The JWTAuthPlugin supports overriding Java's built-in trustStore for validating SSL certificate of the Identity Provider. Currently we allow user to either specify a path to one file, e.g. foo.pem, or to supply the ascii text of the certificate as a string.
In certain environments, the plugin may need to trust certificates spread across multiple files. This Jira is to implement such support.