feat: add saml request to link to sessions (#9001)

# Which Problems Are Solved

It is currently not possible to use SAML with the Session API.

# How the Problems Are Solved

Add SAML service, to get and resolve SAML requests.
Add SAML session and SAML request aggregate, which can be linked to the
Session to get back a SAMLResponse from the API directly.

# Additional Changes

Update of dependency zitadel/saml to provide all functionality for
handling of SAML requests and responses.

# Additional Context

Closes #6053

---------

Co-authored-by: Livio Spring <livio.a@gmail.com>

internal/static/i18n/bg.yaml

@@ -566,6 +566,13 @@ Errors:
     Token:
       Invalid: Токенът е невалиден
       Expired: Токенът е изтекъл
+    InvalidClient: Токенът не е издаден за този клиент
+  SAMLRequest:
+    AlreadyExists: SAMLRequest вече съществува
+    NotExisting: SAMLRequest не съществува
+    WrongLoginClient: SAMLRequest, създаден от друг клиент за влизане
+  SAMLSession:
+    InvalidClient: SAMLResponse не е издаден за този клиент
   Feature:
     NotExisting: Функцията не съществува
     TypeNotSupported: Типът функция не се поддържа
@@ -640,6 +647,8 @@ AggregateTypes:
   system: Система
   session: Сесия
   web_key: Уеб ключ
+  saml_request: SAML заявка
+  saml_session: SAML сесия
 
 EventTypes:
   execution:

internal/static/i18n/cs.yaml

@@ -547,6 +547,12 @@ Errors:
       Invalid: Token je neplatný
       Expired: Token vypršel
     InvalidClient: Token nebyl vydán pro tohoto klienta
+  SAMLRequest:
+    AlreadyExists: SAMLRequest již existuje
+    NotExisting: SAMLRequest neexistuje
+    WrongLoginClient: SAMLRequest vytvořený jiným přihlašovacím klientem
+  SAMLSession:
+    InvalidClient: Pro tohoto klienta nebyla vydána odpověď SAMLResponse
   Feature:
     NotExisting: Funkce neexistuje
     TypeNotSupported: Typ funkce není podporován
@@ -621,6 +627,8 @@ AggregateTypes:
   system: Systém
   session: Sezení
   web_key: Webový klíč
+  saml_request: Žádost SAML
+  saml_session: Relace SAML
 
 EventTypes:
   execution:

internal/static/i18n/de.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token ist ungültig
       Expired: Token ist abgelaufen
     InvalidClient: Token wurde nicht für diesen Client ausgestellt
+  SAMLRequest:
+    AlreadyExists: SAMLRequest existiert bereits
+    NotExisting: SAMLRequest existiert nicht
+    WrongLoginClient: SAMLRequest wurde con einem andere Login-Client erstellt
+  SAMLSession:
+    InvalidClient: SAMLResponse wurde nicht für diesen Client ausgestellt
   Feature:
     NotExisting: Feature existiert nicht
     TypeNotSupported: Feature Typ wird nicht unterstützt
@@ -623,6 +629,8 @@ AggregateTypes:
   system: System
   session: Session
   web_key: Webschlüssel
+  saml_request: SAML Request
+  saml_session: SAML Session
 
 EventTypes:
   execution:

internal/static/i18n/en.yaml

@@ -550,6 +550,12 @@ Errors:
       Invalid: Token is invalid
       Expired: Token is expired
     InvalidClient: Token was not issued for this client
+  SAMLRequest:
+    AlreadyExists: SAMLRequest already exists
+    NotExisting: SAMLRequest does not exist
+    WrongLoginClient: SAMLRequest created by other login client
+  SAMLSession:
+    InvalidClient: SAMLResponse was not issued for this client
   Feature:
     NotExisting: Feature does not exist
     TypeNotSupported: Feature type is not supported
@@ -624,6 +630,8 @@ AggregateTypes:
   system: System
   session: Session
   web_key: Web Key
+  saml_request: SAML Request
+  saml_session: SAML Session
 
