Exampleauth controllers

FilterScopes documented behaviour is that hostname is only used as
a fallback when there are no explicit scopes (makes sense). However
the code does not do that but always includes the hostname to match.

This refactors the code so that hostname is only evaluated when
no explicit scopes are there. Also it takes the whole fetching and
parsing of the SSOlocation outside of the inner loop whcih is
inefficient. This is now only done once, and only if needed (when
no explicit scopes present).

To confirm the changes testcases have been added for this and also
for some other cases to reach 100% coverage for the filter.

This auth source no longer supports SAML 1.1 so the ACS code was keeping
track of protocol support with only SAML 2.0 as an option to be added.
Therefore, simplify and set this globally in the class. Keep the outside
interface for now the same where getSupportedProtocols returns as list
of the supported protocol.

Note: if you specify AssertionConsumerService in your config you are
responsible for it having actually bindings that we support. This has
always been the case. This PR makes no attempt to change it (the
specified URLs can even be outside of SSP).

Fixes #1496

Before, it was half added: there would be an array entry for the binding
with just a numbered index, but no Binding or Location. Alternative is
to throw an error. This mimics most what SSP was already doing but then
more correct.

Several indentation-fixes

This commit consists of patches automatically generated for this project on https://scrutinizer-ci.com

Calling the cron module from cron in the adverstised way does
not add an output parameter explicitly. It defaulted to null
in the routing, however the controller does not accept null,
only string for third parameter so one would get a fatal error.
Fix it by setting a string as default.

Unify Organization* documentation since the SAML spec (and SSP) requires either all to be specified or none.

Since the functional description is that it would fill OrganizationURL,
for which a config option already exists, there's no use to make it
work, rather just simplify and drop the docs.