Implement Objectstore TLS support

[fxiang1]

• I have taken backward compatibility into consideration.

• Add Channel insecureSkipVerify support for Objectbucket
• Add Channel configMapRef support for TLS certs
• insecureSkipVerify will override cert when both are specified

Example channel:

apiVersion: apps.open-cluster-management.io/v1
kind: Channel
metadata:
  name: object-dev
  namespace: ch-object-dev
spec:
  type: ObjectBucket
  pathname: https://s3.console.aws.amazon.com/s3/buckets/feng-bucket
  secretRef:
    name: secret-dev
  insecureSkipVerify: true
  configMapRef:
    name: obj-ca

Example configMap:

apiVersion: v1
kind: ConfigMap
metadata:
  name: obj-ca
  namespace: ch-object-dev
data:
  caCerts: |
    # minio root CA

    -----BEGIN CERTIFICATE-----
    ...Sample cert...
    -----END CERTIFICATE-----

[openshift-ci]

The following users are mentioned in OWNERS file(s) but are untrusted for the following reasons. One way to make the user trusted is to add them as members of the open-cluster-management-io org. You can then trigger verification by writing /verify-owners in a comment.

• fxiang1
  • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • OWNERS

[fxiang1]

/assign @xiangjingli

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 55.64%. Comparing base (a8b1cda) to head (fe4574c).
Report is 1 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #418      +/-   ##
==========================================
+ Coverage   55.61%   55.64%   +0.03%     
==========================================
  Files          96       96              
  Lines       15670    15742      +72     
==========================================
+ Hits         8715     8760      +45     
- Misses       6071     6100      +29     
+ Partials      884      882       -2     

Flag	Coverage Δ
unit	55.64% <ø> (+0.03%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[xiangjingli]

/lgtm

[xiangjingli]

/approve

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: fxiang1, xiangjingli

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [xiangjingli]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment