Not possible to use instance credentials for artifactory-ha

[ljupchokotev]

Is this a request for help?: Yes

---

Is this a BUG REPORT or FEATURE REQUEST? (choose one): BUG REPORT

Version of Helm and Kubernetes: 3.9.4, 1.21.14

Which chart: artifactory-ha

What happened: The helm chart forces you to provide a service account key once you set persistence.googleStorage.gcpServiceAccount.enabled to true in the persistence.googleStorage.gcpServiceAccount.config value. We want to use Artifactory with Workload Identity which uses the pod's service account credentials to connect to the GCS bucket without a key. We have to set persistence.googleStorage.gcpServiceAccount.enabled to true in order to enable the google-storage-v2 provider which can use the instance credentials (workload identity).

What you expected to happen: I expected to not provide a service account key and deploy Artifactory with just the specific service account which would automatically work with Workload Identity.

How to reproduce it (as minimally and precisely as possible): Set persistence.googleStorage.gcpServiceAccount.enabled to true. The helm deploy will fail because you have not provided a key.

Anything else we need to know: I have done changes to our copy of the Helm chart and it works with Workload Identity without providing any key.