Configuration options PROXY_SERVICE_IDENTITY_PROVIDER.CERT_FILE a CONNECTOR_SERVICE_PROVIDER.CERT_FILE can only have one certificate included. To allow smooth certificate exchange code should be able to work with multiple values in this field with the meaning that successful validation with at least of certificates in configuration is required.
Similarly, to support certificate exchange for decryption certificate, there should be possibility to select decryption key based on information in SAML Response and in PROXY_SERVICE_IDENTITY_PROVIDER.KEY_LOCATION.
Configuration options PROXY_SERVICE_IDENTITY_PROVIDER.CERT_FILE a CONNECTOR_SERVICE_PROVIDER.CERT_FILE can only have one certificate included. To allow smooth certificate exchange code should be able to work with multiple values in this field with the meaning that successful validation with at least of certificates in configuration is required.
Similarly, to support certificate exchange for decryption certificate, there should be possibility to select decryption key based on information in SAML Response and in PROXY_SERVICE_IDENTITY_PROVIDER.KEY_LOCATION.