 EventTypes:
   execution:

internal/static/i18n/es.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: El token no es válido
       Expired: El token ha caducado
     InvalidClient: El token no ha sido emitido para este cliente
+  SAMLRequest:
+    AlreadyExists: SAMLRequest ya existe
+    NotExisting: SAMLRequest no existe
+    WrongLoginClient: SAMLRequest creado por otro cliente de inicio de sesión
+  SAMLSession:
+    InvalidClient: SAMLResponse no ha sido emitido para este cliente
   Feature:
     NotExisting: La característica no existe
     TypeNotSupported: El tipo de característica no es compatible
@@ -623,6 +629,8 @@ AggregateTypes:
   system: Sistema
   session: Sesión
   web_key: Clave web
+  saml_request: Solicitud SAML
+  saml_session: Sesión SAML
 
 EventTypes:
   execution:

internal/static/i18n/fr.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Le jeton n'est pas valide
       Expired: Le jeton est expiré
     InvalidClient: Le token n'a pas été émis pour ce client
+  SAMLRequest:
+    AlreadyExists: SAMLRequest existe déjà
+    NotExisting: SAMLRequest n'existe pas
+    WrongLoginClient: SAMLRequest créé par un autre client de connexion
+  SAMLSession:
+    InvalidClient: SAMLResponse n'a pas été émise pour ce client
   Feature:
     NotExisting: La fonctionnalité n'existe pas
     TypeNotSupported: Le type de fonctionnalité n'est pas pris en charge
@@ -623,6 +629,8 @@ AggregateTypes:
   system: Système
   session: Session
   web_key: Clé Web
+  saml_request: Requête SAML
+  saml_session: Session SAML
 
 EventTypes:
   execution:

internal/static/i18n/hu.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: A Token érvénytelen
       Expired: A Token lejárt
     InvalidClient: A Token nem ehhez a klienshez lett kiadva
+  SAMLRequest:
+    AlreadyExists: A SAMLRequest már létezik
+    NotExisting: A SAMLRequest nem létezik
+    WrongLoginClient: A SAMLRequest egy másik bejelentkezési ügyfél által létrehozott
+  SAMLSession:
+    InvalidClient: SAMLResponse nem lett kiadva ehhez az ügyfélhez
   Feature:
     NotExisting: A funkció nem létezik
     TypeNotSupported: A funkció típusa nem támogatott
@@ -599,6 +605,7 @@ Errors:
     FeatureDisabled: A webkulcs funkció le van tiltva
     NoActive: Aktív web kulcs nem található
     NotFound: Web kulcs nem található
+
 AggregateTypes:
   action: Művelet
   instance: Példány
@@ -622,6 +629,9 @@ AggregateTypes:
   system: Rendszer
   session: Munkamenet
   web_key: Webkulcs
+  saml_request: SAML-kérés
+  saml_session: SAML munkamenet
+
 EventTypes:
   execution:
     set: Végrehajtási készlet

internal/static/i18n/id.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token tidak valid
       Expired: Token sudah habis masa berlakunya
     InvalidClient: Token tidak dikeluarkan untuk klien ini
+  SAMLRequest:
+    AlreadyExists: SAMLRequest sudah ada
+    NotExisting: SAMLRequest tidak ada
+    WrongLoginClient: SAMLRequest dibuat oleh klien login lainnya
+  SAMLSession:
+    InvalidClient: SAMLResponse tidak dikeluarkan untuk klien ini
   Feature:
     NotExisting: Fitur tidak ada
     TypeNotSupported: Jenis fitur tidak didukung
@@ -594,6 +600,7 @@ Errors:
     FeatureDisabled: Fitur kunci web dinonaktifkan
     NoActive: Tidak ditemukan kunci web aktif
     NotFound: Kunci web tidak ditemukan
+
 AggregateTypes:
   action: Tindakan
   instance: Contoh
@@ -617,6 +624,9 @@ AggregateTypes:
   system: Sistem
   session: Sidang
   web_key: Kunci Web
+  saml_request: Sesi SAML
+  saml_session: Permintaan SAML
+
 EventTypes:
   execution:
     set: Kumpulan eksekusi

internal/static/i18n/it.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token non è valido
       Expired: Token è scaduto
     InvalidClient: Il token non è stato emesso per questo cliente
+  SAMLRequest:
+    AlreadyExists: SAMLRequest esiste già
+    NotExisting: SAMLRequest non esiste
+    WrongLoginClient: SAMLRequest creato da un altro client di accesso
+  SAMLSession:
+    InvalidClient: SAMLResponse non è stato emesso per questo client
   Feature:
     NotExisting: La funzionalità non esiste
     TypeNotSupported: Il tipo di funzionalità non è supportato
@@ -623,6 +629,8 @@ AggregateTypes:
   system: Sistema
   session: Sessione
   web_key: Chiave Web
+  saml_request: Richiesta SAML
+  saml_session: Sessione SAML
 
