Automated rotate root support for AWS Auth and DB Secrets

[vinay-gopalan]

Description

Adds new support for using Automated Rotation with AWS Auth and DB Secrets.
Note: This feature is Enterprise only and will only work with an Enterprise Vault instance. Tests for the feature will also be added against Vault Enterprise once this PR is merged.

Other changes:

• Refactors some rotate root methods to be re-usable between manual and automated root rotations
• Uses MountPoint instead of MountType to correctly route requests to custom mount aliases (eg: foo/bar/baz/config)
• Adds validation for fields along with tests
• Adds an error log in configuration steps in case the write to storage fails but a rotation operation succeeds. User will receive an error as well as see a verbose error log in this case.

[github-actions]

CI Results: failed ❌
Failures:

Test Type	Package	Test	Logs
race	builtin/credential/aws	TestBackend_ConfigClient	view test results
race	builtin/credential/aws	TestBackend_pathConfigClient	view test results
race	builtin/credential/aws	TestBackend_pathLogin_IAMHeaders	view test results
race	builtin/credential/aws	TestBackend_pathLogin_IAMHeaders/Default	view test results
race	builtin/logical/aws	TestBackend_PathConfigRoot	view test results
race	builtin/logical/aws	TestBackend_PathConfigRoot_RegisterRootRotation	view test results
race	builtin/logical/aws	TestBackend_PathConfigRoot_STSFallback	view test results
race	builtin/logical/aws	TestBackend_iamGroupsCRUD	view test results
race	builtin/logical/aws	TestBackend_iamTagsCRUD	view test results
race	builtin/logical/aws	TestBackend_policyArnCRUD	view test results

and 124 - 10 other tests

[github-actions]

Build Results:
All builds succeeded! ✅

[vinay-gopalan]

In production, schedules using seconds should be disallowed. Only useful in testing. Matches behavior with the DB Engine as well

[kpcraig]

Does updating the data extraction like this change any of the user-facing behaviors?