Multi-party updates to distributed systems

What is claimed is: 1. A system, comprising: a plurality of compute nodes, comprising at least one processor and a memory that implement a distributed system, wherein the distributed system is operated on behalf of a plurality of user accounts, wherein one or more of the compute nodes implement an agreement manager for performance of updates to the distributed system; and the agreement manager, configured to: receive, via an interface for the distributed system, an agreement request from one of the user accounts that proposes one or more updates to the distributed system; responsive to the agreement request: determine an authorization scheme for authorization of the proposed updates; identify one or more other ones of the user accounts as approvers for the agreement request according to the authorization scheme; provide, via the interface, respective notifications of the proposed updates for approval, to the identified user accounts; receive, via the interface, corresponding responses from at least one of the identified user accounts; evaluate the one or more responses to determine whether the authorization scheme for the agreement request is satisfied; determine that the authorization scheme for the agreement request is satisfied based at least in part on the evaluation; and responsive to the determination that the authorization scheme is satisfied, direct performance of the one or more updates to the distributed system. 2. The system of claim 1 , wherein the agreement request identifies the authorization scheme for the agreement request, and wherein to determine the authorization scheme, the agreement manager is configured to parse the agreement request to discover the identified authorization scheme. 3. The system of claim 1 , wherein the authorization scheme comprises a requirement that the at least one user account approve of the proposed updates. 4. The system of claim 1 , wherein the distributed system is a provider network, wherein the updates describe updates to a hierarchical data structure maintained for the provider network comprising a plurality of resource data objects that identify policies applicable to the behavior of resources implemented at one or more network-based services in the provider network corresponding to the resource data objects. 5. A method, comprising: performing, by one or more computing devices: receiving an agreement request associated with a user account proposing one or more updates to a hierarchical data structure comprising a plurality of resource data objects that identify policies applicable to the behavior of resources corresponding to the resource data objects in the distributed system; responsive to the agreement request: identifying, from other user accounts of the distributed system that are different than the user account, one or more approvers for the agreement request according to an authorization scheme for the agreement request to provide respective notifications of the proposed one or more updates; evaluating one or more responses received from at least one of the approvers to determine whether the authorization scheme for the agreement request is satisfied; determining, based on the evaluating, that the authorization scheme for the agreement request is satisfied; and responsive to determining that the authorization scheme is satisfied, performing the one or more updates to the hierarchical data structure. 6. The method of claim 5 , wherein the agreement request identifies the authorization scheme for the agreement request. 7. The method of claim 5 , wherein the authorization scheme comprises a requirement that the at least one approver approve of the proposed updates. 8. The method of claim 5 , wherein the authorization scheme comprises one or more quorum requirements for the identified approvers, and wherein evaluating the one or more responses received from the at least one user account identified for approval comprises verifying that the responses indicate approval of a respective minimum number of approvers identified for the one or more quorum requirements. 9. The method of claim 5 , further comprising: prior to evaluating the one or more responses, receiving a request to modify the authorization scheme for the agreement request, wherein the evaluation of the one or more response determines whether the modified authorization scheme is satisfied. 10. The method of claim 5 , further comprising: receiving another agreement request proposing one or more other updates to the hierarchical data structure; identifying one or more other approvers for the other agreement request according to a different authorization scheme for the other agreement request; sending other respective notifications of the other proposed updates to the other identified approvers; evaluating one or more other responses received from at least one of the other approvers to determine that the different authorization scheme for the other agreement request is not satisfied; and determining that the different authorization scheme for the other agreement request is not satisfied; and rejecting the other agreement request. 11. The method of claim 5 , further comprising: receiving another agreement request proposing one or more other updates to the hierarchical data structure; identifying one or more other approvers for the other agreement request according to a different authorization scheme for the other agreement request; sending other respective notifications of the other proposed updates to the other identified approvers; determining that an expiration time limit to authorize the other agreement request is expired; and rejecting the other agreement request. 12. The method of claim 5 , further comprising: receiving another agreement request proposing one or more other updates to the hierarchical data structure; determining that the other agreement request is a duplicate of a prior agreement request that has been received; and rejecting the other agreement request. 13. The method of claim 5 , wherein the distributed system is a provider network, wherein the resources implemented as part of one or more network-based services in the provider network, and wherein the agreement request and the responses are received via an interface of the provider network. 14. A non-transitory, computer-readable storage medium, storing program instructions that when executed by one or more computing devices cause the one or more computing devices to implement: receiving an agreement request proposing one or more updates to a distributed system, wherein the distributed system is operated on behalf of a plurality of user accounts, wherein the plurality of user accounts correspond to resource data objects in a hierarchical data structure describing the user accounts for the distributed system, wherein the agreement request is received from one of the user accounts; responsive to the agreement request: identifying one or more other ones of the user accounts as approvers for the agreement request according to an authorization scheme for the agreement request; providing respective notifications of the proposed updates to the approvers; evaluating one or more responses received from at least one of the user accounts identified as approvers to determine whether the authorization scheme for the agreement request is satisfied; determining, based on the evaluating, that the authorization scheme for the agreement request is satisfied; and responsive to determining that the authorization scheme is satisfied, directing performance of the one or more updates to the distributed system.