Introduce separate ICacheService implementations for single user CLI vs multi-user web API.

[vukelich]

What does this PR do?

[Provide a clear, concise description of the changes]

Update various Azure Data tools to avoid OAuth access token caching directly and instead rely on IAzureTokenCredentialProvider infra to do so.

Remove unsafe instance-level caching in BaseAzureService and Monitor services

Removed stateful fields that cached user-specific credentials and tokens in:

• BaseAzureService: Removed ArmClient caching and GetCachedTokenAsync helper
• MonitorHealthModelService: Removed cached dataplane/control plane tokens
• MonitorService: Removed cached management token

These instance-level caches were not safe for multi-user scenarios where different users access the same service instance with different identities. Now relies on Azure SDK's built-in thread-safe caching in TokenCredential.

GitHub issue number?

[Link to the GitHub issue this PR addresses]

Pre-merge Checklist

• Required for All PRs
  • Read contribution guidelines
  • PR title clearly describes the change
  • Commit history is clean with descriptive messages (cleanup guide)
  • Added comprehensive tests for new/modified functionality
  • Updated servers/Azure.Mcp.Server/CHANGELOG.md and/or servers/Fabric.Mcp.Server/CHANGELOG.md for product changes (features, bug fixes, UI/UX, updated dependencies)
• For MCP tool changes:
  • One tool per PR: This PR adds or modifies only one MCP tool for faster review cycles
  • Updated servers/Azure.Mcp.Server/README.md and/or servers/Fabric.Mcp.Server/README.md documentation
  • Validate README.md changes using script at eng/scripts/Process-PackageReadMe.ps1. See Package README
  • Updated command list in /servers/Azure.Mcp.Server/docs/azmcp-commands.md and/or /docs/fabric-commands.md
  • Run .\eng\scripts\Update-AzCommandsMetadata.ps1 to update tool metadata in azmcp-commands.md (required for CI)
  • For new or modified tool descriptions, ran ToolDescriptionEvaluator and obtained a score of 0.4 or more and a top 3 ranking for all related test prompts
  • For new tools associated with Azure services or publicly available tools/APIs/products, add URL to documentation in the PR description
• Extra steps for Azure MCP Server tool changes:
  • Updated test prompts in /servers/Azure.Mcp.Server/docs/e2eTestPrompts.md
  • 👉 For Community (non-Microsoft team member) PRs:
    • Security review: Reviewed code for security vulnerabilities, malicious code, or suspicious activities before running tests (crypto mining, spam, data exfiltration, etc.)
    • Manual tests run: added comment /azp run mcp - pullrequest - live to run Live Test Pipeline

The base branch was changed.

[Copilot]

Pull Request Overview

This PR refactors token caching logic across multiple Azure service implementations by removing manual token caching and relying on the underlying Azure SDK's built-in token caching mechanism. The changes also introduce distinct cache service implementations for single-user CLI and multi-user web API scenarios.

• Removes manual token caching (fields and logic) from PostgresService, MySqlService, MonitorService, MonitorHealthModelService, and MarketplaceService
• Standardizes token acquisition to always use GetCredential() with proper CancellationToken propagation
• Introduces SingleUserCliCacheService and HttpServiceCacheService as distinct implementations of ICacheService with appropriate DI registration methods
• Updates parameter naming from tenant to tenantId or tenantIdOrName for clarity in several methods

Reviewed Changes

Copilot reviewed 20 out of 21 changed files in this pull request and generated 2 comments.

Show a summary per file

File	Description
PostgresService.cs	Removed cached token fields and logic, simplified GetEntraIdAccessTokenAsync to use SDK token caching
MySqlService.cs	Removed cached token fields, lock object, and caching logic from GetEntraIdAccessTokenAsync
MonitorService.cs	Removed GetCachedManagementTokenAsync method and associated caching fields, updated CallActivityLogApiAsync to use direct token acquisition
MonitorHealthModelService.cs	Removed token caching fields and GetCachedTokenAsync calls, simplified control plane and dataplane token methods
MonitorCommandTests.cs	Updated to use SingleUserCliCacheService instead of CacheService
MarketplaceService.cs	Removed GetAccessTokenAsync caching method, renamed method to GetArmAccessTokenAsync, updated documentation from "tenant" to "tenantId"
ProductListCommandTests.cs	Updated to use SingleUserCliCacheService
ProductGetCommandTests.cs	Updated to use SingleUserCliCacheService
DatadogService.cs	Updated parameter name from tenant to tenantIdOrName in CreateArmClientAsync call
AppConfigCommandTests.cs	Updated to use SingleUserCliCacheService
Program.cs (Template/Fabric/Azure servers)	Updated DI registration to use new AddSingleUserCliCacheService() extension method
CacheServiceTests.cs	Updated to use SingleUserCliCacheService
SingleUserCliCacheService.cs	Renamed from CacheService, added comprehensive documentation
HttpServiceCacheService.cs	New stub implementation for multi-user web API scenarios
CachingServiceCollectionExtensions.cs	New file with extension methods for registering cache services
BaseAzureService.cs	Removed ArmClient caching, removed GetCachedTokenAsync method, renamed parameter tenant to tenantIdOrName in CreateArmClientAsync
TransportTypes.cs	Added Http constant for Streamable HTTP transport
ServiceStartCommand.cs	Added AddHttpServiceCacheService() calls for HTTP hosts
launchSettings.json	Removed trailing whitespace

[anuchandy]

ty!

[anuchandy]

/azp run mcp - pullrequest - live

[azure-pipelines]

Azure Pipelines successfully started running 1 pipeline(s).

[vukelich]

Bypassing merge rule for microsoft/fabric-mcp owner review required. We're making lots of big changes in main, and I'll be working with them to recover after everything settles down.