Description
Add configuration options to the Java broker to force SSL connections to provide client certificates (and allow for the broker to locate a trustStore).
Add a simplistic authentication manager to use the principal supplied in the client certificate as the authorized identity associated with the connection.
Future work should be undertaken to enable the authentication manager to allow the client to identify a distinct authorization identity through SASL that is constrained by the authenticated identity on the SSL connection.