First pass converting seer api calls to using signature

[corps]

Gotta adjust some tests.

This addresses the need to sign not just to sentry, but from sentry. Unfortunately, given the way we did signing originally, we can't reuse the existing secret due to asymmetry. However, good news is that all of this may be replaceable with grpc in the near future. This addresses the immediate security issues and puts us on track to remove most of this later.

See https://github.com/getsentry/seer/pull/774/files

[codecov]

Codecov Report

Attention: Patch coverage is 92.20779% with 6 lines in your changes missing coverage. Please review.

Project coverage is 78.10%. Comparing base (c7d5cbf) to head (fa939de).
Report is 5 commits behind head on master.

Additional details and impacted files

@@             Coverage Diff             @@
##           master   #72486       +/-   ##
===========================================
+ Coverage   67.02%   78.10%   +11.07%     
===========================================
  Files        6605     6601        -4     
  Lines      294521   294098      -423     
  Branches    50761    50664       -97     
===========================================
+ Hits       197403   229697    +32294     
+ Misses      90285    58122    -32163     
+ Partials     6833     6279      -554     

Files	Coverage Δ
src/sentry/api/endpoints/group_autofix_update.py	93.10% <100.00%> (+0.24%)	⬆️
.../api/endpoints/organization_profiling_functions.py	93.54% <100.00%> (+55.64%)	⬆️
...endpoints/project_autofix_create_codebase_index.py	100.00% <100.00%> (ø)
src/sentry/api/helpers/autofix.py	100.00% <100.00%> (ø)
src/sentry/autofix/utils.py	92.10% <100.00%> (+17.81%)	⬆️
src/sentry/conf/server.py	87.72% <100.00%> (+0.02%)	⬆️
src/sentry/options/defaults.py	100.00% <100.00%> (ø)
src/sentry/seer/breakpoints.py	100.00% <100.00%> (+30.55%)	⬆️
src/sentry/seer/signed_seer_api.py	100.00% <100.00%> (ø)
src/sentry/seer/similarity/backfill.py	80.76% <100.00%> (+29.78%)	⬆️
... and 4 more

... and 1871 files with indirect coverage changes

[markstory]

Do you think you're at a point where you would benefit from a small client library that packages up these common header and request serialization concerns?

[corps]

Yes, although that is a bit deeper of a change with some larger risks as well. Not all call sites behave the same way and I don't have full confidence I understand their contexts, in part because those callsites are maintained by other teams. My first thought was to get this change in safely and then consider other changes.

[Zylphrex]

Was this updated in seer? Last I checked, this param required parenthesis.

[corps]

For awhile (since changes I made) it has been a working alias so that both work: https://github.com/getsentry/seer/blob/6f656ea74d695c59b504e5648e615861038e04d9/src/seer/trend_detection/trend_detector.py#L52

This change also pushes us closer to uhm, making this all implementable with gRPC 🤫 getsentry/seer#798

[corps]

@markstory Finally ready for review if you have a chance.

[markstory]

Looks good to me.

[markstory]

Does orjson not work here?

[corps]

Probably, I took what was at the original callsite and used that. Should all json calls be orjson now? Is there any considersations or concerns about behavior changes?