See issue #593 for a problem description.
SimpleSamlPHP makes use of unsafe inline Javascript and CSS elements.
Although most generated HTML uses SimpleSamlPHP's own headers, the
keepPost option in an authentication request uses the headers of
the PHP application it is sent from. This forces web applications
using SimpleSamlPHP to allow 'unsafe-inline' in their Content
Security Policy.

This commit fixes this issue for the keepPost page ''only'', to
allow PHP applications using SimpleSamlPHP to use a more strict
Content Security Policy. This does not take away from possible
XSS vulnerabilities in other parts of SimpleSamlPHP.

for better mobile/small form factor support (eg when using landscape) - don't specify the device-width etc
(see e.g. https://developer.apple.com/library/content/documentation/AppleApplications/Reference/SafariWebContent/UsingtheViewport/UsingtheViewport.html )

for better mobile/small form factor support (eg when using landscape) - don't specify the device-width etc
(see e.g. https://developer.apple.com/library/content/documentation/AppleApplications/Reference/SafariWebContent/UsingtheViewport/UsingtheViewport.html )

This allows us to build the language switching links even when we have query parameters that would otherwise get lost.

This enables too the implementation of additional contact attributes, as requested in #509 to support the SIRTFI framework.

Replaces the need for `$this->data['htmlinject']`

Note that the flag in the context must be named 'clipboard',
not 'clipboard.js'. This is because the dot is an illegal symbol in
variable names in twig.

Add also proofs of concept for every example given.

Don't start a <dl> when there's no content for it. Would result in "<dl></dl>".

One error left in: data-clipboard-target="#metadata"
JavaScript should probably be changed to check for id instead of a proprietary attribute.

Add mandatory cols-attribute for non-CSS compatible browsers.

We're one column short

For #455

This reverts commit ce040885.

Add the existing Afrikaans translation into the list of supported languages so that South African users don't need to go editing code.

A recent change in simplesamlphp/saml2#60 made the library return a DOMNodeList object when the contents of the AttributeValue element are not text. This lead to a bug, since the returned value is not serializable, and when storing it in the session it will go away as soon as we serialize the session to store it in the backend (whatever that is). This is always, as the SP will always redirect to the URL originating authentication. The result was an empty DOMNodeList object where there should be some value.

This commit makes the SimpleSAML_Session to implement the Serializable interface. When obtaining the attributes during login (doLogin() method), the code will now look for DOMNodeList objects, and dump them as a string with the XML representation of their contents in the 'RawAttributes' array inside $this->authData[$authority]. This allows us to parse the XML back when unserializing, and restore the original DOMNodeList object as the value of the attribute.

The issue was reported originally in the mailing list by Enrico Cavalli, affecting eduPersonTargetedID. This resolves #424.

PHP 5.3 does not allow the use of $this inside closures. This is a temporary fix for compatibility with 5.3, while we are still supporting it. We will drop this when updating the minimum requirements to PHP 5.4.

Besides, "sam" is Samaritan Aramaic, not Southern Sami