update auth to allow for skip_tls (#50)

Author: MichaelClifford

src/codeflare_sdk/cluster/auth.py

@@ -21,6 +21,7 @@
 
 import abc
 import openshift as oc
+from openshift import OpenShiftPythonException
 
 
 class Authentication(metaclass=abc.ABCMeta):
@@ -48,26 +49,33 @@ class TokenAuthentication(Authentication):
     cluster when the user has an API token and the API server address.
     """
 
-    def __init__(
-        self,
-        token: str = None,
-        server: str = None,
-    ):
+    def __init__(self, token: str = None, server: str = None, skip_tls: bool = False):
         """
         Initialize a TokenAuthentication object that requires a value for `token`, the API Token
         and `server`, the API server address for authenticating to an OpenShift cluster.
         """
 
         self.token = token
         self.server = server
+        self.skip_tls = skip_tls
 
     def login(self):
         """
         This function is used to login to an OpenShift cluster using the user's API token and API server address.
-        """
-        token = self.token
-        server = self.server
-        response = oc.invoke("login", [f"--token={token}", f"--server={server}:6443"])
+        Depending on the cluster, a user can choose to login in with "--insecure-skip-tls-verify` by setting `skip_tls`
+        to `True`.
+        """
+        args = [f"--token={self.token}", f"--server={self.server}:6443"]
+        if self.skip_tls:
+            args.append("--insecure-skip-tls-verify")
+        try:
+            response = oc.invoke("login", args)
+        except OpenShiftPythonException as osp:
+            error_msg = osp.result.err()
+            if "The server uses a certificate signed by unknown authority" in error_msg:
+                return "Error: certificate auth failure, please set `skip_tls=True` in TokenAuthentication"
+            else:
+                return error_msg
         return response.out()
 
     def logout(self):