I am looking into ACL based authorizations for ICO's and/or Business Components for service users.
The idea is that certain integrations can only be executed by certain users.
I am wondering how this works when external parties authenticate with certificates. How is the link made from Certificate to service user so that the integration is run with the correct service user?
Can we do this with certificate to user mapping maybe?