docs: add an example of authentication with Azure Container Registry

[wangxiaoxuan273]

What this PR does / why we need it

This PR adds an example of using oras-dotnet to authenticate with Azure Container Registry.

Which issue(s) this PR resolves / fixes

Resolves / Fixes #267

Please check the following list

• Does the affected code have corresponding tests, e.g. unit test, E2E test?
• Does this change require a documentation update?
• Does this introduce breaking changes that would require an announcement or bumping the major version?
• Do all new files have an appropriate license header?

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 91.76%. Comparing base (6c439ff) to head (e80f686).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #321   +/-   ##
=======================================
  Coverage   91.76%   91.76%           
=======================================
  Files          64       64           
  Lines        2755     2755           
  Branches      364      364           
=======================================
  Hits         2528     2528           
  Misses        138      138           
  Partials       89       89           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[Copilot]

Pull request overview

This PR adds documentation and example code demonstrating how to authenticate with Azure Container Registry (ACR) using Azure Active Directory (AAD) credentials in the ORAS .NET library.

Changes:

• Added AzureCredentialProvider class implementing ICredentialProvider for ACR authentication via AAD token exchange
• Added AzureContainerRegistryAuthentication example demonstrating ACR authentication and cross-registry copy operations
• Added Azure SDK dependencies (Azure.Containers.ContainerRegistry 1.3.0, Azure.Identity 1.13.1)
• Updated API documentation index to include the new ACR authentication example

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated 12 comments.

Show a summary per file

File	Description
tests/OrasProject.Oras.Tests/examples/AzureCredentialProvider.cs	Implements ICredentialProvider for ACR authentication using Azure DefaultAzureCredential and AAD token exchange
tests/OrasProject.Oras.Tests/examples/AzureContainerRegistryAuthentication.cs	Demonstrates usage of AzureCredentialProvider for cross-registry artifact copy operations
tests/OrasProject.Oras.Tests/OrasProject.Oras.Tests.csproj	Adds Azure SDK package references for ACR and Azure Identity support
docs/api/index.md	Adds link to the new ACR authentication documentation
docs/api/authenticate_with_ACR.md	Documentation page that includes the ACR authentication examples

[Copilot]

Pull request overview

Copilot reviewed 5 out of 5 changed files in this pull request and generated no new comments.

[sajayantony]

This is cloud specific implementation. I would rename this as _acrClient. _crClient makes its look like a generic client.

[wangxiaoxuan273]

renamed

[sajayantony]

Call out that its using DefaultAzureCredential with the fully qualified type name using cref.

[wangxiaoxuan273]

updated

[Copilot]

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 2 comments.

[Copilot]

Pull request overview

Copilot reviewed 6 out of 7 changed files in this pull request and generated 1 comment.

[Copilot]

Pull request overview

Copilot reviewed 6 out of 8 changed files in this pull request and generated 2 comments.

[Wwwsylvia]

nit: We might want to put it in a new section called "Cloud-specific Examples" or something like that

[wangxiaoxuan273]

Added a new section "Cloud-specific Examples"

[Copilot]

Pull request overview

Copilot reviewed 6 out of 6 changed files in this pull request and generated 3 comments.

[Copilot]

ResolveCredentialAsync throws when hostname doesn’t match Host and compares with a case-sensitive !=. In this codebase, ICredentialProvider implementations return an empty credential for non-matching registries (see SingleRegistryCredentialProvider in src/OrasProject.Oras/Registry/Remote/Auth/SingleRegistryCredentialProvider.cs:75-89), and hostnames should be compared case-insensitively. Consider returning CredentialExtensions.EmptyCredential (or new Credential()) when the hostname doesn’t match, and using string.Equals(..., StringComparison.OrdinalIgnoreCase) (also use IsNullOrWhiteSpace for validation to match existing patterns).

[Copilot]

This is an async method but its name doesn’t use the Async suffix, and it also omits a trailing optional CancellationToken parameter. Repo guideline is that async methods should end with Async and CancellationToken should be last with a default value; updating the example keeps it consistent with the rest of the codebase.

[Copilot]

HttpClient is instantiated but never disposed. Even in examples, prefer using var httpClient = new HttpClient(); (or pass an injected/shared HttpClient) to avoid socket exhaustion and to model the recommended usage pattern.