How to perform mTLS in a flutter or iOS application

I have an enterprise Flutter application that needs to launch the login page for the user’s Identity Provider (IdP) inside a webview within the app. The IdP supports certificate-based authentication using a certificate present on the user’s device (through MDM) to authenticate the user without needing to provide any credentials.

When launching a safari browser to launch this page, it works fine. Safari prompts the user to select a certificate the first time from the ones available and Safari sends it to the server and page successfully proceeds to present the protected resource.

Another requirement is that we need to open the IdP page using a specific user-agent string so that their firewall can be configured to only allow selected apps and not any random Safari page.

Unfortunately, the Safari In-App Browser does not allow overriding user-agent. While using an in-app web view using https://pub.dev/packages/flutter_inappwebview or https://pub.dev/packages/webview_flutter we are unable to get the certificate prompt like the one we see in safari and the communication fails with the following SSL error, with code -1200

An SSL error has occurred and a secure connection to the server cannot be made

When using InAppWebView from https://pub.dev/packages/flutter_inappwebview and accessing the protected site, the onReceivedClientCertRequest handler gets invoked, but I am not sure how to pass the device certificate back in the response. The ClientCertResponse expects a path to the certificate, what should this be?

Is there a way to retrieve the appropriate certificate from the OS’s secure storage (keychain?) and send it to the web page? Either Flutter or native iOS code is ok. We are only focusing on iOS for this use case.