App now links its self to SSO user via userid instead of appid.
SSL cert and key now stored/retrieved from data folder.