Pavol, PTAL. I think that's in your realm.

+hendrich@ since pmarko@ is OOO for 2 weeks.

Marking this as feature as the policy has not been implemented for Android until now IIUC (see 'Supported On' on https://www.chromium.org/administrators/policy-list-3#AutoSelectCertificateForUrls).

Or has it worked for you previously?

Bartosz, would you know if we have this / something similar for Android?

I am not certain it if is supported on Android or not (I have looked at the link referenced android as a platform isn not listed).  What has thrown me off is the following from the link:

Android/Linux:
["{"pattern":"https://www.example.com","filter":{"ISSUER":{"CN":"certificate issuer name"}}}"]

It includes Android in the example.  Can you confirm this not supported on Android?  If not, then yes, it would be considered a feature.

Thanks - Christian

Did not answer your direct question.  No, it has not worked for me previously as this is new development.

The ground truth is the the policy_templates.json file in Chrome's source code [1]. It specifies that we support desktop (Linux/Windows/Mac) and Chrome OS only. The fact that Android and Linux use the same policy format leads to somewhat misleading documentation, unfortunately. The "Android/" part in the example is wrong.

In general, on Android, certificate auto-selection is provided by the DPC, not inidividual apps [2].

[1] https://chromium.googlesource.com/chromium/src/+/master/components/policy/resou
rces/policy_templates.json
[2] https://developer.android.com/reference/android/app/admin/DeviceAdminReceiver#onChoosePrivateKeyAlias(android.content.Context,%20android.content.Intent,%20int,%20android.net.Uri,%20java.lang.String)