[feat][io] Support configuration secret interpolation

[michaeljmarshall]

PIP: #20903
Relates to: #20862

Motivation

The primary motivation is to make it possible to configure Pulsar Connectors in a secure, non-plaintext way. See the PIP for background and relevant details. The new interpolation feature only applies when deploying with functions to Kubernetes.

Modifications

• Add SecretsProvider#interpolateSecretForValue method with a default that maintains the current behavior.
• Override interpolateSecretForValue in the EnvironmentBasedSecretsProvider so that configuration values formatted as ${my-env-var} will be replaced with the result of System.getEnv("my-env-var") if the result is not null.
• Implement a recursive string interpolation method that will replace any configuration value that the interpolateSecretForValue implementation determines ought to be replaced.

Verifying this change

Tests are added/modified.

Documentation

• doc-required

Matching PR in forked repository

PR in forked repository: michaeljmarshall#55

[eolivelli]

+1

[michaeljmarshall]

/pulsarbot rerun-failure-checks

[shibd]

/LGTM

[shibd]

It's better to add unit tests to the method separately.

[codecov-commenter]

Codecov Report

❌ Patch coverage is 88.88889% with 3 lines in your changes missing coverage. Please review.
✅ Project coverage is 73.10%. Comparing base (d6734b7) to head (5e05025).
⚠️ Report is 1845 commits behind head on master.

Files with missing lines	Patch %	Lines
...ulsar/functions/instance/JavaInstanceRunnable.java	85.00%	2 Missing and 1 partial ⚠️

Additional details and impacted files

@@              Coverage Diff              @@
##             master   #20901       +/-   ##
=============================================
+ Coverage     36.84%   73.10%   +36.25%     
- Complexity    12195    32255    +20060     
=============================================
  Files          1698     1875      +177     
  Lines        129852   139455     +9603     
  Branches      14161    15334     +1173     
=============================================
+ Hits          47843   101946    +54103     
+ Misses        75680    29448    -46232     
- Partials       6329     8061     +1732     

Flag	Coverage Δ
inttests	24.23% <0.00%> (+0.10%)	⬆️
systests	25.13% <14.81%> (+0.03%)	⬆️
unittests	72.40% <88.88%> (+40.34%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Files with missing lines	Coverage Δ
...cretsprovider/EnvironmentBasedSecretsProvider.java	100.00% <100.00%> (+100.00%)	⬆️
...sar/functions/secretsprovider/SecretsProvider.java	100.00% <100.00%> (ø)
...ulsar/functions/instance/JavaInstanceRunnable.java	71.85% <85.00%> (+9.98%)	⬆️

... and 1435 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.