impl(oauth2): building blocks for AWS external accounts

[coryan]

As with the other external accounts, we need to build a subject token for AWS external accounts. Building this subject token requires obtaining a number of pieces of information. These can be found on environment variables or via the VM's metadata service. The functions to get them are complex enough that they deserve their own tests.

Part of the work for #5915

---

This change is 

[google-cloud-cpp-bot]

Google Cloud Build Logs
For commit: cb3c18fde23954be2bb8bb2fb8d01a5d4e2c8b03

• Public Access Build Logs
• Cloud Build Console (requires auth)
• Kokoro Logs (requires auth)

ℹ️ NOTE: Kokoro logs are linked from "Details" below.

[codecov]

Codecov Report

Base: 93.86% // Head: 93.86% // Increases project coverage by +0.00% 🎉

Coverage data is based on head (dae9615) compared to base (aaef42e).
Patch coverage: 97.53% of modified lines in pull request are covered.

Additional details and impacted files

@@           Coverage Diff            @@
##             main   #10439    +/-   ##
========================================
  Coverage   93.86%   93.86%            
========================================
  Files        1612     1612            
  Lines      146356   146640   +284     
========================================
+ Hits       137370   137647   +277     
- Misses       8986     8993     +7     

Impacted Files	Coverage Δ
...loud/internal/external_account_token_source_aws.cc	92.45% <91.78%> (-1.49%)	⬇️
...internal/external_account_token_source_aws_test.cc	99.69% <99.52%> (-0.31%)	⬇️
...loud/spanner/internal/logging_result_set_reader.cc	88.00% <0.00%> (-4.00%)	⬇️
...e/cloud/pubsublite/internal/alarm_registry_impl.cc	97.05% <0.00%> (-2.95%)	⬇️
...integration_tests/schema_admin_integration_test.cc	98.88% <0.00%> (-1.12%)	⬇️
...cloud/pubsub/internal/subscription_session_test.cc	97.82% <0.00%> (-0.51%)	⬇️
google/cloud/storage/parallel_upload.cc	98.28% <0.00%> (-0.35%)	⬇️
...le/cloud/spanner/database_admin_connection_test.cc	99.70% <0.00%> (+0.19%)	⬆️
google/cloud/spanner/database_admin_connection.cc	85.59% <0.00%> (+0.28%)	⬆️
...le/cloud/internal/default_completion_queue_impl.cc	97.15% <0.00%> (+0.56%)	⬆️
... and 2 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[devbww]

Do we need check path.empty()?

[coryan]

I am going to leave this as-is for now. This will only be used with an info initialized with ParseExternalAccountTokenSourceAws() and I will be adding some code to prevent empty url values to that function.

[google-cloud-cpp-bot]

Google Cloud Build Logs
For commit: 8c8e14797e6c491d2a6c685c21237fbd31f29c3c

• Public Access Build Logs
• Cloud Build Console (requires auth)
• Kokoro Logs (requires auth)

ℹ️ NOTE: Kokoro logs are linked from "Details" below.

[google-cloud-cpp-bot]

Google Cloud Build Logs
For commit: dae9615eecf294efd784d26c32a862c95db027a0

• Public Access Build Logs
• Cloud Build Console (requires auth)
• Kokoro Logs (requires auth)

ℹ️ NOTE: Kokoro logs are linked from "Details" below.