Add option to use v2 signatures for S3 blocks store

[simonswine]

What this PR does:

• This allows to configure the block store client to use V2 signatures for S3 authentication.
• This updates thanos to include s3: Respect SignatureV2 flag for all credential providers thanos-io/thanos#3496

Checklist

• Tests updated
• Documentation added
• CHANGELOG.md updated - the order of entries should be [CHANGE], [FEATURE], [ENHANCEMENT], [BUGFIX]

[pstibrany]

I think we’re missing setting of the corresponding field here:

cortex/pkg/storage/backend/s3/bucket_client.go

Line 20 in 574df71

func newS3Config(cfg Config) s3.Config {

[pracucci]

Yes, this field is currently unused. Needs to be passed to the S3 client.

Another comment I have. Such booleans are bad for extensibility in the future, in case a new version scheme will be introduced. You may achieve the same result allowing to configure the version number signature_version: 2|4, introducing a check in Config.Validate() (function to be added and called from parents) to make sure it's either 2 or 4. If in the future v6 will be introduced, this flag will support it too.

[simonswine]

Thanks for spotting the missing passing-through 😬

On using an enum parameter: I have done that as part of the last commit. I think it might be misrepresenting what is actually happening, I am not too sure as in the background the minio client seems to use https://github.com/minio/minio-go/blob/26addf203d4a7d73e33f0731b67a7c02a910632a/pkg/credentials/signature-type.go#L28 SignatureDefault, which is equal to v4. It might be more accurate to rename the parameters from v4 to default, but I felt that is more confusing.

Btw: I have purposely used strings with v prefix to avoid YAML parsing issues around integers vs. strings.

[pstibrany]

LGTM, thanks!

[pracucci]

LGTM, thanks!