Support another Azure cloud storage authentication using security principal

[machov]

Is your feature request related to a problem? Please describe.
The current Label Studio Azure Cloud Storage connection only supports one form of authentication using Shared Key authorization for blobs with AZURE_BLOB_ACCOUNT_NAME and AZURE_BLOB_ACCOUNT_KEY to specify the secret key for the storage account. However Azure has many more authentication methods

• see https://learn.microsoft.com/en-us/azure/storage/common/authorize-data-access

Describe the solution you'd like
I'd like to have Microsoft Entra integration for authorizing requests to blob and use Azure role-based access control (Azure RBAC) security principal to access the cloud storage. This will require a few new different parameters:

• AZURE_CLIENT_ID
• AZURE_CLIENT_SECRET
  instead of AZURE_BLOB_ACCOUNT_KEY

Describe alternatives you've considered
I've tried the existing AZURE_BLOB_ACCOUNT_KEY, but this is not allowed at my current organization

[machov]

@KonstantinKorotaev @jombooth @dredivaris @Axel-Jacobsen any thoughts? is this in your roadmap? would you welcome a PR for this?

thank you! :)

[Axel-Jacobsen]

not on my roadmap :p

[Axel-Jacobsen]

though I should note, I am not a part of HumanSignal and haven't touched this repo for upwards of half a year

[machov]

@niklub @robot-ci-heartex any thoughts?

[makseq]

@machov #5765 is this something that you are looking for?