Old certificates should continue to be used in all calls to parcel.validate(). The old (yet valid) certificates should be passed as trustedCertificates, along with the new certificate.
Old certificates should only be deleted after they expire (e,g., once a day, when the app starts). However, expired certificates must not be included in the trustedCertificates above.
What to do with the new certificate
The new certificate should be used in all calls to parcel.serialize() and issueDeliveryAuthorization(). This shouldn't require code any further code changes, but I'm documenting this requirement to make sure we don't change the code inadvertently.
What to do with old certificates
Old certificates should continue to be used in all calls to
parcel.validate()
. The old (yet valid) certificates should be passed astrustedCertificates
, along with the new certificate.Old certificates should only be deleted after they expire (e,g., once a day, when the app starts). However, expired certificates must not be included in the
trustedCertificates
above.What to do with the new certificate
The new certificate should be used in all calls to
parcel.serialize()
andissueDeliveryAuthorization()
. This shouldn't require code any further code changes, but I'm documenting this requirement to make sure we don't change the code inadvertently.Related issues