Proposed fixes for token-based auth in azure fileshare service

[eujing]

To use token-based authentication for ShareClient, I think we should be passing in the credential object derived from TokenCredential (in our case, some instance of DefaultAzureCredential.

Previously, we were passing specific string tokens to the credential argument, which is being intepreted as a SAS token.
This leads to errors like: azure.core.exceptions.ClientAuthenticationError: Server failed to authenticate the request. Make sure the value of Authorization header is formed correctly including the signature.

ShareClient documentation on the credential argument.

By passing in the whole TokenCredential object, I believe ShareClient will manage the token lifecycle and we won't need to do so as mentioned in #818.

[eujing]

Want to add that I haven't been able to test this fully on my side yet.
Currently getting a permissions error, so I am trying to grant myself the Storage File Data Privileged Contributor role to see if that works. Currently only have overall Contributor role to the storage account.

azure.core.exceptions.HttpResponseError: This request is not authorized to perform this operation using this permission. RequestId:15e8cf1a-301a-0068-0618-de1302000000 Time:2024-07-24T22:29:41.5702312Z ErrorCode:AuthorizationPermissionMismatch

[motus]

Looks good, although I suspect that we need to make sure that the credential has been properly initialized in get_credential() implementation - just like we do in get_auth_token(). I've pushed an update along with a few cosmetic fixes to eujing#1 - @eujing please take a look

[bpkroth]

This is still a late runtime error that I was trying to turn into a config load error in #819

[bpkroth]

Alright, I made a new change to #819 to handle that now.
From what I can tell the rest of this one is good, but it'd be good to get confirmation that DefaultCredential doesn't need refreshed, especially with the SP part.