Issue-Id: #3787

8cb0989 Release version 1.1.0

git-subtree-dir: tinyradius
git-subtree-split: c649d767aa63b6095a31a3a12bb974ab37de64a7

Replace 'mockito-all' with 'mockito-core' because it is
deprecated. Also update to the latest 2.2.x release.

Rename all occurences of "sendsms[otp]" to "requestsmsotp" to better
reflect the intent of the action from the user's point of view.

- view: change event ID
- flow definition: update event ID in transition, change bean name
- flow beans: update bean name
- flow tests: update event ID, rename methods
- rename class `SendSmsOtp` to `RequestSmsOtp`
- rename test class `SendSmsOtpTest` to `RequestSmsOtpTest`

Issue-Id: #3785

Changed the property name (for looking up the button's text) and
default text to better reflect the intent of a user clicking this
button. 'idp.login.sendsms' -> 'idp.login.requestsms'

Issue-Id: #3785

Otherwise, if a wrong OTP was previously submitted, two messages are
displayed together: "wrong password" and "SMS OTP sent", but only the
latter is current.

Issue-Id: #3784

The `SendSmsOtp` action bean registers the event 'sms_otp_sent' after
it requests an OTP via RADIUS. The `otp-login` view now checks for the
presence of this event in the context tree and displays the message
corresponding to the key `idp.login.sms_otp_sent` if it's present.

Issue-id: #3784

It is better to see what you type for an OTP.
Also fix the label's `for` attribute for the same field.

Issue-Id: #3749

Also renamed flow states and view for clarity.

Issue-Id: #3749

Preparation for renaming the 'simple' flow.

Issue-Id: #3749

Replace the development authentication context class
'https://mfa-dev.ed.switch.ch/idp/mfa/simple' with the InCommon MFA
Profile 'http://id.incommon.org/assurance/mfa'.

Issue-Id: #3751

It is executed on the 'sendsms' event and use the OtpValidator to
request an OTP via SMS.

Some code duplicated from `SimpleValidationAction` and
`SimpleValidationActionTest`...

Issue-Id: #3722

Add method to request an OTP via SMS to the `OtpValidator` interface,
implement it in `TinyRadiusOtpValidator`, `AcceptingOtpValidator` and
`RejectingOtpValidator`.

Issue-Id: #3722

It allows executing an action while looping back to the same view.

Issue-Id: #3722

Added the following variables to `DisplayOTPForm` state:
- authenticationWarningContext
- custom
- environment
- extendedAuthenticationFlows
- ldapResponseContext
- response
- rpUIContext

`SimpleFlowTest` now needs a `RelyingPartyUIContext` subcontext to
pass. New test dependency on `net.shibboleth.idp:idp-ui`.

Issue-Id: #3776

- Override `doPreExecute()` in `SimpleValidationAction` to check for
  missing `OtpContext` or empty OTP, like
  `net.shibboleth.idp.authn.AbstractUsernamePasswordValidationAction`
  does.
- Attach a `ClassifiedMessageMap` bean to `SimpleValidationAction` to
  map error messages to a key in `messages/authn-messages.properties`
  ("InvalidPassword").

Issue-Id: #3756

Instead transition from 'validate' to 'DisplayOTPForm' becomes the
default. Every event but 'proceed' will go back to the form view. It
is done this way in the Password flow.

Issue-Id: #3756

Issue-Id: #3756

New location for anonymous read-only access since the previous one has
a tendency to stop working. Moreover, GitLab also provides HTTPS
access which is more convenient.

Issue-Id: #3747

Issue-id: #3757

Issue-Id: #3755

Issue-Id: #3742

Issue-Id: #3742

New properties:
- idp.radius.host
- idp.radius.secret

`SimpleFlowTest` overwrites the `RadiusOtpValidator` bean to avoid
depending on a real RADIUS server during tests.

Issue-Id: #3742

Uses `org.tinyradius.util.RadiusClient.authenticate(username, otp)`.

Issue-Id: #3742

Added my fork of TinyRadius via git subtree.
```
git remote add -f -m master tinyradius git@github.com:edysli/TinyRadius.git
git subtree add --prefix tinyradius tinyradius master --squash
```
Module `mfa-flows` now depends on `tinyradius`.

Issue-Id: #3735

git-subtree-dir: tinyradius
git-subtree-split: 6fa79a708cbd080d07430e300b6a40d3c3d156d0

Issue-Id: #3742

New OtpValidator bean wired in SimpleValidationAction.

Issue-Id: #3706

New mandatory dependency on the OtpValidator interface, constructor
injection.
The AuthenticationContext must contains an OtpContext subcontext.

Issue-Id: #3706

Created to hide the actual implementation of the validation service.

Issue-Id: #3741

New action state added after the form view state to process user
input. Updated form field name to what the code expects ('j_otp').

Issue-Id: #3705

New flow action bean that extracts the OTP from the HTTP request and
stores it in a subcontext of the AuthenticationContext.

Issue-Id: #3739