1. The oc login command can be used to login to a cluster by launching a browser with a token request and a callback URL which is a server launched by oc. After receiving the callback the client can then use PKCE to obtain token. This enhancement describes the new functionality.

Acceptance Criteria:

• Enhancement is accepted/merged
• New login workflow implemented with unit tests.
• New login workflow is described in the 4.11 release notes.

Note: Since this feature relies on launching a browser it cannot be tested on the CI platform. However the unit tests cover the entire workflow by mocking the browser launch and the callback.

Tasks:

• Add a new client for the new workflow.
• Implement the workflow in oc.
• Write docs for 4.11 release.