- Adds several commands to update/generate translations and to detect unused translations.
- Adds a new workflow to add new translation strings from Twig- and/or Php-files into the .po-files for every language.
- Runs .mo-file generation as part of the build-process.

This matches both the code, and the code comments, the documentation
and the behaviour of 1.19 so it seems to be a bug due to refactoring.

Add support for Metadata Deployment Profile for errorURL

generate selected SSL context options for the Predis client.

see https://www.php.net/manual/en/context.ssl.php

closes #1804

This reverts commit 153d109d.

* Migrate metadata-extensions to new interface

* Bump saml2-library

* Migrate md:Organization to new interface

* Bump saml2 library

* Drop hint.cidr functionality; use mdui:DiscoHints/IPHint instead

* Migrate md:KeyDescriptor to new interface

* Bump saml2 library

* Migrate ds-elements to new interface from xml-security lib

* Migrate md:ContactPerson to new interface

* Fix hosted SP metadata generation

* Fix codesniffer issues

* Bump saml2-lib

* Migrate md:NameIDFormat to new interface

* Migrate (indexed) endpoints to new interface

* Fix for NameIDFormat

* Fix minor bugs

* Fix long lines

* Fix array key initializatino

* Only add isRequired attribute when it's true

* Update composer-file

* Remove unnecessary test; the saml2-lib ensures a specs-compliant representation of an AttributeConsumerService-element

* Fix annotation

* Migrate HTTP::redirect

* Migrate HTTP::redirectTrustedURL

* Migrate HTTP::redirectUntrustedURL

* Migrate HTTP::submitPOSTData

* Temporarily revert to make phpunit work

* Migrate logout handlers

* Remove unnecessary assertion & simplify logics

* Remove unnecessary assertion & add new one to check response type

* Remove unnecessary assertion & rationalize code

* Migrate IdPDisco

* Migrate ProcessingChain

* Fix return-type & drop unnecessary use-statement

* Address review comments

* Do not add caching headers at all

* Fix type-confusions

* Migrate saml2 bindings

* Migrate completeAuth

* Migrate handleLogout

* Migrate some more

* Migrate a whole lot more (messy)

* Migrate logout

* Migrate a whole lot more (also messy)

* Many fixes

* Raise coverage

* Psalm: Ignore exteranl adfs-module

* Replace use of _GET globals

* Migrate bindings (send)

* Migrate bindings (receive)

* Fix psalm-dev

* Fix assertion

* s/subclassOf/isInstanceOf

* Fix type-confusion in logout handlers

* Update container

* Bump saml2 + adfs

* Rename namespace

* Restore nullable assocId for SLO

* Fix namespace

* Add changelog note

* Fix changelog

It gets quite fiddly to get this right. The actual metadata (hosted on
the `host` itself) is alreafy correct because the URL generator uses the
'current' entity metadata and current URL. The admin interface of course
presents all entities in one page and hence cannot rely on the current
URL. Therefore we need to override the url host for this specific
display case.

Closes: #1774

We accept AuthState via untrusted URL parameters. As a defense in
depth measure, validate that it conforms to our expected format
before we output it again in HTML, feed it to a database, use the
URL or do any further processing with it.

Closes: #1706

* Reset submit-button on back-button

* Fix back-button for test-authsource page for non SP-sources

* Update changelog