iOS

1) Create Kapsel project or a Fiori Client application from the latest SMP SDK.

2) Set the following parameter in the LogonInit function.

setAutoSelectCertifcateConfig( autoSelectSingleCert)

parameters:

autoSelectSingleCert: boolean type

Fiori Client can specify this property as a new fiori url parameter "autoSelectSingleCert". It can also be specify in appconfig.js

2) Fiori Client specification:-

For fiori client, the above settings will be persisted in the similar way as other application settings by apppreference plugin, such as DemoMode.

The logon plugin will not need to have any change for this feature.

For regular kapsel project, the index.js should call the authproxy js setAutoSelectCertifcateConfig method in onDeviceReady method.

4. How to test :-

4.1 Set fiori configuration to enable autoSelectSingleCert.

For fiori client, update appconfig.js to set autoSelectSingleCert to true as below,

      "autoSelectSingleCert": true,

or set the fiori url with the parameter of  "autoSelectSingleCert=false"

4.2 disable logon to provide cert automatically

    A new authproxy preference CredentialSearchSource in config.xml can be used to test this feature with logon plugin afaria certificate provide, it your testing gets the client certificate from a different way other than from logon plugin, then you do not need to use the CredentialSearchSource setting for the testing.

First set CredentialSearchSource to 5 in config.xml as

    <preference name="CredentialSearchSource" value="5" />

and then do an afaria NO-SMP certificate registration, setting CredentialSearchSource to 5 will skip logon plugin as credential source when authproxy tries to get the client certificate for mutual auth.