Currently, the authentication is selected considering the bean produced with @PicketLink qualifier, only.

The Identity bean must be able to select the authenticator based on the credential type too, associated with the current request.