 EventTypes:
   execution:

internal/static/i18n/ja.yaml

@@ -538,6 +538,12 @@ Errors:
       Invalid: トークンが無効です
       Expired: トークンの有効期限が切れている
     InvalidClient: トークンが発行されていません
+  SAMLRequest:
+    AlreadyExists: SAMLリクエストはすでに存在します
+    NotExisting: SAMLリクエストが存在しません
+    WrongLoginClient: 他のログイン クライアントによって作成された SAMLRequest
+  SAMLSession:
+    InvalidClient: このクライアントに対してSAMLResponseは発行されませんでした
   Feature:
     NotExisting: 機能が存在しません
     TypeNotSupported: 機能タイプはサポートされていません
@@ -612,6 +618,8 @@ AggregateTypes:
   system: システム
   session: セッション
   web_key: Web キー
+  saml_request: SAML リクエスト
+  saml_session: SAMLセッション
 
 EventTypes:
   execution:

internal/static/i18n/ko.yaml

@@ -550,6 +550,12 @@ Errors:
       Invalid: 토큰이 유효하지 않습니다
       Expired: 토큰이 만료되었습니다
     InvalidClient: 토큰이 이 클라이언트에 대해 발행되지 않았습니다
+  SAMLRequest:
+    AlreadyExists: SAMLRequest가 이미 존재합니다
+    NotExisting: SAMLRequest가 존재하지 않습니다
+    WrongLoginClient: 다른 로그인 클라이언트가 생성한 SAMLRequest
+  SAMLSession:
+    InvalidClient: 이 클라이언트에 대해 SAMLResponse가 발행되지 않았습니다.
   Feature:
     NotExisting: 기능이 존재하지 않습니다
     TypeNotSupported: 기능 유형이 지원되지 않습니다
@@ -624,6 +630,8 @@ AggregateTypes:
   system: 시스템
   session: 세션
   web_key: 웹 키
+  saml_request: SAML 요청
+  saml_session: SAML 세션
 
 EventTypes:
   execution:

internal/static/i18n/mk.yaml

@@ -548,6 +548,12 @@ Errors:
       Invalid: токенот е неважечки
       Expired: токенот е истечен
     InvalidClient: Токен не беше издаден на овој клиент
+  SAMLRequest:
+    AlreadyExists: SAMLRequest веќе постои
+    NotExisting: SAMLRequest не постои
+    WrongLoginClient: SAML Барање создадено од друг клиент за најавување
+  SAMLSession:
+    InvalidClient: SAMLResponse не беше издаден за овој клиент
   Feature:
     NotExisting: Функцијата не постои
     TypeNotSupported: Типот на функција не е поддржан
@@ -622,6 +628,8 @@ AggregateTypes:
   system: Систем
   session: Сесија
   web_key: Веб клуч
+  saml_request: Барање SAML
+  saml_session: SAML сесија
 
 EventTypes:
   execution:

internal/static/i18n/nl.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token is ongeldig
       Expired: Token is verlopen
     InvalidClient: Token is niet uitgegeven voor deze client
+  SAMLRequest:
+    AlreadyExists: SAMLRequest bestaat al
+    NotExisting: SAMLRequest bestaat niet
+    WrongLoginClient: SAMLRequest aangemaakt door andere login client
+  SAMLSession:
+    InvalidClient: SAMLResponse is niet uitgegeven voor deze client
   Feature:
     NotExisting: Functie bestaat niet
     TypeNotSupported: Functie type wordt niet ondersteund
@@ -623,6 +629,8 @@ AggregateTypes:
   system: Systeem
   session: Sessie
   web_key: Websleutel
+  saml_request: SAML-aanvraag
+  saml_session: SAML-sessie
 
