[Feature] [Platform] Azure Storage Integration

[ajanikow]

No description provided.

[Copilot]

Pull request overview

This pull request adds Azure Blob Storage integration to the platform storage system, extending the existing storage backend capabilities that currently support S3 and GCS. The implementation provides a complete Azure storage backend with authentication via Azure service principals, blob operations (read, write, list, delete), and Kubernetes integration.

Key Changes

• Adds Azure Blob Storage as a third storage backend option alongside S3 and GCS
• Implements Azure authentication using client secret credentials with support for both direct values and file-based secrets
• Provides complete blob storage operations including read, write, list, head, and delete with SHA256 checksums
• Integrates with the existing Kubernetes CRD system and sidecar injection framework

Reviewed changes

Copilot reviewed 29 out of 30 changed files in this pull request and generated 11 comments.

Show a summary per file

File	Description
pkg/util/azure/provider.go	Implements Azure authentication provider with client secret credential support
pkg/util/azure/config.go	Provides Azure configuration with endpoint resolution logic
pkg/util/tests/azure.go	Test helpers for Azure Blob Storage integration tests
pkg/util/env_t.go	Testing utility for requiring environment variables
pkg/util/refs.go	Adds Count utility function for validating backend selection
pkg/util/constants/constants.go	Defines secret key constants for Azure credentials
pkg/apis/platform/v1beta1/storage_spec_backend_abs.go	API definition for Azure Blob Storage backend specification
pkg/apis/platform/v1beta1/storage_spec_backend.go	Updates backend validation to support Azure alongside S3 and GCS
pkg/integrations/storage_v2.go	Registers Azure-specific CLI flags for storage integration
pkg/integrations/sidecar/integration.storage.v2.go	Implements sidecar environment variables and volume mounts for Azure
integrations/storage/v2/shared/abs/*.go	Complete implementation of Azure Blob Storage IO operations
integrations/storage/v2/configuration.go	Adds Azure configuration type to storage v2 system
integrations/storage/v2/object.go	Implements Kubernetes object-based Azure storage initialization
integrations/storage/v2/suite_azure_test.go	Test suite for Azure Blob Storage integration
pkg/crd/crds/platform-storage.schema.generated.yaml	Generated CRD schema for Azure backend
go.mod, go.sum	Adds Azure SDK dependencies
docs/	Updates documentation with Azure storage options

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The error messages "no client id found" and "no client secret found" should be capitalized for consistency with Go error message conventions. They should be "no client ID found" and "no client secret found" (with "ID" in capitals).

[Copilot]

Pull request overview

Copilot reviewed 32 out of 33 changed files in this pull request and generated 2 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Duplicate environment variable definition detected. The INTEGRATION_STORAGE_V2_AZURE_BLOB_STORAGE_ACCOUNT_NAME environment variable is set twice with the same value on lines 177 and 185. Remove one of these duplicate entries.

Suggested change

	Name: "INTEGRATION_STORAGE_V2_AZURE_BLOB_STORAGE_ACCOUNT_NAME",
	Value: azureBlobStorage.GetAccountName(),
	},
	core.EnvVar{

[Copilot]

The example tenantID value "gcr-for-testing" appears to be a copy-paste error from GCS documentation. This should be replaced with a proper placeholder like "" that accurately reflects Azure's tenant ID format (typically a GUID).

Suggested change

	tenantID: gcr-for-testing
	tenantID: <Azure Tenant ID>

[Copilot]

Pull request overview

Copilot reviewed 32 out of 33 changed files in this pull request and generated 11 comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Inconsistent field naming: BucketPrefix is stored with JSON tag "bucketPath" (line 50) but the field is named BucketPrefix. This creates confusion between the API field name and the internal field name. Consider either renaming the struct field to BucketPath or changing the JSON tag to "bucketPrefix" for consistency.

[Copilot]

Grammar issue: "accounts needs to be saved" should be "accounts need to be saved" (plural subject requires plural verb).

Suggested change

	Client ID & Secret with access to the storage container and accounts needs to be saved in the secret.
	Client ID & Secret with access to the storage container and accounts need to be saved in the secret.

[Copilot]

The flag description "AzureBlobStorage Account ID" is incorrect. This parameter refers to the Azure Storage Account Name, not an Account ID. The description should be "Azure Storage Account Name" for accuracy.

Suggested change

	--integration.storage.v2.azure-blob-storage.account-name string AzureBlobStorage Account ID (Env: INTEGRATION_STORAGE_V2_AZURE_BLOB_STORAGE_ACCOUNT_NAME)
	--integration.storage.v2.azure-blob-storage.account-name string Azure Storage Account Name (Env: INTEGRATION_STORAGE_V2_AZURE_BLOB_STORAGE_ACCOUNT_NAME)

[Copilot]

Azure Blob Storage uses "container" terminology, not "bucket". The field documentation for bucketName and bucketPath should reference "container" instead to align with Azure's native terminology.

[Copilot]

The test function name "Test" is too generic and does not follow Go testing conventions. Test function names should be descriptive and start with "Test" followed by a meaningful name (e.g., "TestAzureBlobStorageOperations" or "TestBasicIOOperations"). This makes it clearer what the test is validating and improves test organization.

Suggested change

	func Test(t *testing.T) {
	func TestAzureBlobStorageBasicIO(t *testing.T) {