Use crypto.Signer instead of *rsa.PrivateKey

[nicksnyder]

X509KeyStore currently only supports RSA private keys due to the type used and was wondering if we could expand support to any crypto.Signer.

This is the minimal diff, but it is backward incompatible from an API perspective so merging would imply a v2. Alternatively, I could update the diff to introduce new types and maintain backward compatibility (but wanted to start a convo first before I went further with this).

[russellhaering]

Great idea - I've got my own use-case for this coming along shortly too.

I don't think this is worth cutting a v2 over, so let's try to keep it backwards compatible for now, but I'll also start putting together a list of things for a future v2. Seem reasonable?

[nicksnyder]

Sounds good. I can update the diff to implement this in a backward compatible way.

[nicksnyder]

As I looked more deeply into this, I discovered that #89 already introduced the capability to use a crypto.Signer. Given this capability already exists, it seems like it would be redundant to move forward with a change like this. Do you have a use case that is not supported by #89?

[nicksnyder]

What I really wanted was crypto.Signer support in gosaml2, so I opened a PR there to use the existing capability in this library.