 EventTypes:
   execution:

internal/static/i18n/pl.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token jest nieprawidłowy
       Expired: Token wygasł
     InvalidClient: Token nie został wydany dla tego klienta
+  SAMLRequest:
+    AlreadyExists: SAMLRequest już istnieje
+    NotExisting: SAMLRequest nie istnieje
+    WrongLoginClient: SAMLRequest utworzony przez innego klienta logowania
+  SAMLSession:
+    InvalidClient: SAMLResponse nie został wydany dla tego klienta
   Feature:
     NotExisting: Funkcja nie istnieje
     TypeNotSupported: Typ funkcji nie jest obsługiwany
@@ -623,6 +629,8 @@ AggregateTypes:
   system: System
   session: Sesja
   web_key: Klucz internetowy
+  saml_request: Żądanie SAML
+  saml_session: Sesja SAML
 
 EventTypes:
   execution:

internal/static/i18n/pt.yaml

@@ -544,6 +544,16 @@ Errors:
     WrongLoginClient: A solicitação de autenticação foi criada por outro cliente de login
   OIDCSession:
     RefreshTokenInvalid: O Refresh Token é inválido
+    Token:
+      Invalid: O token é inválido
+      Expired: O token expirou
+    InvalidClient: O token não foi emitido para este cliente
+  SAMLRequest:
+    AlreadyExists: O SAMLRequest já existe
+    NotExisting: O SAMLRequest não existe
+    WrongLoginClient: SAMLRequest criado por outro cliente de login
+  SAMLSession:
+    InvalidClient: O SAMLResponse não foi emitido para este cliente
   Feature:
     NotExisting: O recurso não existe
     TypeNotSupported: O tipo de recurso não é compatível
@@ -618,6 +628,8 @@ AggregateTypes:
   system: Sistema
   session: Sessão
   web_key: Chave da Web
+  saml_request: Solicitação SAML
+  saml_session: Sessão SAML
 
 EventTypes:
   execution:

internal/static/i18n/ru.yaml

@@ -538,6 +538,12 @@ Errors:
       Invalid: Токен недействителен
       Expired: Срок действия токена истек
     InvalidClient: Токен не был выпущен для этого клиента
+  SAMLRequest:
+    AlreadyExists: SAMLRequest уже существует
+    NotExisting: SAMLRequest не существует
+    WrongLoginClient: SAMLRequest создан другим клиентом входа
+  SAMLSession:
+    InvalidClient: SAMLResponse не был отправлен для этого клиента
   Feature:
     NotExisting: ункция не существует
     TypeNotSupported: Тип объекта не поддерживается
@@ -612,6 +618,8 @@ AggregateTypes:
   system: Система
   session: Сеанс
   web_key: Веб-ключ
+  saml_request: SAML-запрос
+  saml_session: Сессия SAML
 
 EventTypes:
   execution:

internal/static/i18n/sv.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: Token är ogiltig
       Expired: Token har gått ut
     InvalidClient: Token utfärdades inte för denna klient
+  SAMLRequest:
+    AlreadyExists: SAMLRequest finns redan
+    NotExisting: SAMLRequest finns inte
+    WrongLoginClient: SAMLRequest skapad av annan inloggningsklient
+  SAMLSession:
+    InvalidClient: SAMLResponse utfärdades inte för den här klienten
   Feature:
     NotExisting: Funktionen existerar inte
     TypeNotSupported: Funktionstypen stöds inte
@@ -623,6 +629,8 @@ AggregateTypes:
   system: System
   session: Session
   web_key: Webbnyckel
+  saml_request: SAML-förfrågan
+  saml_session: SAML-session
 
 EventTypes:
   execution:

internal/static/i18n/zh.yaml

@@ -549,6 +549,12 @@ Errors:
       Invalid: 令牌无效
       Expired: 令牌已过期
     InvalidClient: 没有为该客户发放令牌
+  SAMLRequest:
+    AlreadyExists: SAMLRequest 已存在
+    NotExisting: SAMLRequest不存在
+    WrongLoginClient: 其他登录客户端创建的 SAMLRequest
+  SAMLSession:
+    InvalidClient: 未向该客户端发出 SAMLResponse
   Feature:
     NotExisting: 功能不存在
     TypeNotSupported: 不支持功能类型
@@ -623,6 +629,8 @@ AggregateTypes:
   system: 系统
   session: 会话
   web_key: Web 密钥
+  saml_request: SAML 请求
+  saml_session: SAML 会话
 
 EventTypes:
   execution: