Jmax/lg 12260 use authn context resolver to compute legacy sp session values

[jmax-gsa]

🎫 Ticket

LG-12260

🛠 Summary of changes

Use the new AuthnContextResolver to translate vector of trust style SP requests into legacy values in the SP session.

📜 Testing Plan

Provide a checklist of steps to confirm the changes.

• Ensure that the new specs in spec/services/store_sp_metadata_in_session_spec.rb all pass.
• Ensure that all existing specs pass

[jmhooper]

It looks like request_acr never gets set anywhere. It should be the ial and aal strings separated by a space ( ) when ACR values are used.

[jmax-gsa]

Added specs for this.

[jmhooper]

I don't think we need this conditional.

The VOT Parser can handle ACR values. We should be able to pass both the ACR and VOT value into the parser and have it work.

I think the feature flag should prevent us from consuming and storing the VTR param rather than from using it here.

[jmhooper]

I just integrated the feature flag into the form where the VTR is consumed here: 1cb5ed4

[jmhooper]

Here I think we want to look at parsed_vot.biometric_comparison? || sp_request.biometric_comparison_required. Since the current biometric comparison API is experimental and exists outside of the acr_values and vtr params we'll need to look at what is on the SP request until we update the sample OIDC SP.