feat(saml): implementation of saml for ZITADEL v2 (#3618)

internal/domain/key_pair.go

@@ -10,22 +10,32 @@ import (
 type KeyPair struct {
 	es_models.ObjectRoot
 
-	Usage      KeyUsage
-	Algorithm  string
-	PrivateKey *Key
-	PublicKey  *Key
+	Usage       KeyUsage
+	Algorithm   string
+	PrivateKey  *Key
+	PublicKey   *Key
+	Certificate *Key
 }
 
 type KeyUsage int32
 
 const (
 	KeyUsageSigning KeyUsage = iota
+	KeyUsageSAMLMetadataSigning
+	KeyUsageSAMLResponseSinging
+	KeyUsageSAMLCA
 )
 
 func (u KeyUsage) String() string {
 	switch u {
 	case KeyUsageSigning:
 		return "sig"
+	case KeyUsageSAMLCA:
+		return "saml_ca"
+	case KeyUsageSAMLResponseSinging:
+		return "saml_response_sig"
+	case KeyUsageSAMLMetadataSigning:
+		return "saml_metadata_sig"
 	}
 	return ""
 }
@@ -38,7 +48,8 @@ type Key struct {
 func (k *KeyPair) IsValid() bool {
 	return k.Algorithm != "" &&
 		k.PrivateKey != nil && k.PrivateKey.IsValid() &&
-		k.PublicKey != nil && k.PublicKey.IsValid()
+		k.PublicKey != nil && k.PublicKey.IsValid() &&
+		k.Certificate != nil && k.Certificate.IsValid()
 }
 
 func (k *Key) IsValid() bool {