[AppConfig] Support AAD auth for data operations

[avanigupta]

Description

App Configuration supports AAD authentication and authorization for all data operations. Since we are now using the official Python SDK for AppConfiguration, we can easily support AAD auth in appconfig CLI module by utilizing the az login credentials.
This PR introduces two new arguments for users to authenticate using AAD credentials:

• --auth-mode (login or key; default is key which preserves the current behavior)

• --endpoint (AppConfiguration endpoint like https://storename.azconfig.io)

For any existing AppConfig commands, providing the --name and --connection-string parameters will use key (HMAC) auth for data operations (preserving current behavior). Instead of these two arguments, if users provide --auth-mode login and --endpoint parameters, AAD credentials will be used to connect to AzureAppConfigurationClient.

Testing Guide

1. Create a new App Configuration with name "aadtestcli".
2. Create a key-value with key "testKey" and any value.
3. Create a new service principal and assign it "App Configuration Data Reader" role in your App Configuration. Wait for about 15 minutes for permissions to propagate.
4. Login to CLI with the service principal credentials.

This read request should succeed:
az appconfig kv show --key testKey --auth-mode login --endpoint https://aadtestcli.azconfig.io

This write request should fail with 'Forbidden' error:
az appconfig kv lock --key testKey --auth-mode login --endpoint https://aadtestcli.azconfig.io

History Notes

---

This checklist is used to make sure that common guidelines for a pull request are followed.

• The PR title and description has followed the guideline in Submitting Pull Requests.

• I adhere to the Command Guidelines.

[yungezz]

hi @bim-msft could you pls review the PR? thanks.

[avanigupta]

Hi @recao, could you please help review this PR?

[bim-msft]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 2 pipeline(s).

[avanigupta]

Hi @bim-msft, @jiasli, can you please review this PR?

[yungezz]

hi @fengzhou-msft could you pls help to review since @bim-msft is oof? thanks.

[shenmuxiaosen]

[avanigupta]

Hi @yonzhan , since Jiashuo is OOF, can someone else help review this PR?

[yonzhan]

@avanigupta We are in Chinese National holiday. @jiasli can help review this PR after holiday. Sorry for the inconvenience caused.

[yungezz]

/azp run

[azure-pipelines]

No pipelines are associated with this pull request.

[fengzhou-msft]

/azp run

[azure-pipelines]

Azure Pipelines successfully started running 2 pipeline(s).

[yungezz]

pls run live test to make sure no breaking change in sdk version bumping

[avanigupta]

I've run all live tests and updated test recordings in this PR.

[jiasli]

#15184 has been merged. You may now safely remove resource=endpoint.