Morpho

Currently, morpho overwrites the default keystore of java - it uses the keystore locating at ~/.morpho/truststore. In that keystore, we only have handful certificates there. So it will say "peer not authenticated" even the certificate of the metacat server was signed by a well-known commercial authority.

The reason we did this way is that the certificates from sanparks and knb couldn't be recognized by the java default ca at that time. In order to avoid the users to import those certificates into the java keystore, we shipped a a customized keystore.

It is a trend that the production metacats are using the commercial certificates. So we should use the default java keystore in morpho.

But we need to make sure the sanparks metacat will use a commercial certificate.