Currently, the HTTP server supports only one security schema at the time. it would be more flexible if the user can configure multiple different schemas. I am not sure about a use-case, but since a TD could have a list of security definitions, I guess also the server must be able to handle such a scenario.