Enhance httpBasicPassTicket authentication scheme to support client certificates

[yelyzavetachebanova]

Describe the solution you'd like
Enhance httpBasicPassTicket authentication scheme to be able to generate passticket based on client certificate.

Additional context
Current implementation for Zowe JWT token generates passticket based on userId from token. Desired implementation should be able to generate passticket for a user authenticated with client certificate.

[yelyzavetachebanova]

Part of the implementation is a validation whether a client certificate belong to a MF user (user mapping)

[yelyzavetachebanova]

Note: current implementation of HttpBasicPassTicketScheme.createCommand(...) performs parsing of the authentication source and uses userID from parsed source to generate PassTicket.

One of the parsing steps is a validation whether X509 certificate can be used for client client authentication. If not (extended key usage does not have clientAuth specified) commonName (and userId) is set to null.

Make sure to handle possible NPE during pass ticket generation.

Possible solution is to perform validation of the authentication source before parsing, so that InvalidCertificateException is throws by AbstractX509AuthSourceService and processed by ServiceAuthenticationFilter.