feat(object_store): Azure url signing

[roeap]

Which issue does this PR close?

Closes #5232

Rationale for this change

see issue.

What changes are included in this PR?

Moves request authorization to a new AzureAuthorizer, analogous to the AWS implementation. Some structs are made public, such that they can be used independently. Specifically, when going via the Signer trait, in each request a new user delegation key is requested. If users want to sign multiple URLs, this is quite inefficient. Thus the AzureSigner as well as the new get_user_delegation_key method are pub, so users can also cover more elaborate signing scenarios efficiently.

Are there any user-facing changes?

Users can now sign urls also for azure. Supported methods are via access key, or via identity auth with a user delegation key.

[roeap]

drive by: remove unnecessary mut

[tustvold]

Thank you for this, I'll save a detailed review for when we've got the structure nailed down, but wonder what you think about of instead of making the UserDelegationKey shenanigans public, instead expose an async method on AzureAuthorizer that returns an opaque AzureSigner that can then be used to sign potentially multiple requests.

This would have a few advantages imo:

• Avoids users needing to understand what a UserDelegationKey is, and when/why they would want one
• Keeps the implementation details private
• Preserves the spirit of the design of AwsAuthorizer
• Makes it obvious how to sign multiple requests with the same set of credentials

Perhaps something like:

pub struct AzureAuthorizer<'a> {
    credential: &'a AzureCredential,
    date: Option<DateTime<Utc>>,
    account: &'a str,
}


impl AzureAuthorizer<'a> {
    pub fn new(
        credential: &'a AzureCredential,
        account: &'a str,
    ) -> Self {
        AzureAuthorizer {
            credential,
            account,
            date: None,
        }
    }


    pub fn authorize(&self, request: &mut Request) {
        ...
    }

    pub async fn signer(&self, expires_in: Duration) -> Result<AzureSigner<'_>> {
        ...
    }

}

pub struct AzureSigner<'a> {
    credential: AzureSignerCredential<'a>
    authorizer: &'a AzureAuthorizer<'a>,
}

enum AzureSignerCredential<'a> {
    AccessKey(&'a AzureAccessKey),
    UserDelegationKey(...)
}

impl AzureSigner<'a> {
    pub fn sign(&self, method: Method, path: &Path, expires_in: Duration) -> Result<Url> {
        ...
    }
}
```

[tustvold]

Note that AzureClient is not public, and so neither is this method. Perhaps we could expose it on AzureAuthorizer?

[tustvold]

Do these fields need to be public? Do we expect users to use this directly?

[roeap]

@tustvold - I really like the proposed AzureSigner API, and am about to finish the respective changes.

Would we want to make AWS look the same, even thoght it not the same need over there for repeated signing?

[tustvold]

Would we want to make AWS look the same

Could do, the sign method isn't currently public so it wouldn't be a breaking change... Although making an async method to do nothing is a bit rubbish, perhaps leave it for now? I don't feel strongly either way

[tustvold]

Is there anyway I can help move this along, I'd very much like for it to make the release tomorrow

[roeap]

@tustvold - sorry for the delay, will see that I get this done today.

[roeap]

@tustvold - there probably are things to clean up, but since we want to get this in I though, getting earlier feedback is better :).

[roeap]

To effectively hide the delegation key shenanigans, I though it may be best to just expose an additional method for signing multiple URLs with a default implementation.

This also introduced a breaking change as we now would take a ref of the Method

[tustvold]

I think providing a type-erased way to sign multiple URLs makes sense to me 👍

[roeap]

tried to find a way to borrow this, but found no nice solution, as the key is owned by the invoking function that creates the signer.

Since signing URLs would usually not be so high volume, i thought this might be OK.

[tustvold]

Looks good to me, just some minor comments

[tustvold]

I think providing a type-erased way to sign multiple URLs makes sense to me 👍

[tustvold]

I think as written this could cause testing races if run concurrently with azure_blob_test. It is also hard-coding the bucket name. Perhaps we could move it into azure_blob_test?

[roeap]

made the test shareable, and moved it to azure_blob_test.