New provider option: tls_insecure_skip_verify (#58)

docs/index.md

@@ -125,6 +125,7 @@ provider "restful" {
 - `merge_patch_disabled` (Boolean) Whether to use a JSON Merge Patch as the request body in the PATCH update? Defaults to `false`. This is only effective when `update_method` is set to `PATCH`.
 - `query` (Map of List of String) The query parameters that are applied to each request.
 - `security` (Attributes) The OpenAPI security scheme that is be used for auth. Only one of `http`, `apikey` and `oauth2` can be specified. (see [below for nested schema](#nestedatt--security))
+- `tls_insecure_skip_verify` (Boolean) Whether a client verifies the server's certificate chain and host name. Defaults to `false`.
 - `update_method` (String) The method used to update the resource. Possible values are `PUT` and `PATCH`. Defaults to `PUT`.
 
 <a id="nestedatt--security"></a>

internal/client/build_option.go

@@ -2,6 +2,7 @@ package client
 
 import (
 	"context"
+	"crypto/tls"
 	"net/http"
 	"time"
 
@@ -13,6 +14,7 @@ import (
 type BuildOption struct {
 	Security      securityOption
 	CookieEnabled bool
+	TLSConfig     tls.Config
 }
 
 type securityOption interface {

internal/client/client.go

@@ -91,11 +91,14 @@ func New(ctx context.Context, baseURL string, opt *BuildOption) (*Client, error)
 		client.SetCookieJar(nil)
 	}
 
+	client.SetTLSClientConfig(&opt.TLSConfig)
+
 	if _, err := url.Parse(baseURL); err != nil {
 		return nil, err
 	}
 
 	client.SetBaseURL(baseURL)
+
 	return &Client{client}, nil
 }
 

internal/provider/provider.go

@@ -36,15 +36,16 @@ type providerData struct {
 }
 
 type providerConfig struct {
-	BaseURL            types.String `tfsdk:"base_url"`
-	Security           types.Object `tfsdk:"security"`
-	CreateMethod       types.String `tfsdk:"create_method"`
-	UpdateMethod       types.String `tfsdk:"update_method"`
-	DeleteMethod       types.String `tfsdk:"delete_method"`
-	MergePatchDisabled types.Bool   `tfsdk:"merge_patch_disabled"`
-	Query              types.Map    `tfsdk:"query"`
-	Header             types.Map    `tfsdk:"header"`
-	CookieEnabled      types.Bool   `tfsdk:"cookie_enabled"`
+	BaseURL               types.String `tfsdk:"base_url"`
+	Security              types.Object `tfsdk:"security"`
+	CreateMethod          types.String `tfsdk:"create_method"`
+	UpdateMethod          types.String `tfsdk:"update_method"`
+	DeleteMethod          types.String `tfsdk:"delete_method"`
+	MergePatchDisabled    types.Bool   `tfsdk:"merge_patch_disabled"`
+	Query                 types.Map    `tfsdk:"query"`
+	Header                types.Map    `tfsdk:"header"`
+	CookieEnabled         types.Bool   `tfsdk:"cookie_enabled"`
+	TlsInsecureSkipVerify types.Bool   `tfsdk:"tls_insecure_skip_verify"`
 }
 
 type securityData struct {
@@ -481,6 +482,11 @@ func (*Provider) Schema(ctx context.Context, req provider.SchemaRequest, resp *p
 				MarkdownDescription: "Save cookies during API contracting. Defaults to `false`.",
 				Optional:            true,
 			},
+			"tls_insecure_skip_verify": schema.BoolAttribute{
+				Description:         "Whether a client verifies the server's certificate chain and host name. Defaults to `false`.",
+				MarkdownDescription: "Whether a client verifies the server's certificate chain and host name. Defaults to `false`.",
+				Optional:            true,
+			},
 		},
 	}
 }
@@ -508,6 +514,8 @@ func (p *Provider) Init(ctx context.Context, config providerConfig) diag.Diagnos
 			CookieEnabled: config.CookieEnabled.ValueBool(),
 		}
 
+		clientOpt.TLSConfig.InsecureSkipVerify = config.TlsInsecureSkipVerify.ValueBool()
+
 		if secRaw := config.Security; !secRaw.IsNull() {
 			var sec securityData
 			if diags := secRaw.As(ctx, &sec, basetypes.ObjectAsOptions{}); diags.HasError() {