fix insecure

jcpowermac · jcpowermac · commit f833d5f555ab · 2025-06-30T12:13:18.000-04:00
diff --git a/pkg/controller/vsphere/session/session.go b/pkg/controller/vsphere/session/session.go
@@ -18,6 +18,7 @@ package session
 
 import (
 	"context"
+	"crypto/tls"
 	"errors"
 	"fmt"
 	"io"
@@ -159,7 +160,7 @@ func newClientWithTimeout(ctx context.Context, u *url.URL, insecure bool, timeou
 	*/
 
 	customTransport := &CustomTransport{
-		RoundTripper: http.DefaultTransport,
+		RoundTripper: createTransport(insecure),
 	}
 
 	soapClient := soap.NewClient(u, insecure)
@@ -363,3 +364,18 @@ func (s *Session) WithCachingTagsManager(ctx context.Context, f func(m *CachingT
 
 	return f(m)
 }
+
+// createTransport creates a transport that respects the insecure flag
+func createTransport(insecure bool) http.RoundTripper {
+	if insecure {
+		// Create a transport that skips TLS verification
+		transport := &http.Transport{
+			TLSClientConfig: &tls.Config{
+				InsecureSkipVerify: true,
+			},
+		}
+		return transport
+	}
+	// Use default transport for secure connections
+	return http.DefaultTransport
+}
