacedAttributes = []): void
     {
-        $this->includeToken = $includeToken;
+        foreach ($namespacedAttributes as $attr) {
+            if ($attr->getNamespaceURI() === C::NS_SEC_POLICY_12 && $attr->getAttrName() === 'IncludeToken') {
+                $this->includeToken = IncludeTokenValue::fromString($attr->getAttrValue()->getValue());
+                return;
+            }
+        }
     }
 }

tests/SecurityPolicy/XML/sp_200507/IssuedTokenTest.php

@@ -114,12 +114,12 @@ public function testMarshallingElementOrdering(): void
             [$attr1],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $issuedToken = new IssuedToken(
             $requestSecurityTokenTemplate,
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
         $issuedTokenElement = $issuedToken->toXML();
 
@@ -181,12 +181,12 @@ public function testMarshalling(): void
             [$attr1],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $issuedToken = new IssuedToken(
             $requestSecurityTokenTemplate,
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
 
         $this->assertEquals(

tests/SecurityPolicy/XML/sp_200507/SecureConversationTokenTest.php

@@ -107,11 +107,11 @@ public function testMarshallingElementOrdering(): void
             [$attr2],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $secureConversationToken = new SecureConversationToken(
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
         $secureConversationTokenElement = $secureConversationToken->toXML();
 
@@ -170,11 +170,11 @@ public function testMarshalling(): void
             [$attr2],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $secureConversationToken = new SecureConversationToken(
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
 
         $this->assertEquals(

tests/SecurityPolicy/XML/sp_200507/SpnegoContextTokenTest.php

@@ -107,11 +107,11 @@ public function testMarshallingElementOrdering(): void
             [$attr2],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $spnegoContextToken = new SpnegoContextToken(
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
         $spnegoContextTokenElement = $spnegoContextToken->toXML();
 
@@ -170,11 +170,11 @@ public function testMarshalling(): void
             [$attr2],
         );
 
+        $includeToken = IncludeTokenValue::fromEnum(IncludeToken::Always)->toAttribute();
         $spnegoContextToken = new SpnegoContextToken(
             $issuer,
-            IncludeTokenValue::fromEnum(IncludeToken::Always),
             [$chunk],
-            [$attr1],
+            [$includeToken, $attr1],
         );
 
         $this->assertEquals(

tests/resources/xml/sp/200507/IssuedToken.xml

@@ -1,4 +1,4 @@
-<sp:IssuedToken xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" xmlns:ssp="urn:x-simplesamlphp:namespace" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:m="https://www.w3schools.com/prices" IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always" ssp:test1="value1">
+<sp:IssuedToken xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" xmlns:ssp="urn:x-simplesamlphp:namespace" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:m="https://www.w3schools.com/prices" sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always" ssp:test1="value1">
   <sp:Issuer ssp:test2="value2">
     <wsa:Address ssp:test2="value2">https://login.microsoftonline.com/login.srf</wsa:Address>
     <wsa:ReferenceProperties>

tests/resources/xml/sp/200507/SecureConversationToken.xml

@@ -1,4 +1,4 @@
-<sp:SecureConversationToken xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" xmlns:ssp="urn:x-simplesamlphp:namespace" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:m="https://www.w3schools.com/prices" IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always" ssp:test1="value1">
+<sp:SecureConversationToken xmlns:sp="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy" xmlns:ssp="urn:x-simplesamlphp:namespace" xmlns:wsa="http://schemas.xmlsoap.org/ws/2004/08/addressing" xmlns:m="https://www.w3schools.com/prices" sp:IncludeToken="http://schemas.xmlsoap.org/ws/2005/07/securitypolicy/IncludeToken/Always" ssp:test1="value1">
   <sp:Issuer ssp:test2="value2">
     <wsa:Address ssp:test2="value2">https://login.microsoftonline.com/login.srf</wsa:Address>
     <wsa:ReferenceProperties>