Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Google Cloud Certified Professional Cloud Developer Exam Guide
  • Toc
  • feedback
Google Cloud Certified Professional Cloud Developer Exam Guide

Google Cloud Certified Professional Cloud Developer Exam Guide

By : Sebastian Moreno
5 (5)
close
Google Cloud Certified Professional Cloud Developer Exam Guide

Google Cloud Certified Professional Cloud Developer Exam Guide

5 (5)
By: Sebastian Moreno

Overview of this book

Google Cloud Platform is one of the three major cloud providers in the industry, exhibiting great leadership in application modernization and data management. This book provides a comprehensive introduction for those who are new to cloud development and shows you how to use the tools to create cloud-native applications by integrating the technologies used by Google. The book starts by taking you through the basic programming concepts and security fundamentals necessary for developing in Google Cloud. You'll then discover best practices for developing and deploying applications in the cloud using different components offered by Google Cloud Platform such as Cloud Functions, Google App Engine, Cloud Run, and other GCP technologies. As you advance, you'll learn the basics of cloud storage and choosing the best options for storing different kinds of data as well as understand what site reliability engineers do. In the last part, you'll work on a sample case study of Hip Local, a community application designed to facilitate communication between people nearby, created by the Google Cloud team. By the end of this guide, you'll have learned how to design, develop, and deploy an end-to-end application on the Google Cloud Platform.
Table of Contents (21 chapters)
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Section 1: Welcome to the Google Cloud Developers' Guide
Section 1: Welcome to the Google Cloud Developers' Guide
Free Chapter
2
Chapter 1: Google Cloud Platform Developer Fundamentals
chevron up
Chapter 1: Google Cloud Platform Developer Fundamentals
Technical requirements
The basics that every developer should know about Google Cloud infrastructure
Top tips for developing and implementing resilient and scalable applications
Don't waste your time – use cloud management services and securely run your applications
Summary
3
Chapter 2: Security Fundamentals and Best Practices
Chapter 2: Security Fundamentals and Best Practices
Technical requirements
Reducing the attack surface with POLP
How to authenticate client-to-service and service-to-service solutions
Managing secrets with Google Secret Manager
Google Cloud best practices
Summary
4
Section 2: Developing and Modernizing Applications on Google Cloud Platform
Section 2: Developing and Modernizing Applications on Google Cloud Platform
5
Chapter 3: Application Modernization Using Google Cloud
Chapter 3: Application Modernization Using Google Cloud
Technical requirements
Preparing your environment for developing applications on Google Cloud
Be sure that your application will work fine on the cloud with testing
Improving your delivery speed with continuous integration and delivery pipelines
Application modernization best practices
Summary
6
Chapter 4: Using Cloud Functions and Google App Engine
Chapter 4: Using Cloud Functions and Google App Engine
Technical requirements
Welcome to serverless applications
Different flavors for different situations
Exposing your services to the internet
Deployment and security considerations
How to make a canary release strategy with A/B testing
Summary
7
Chapter 5: Virtual Machines and Container Applications on Google Cloud Platform
Chapter 5: Virtual Machines and Container Applications on Google Cloud Platform
Technical requirements
Introduction to Docker and Kubernetes
How to use virtual machines on GCP
Forgetting the complexity of managing a Kubernetes cluster with GKE and Cloud Run
The full deployment life cycle of an application on Google Compute Engine
The full deployment life cycle of an application on Google Kubernetes Engine and Cloud Run
Summary
8
Chapter 6: Managing APIs on Google Cloud Platform
Chapter 6: Managing APIs on Google Cloud Platform
Technical requirements
The basics before implementing an API management solution in Google Cloud
How to protect your APIs using Cloud Endpoints on your deployments
Discovering the enterprise API management world with Apigee
Securing and managing your serverless workloads with the new Cloud API Gateway
API development best practices
Summary
9
Section 3: Storage Foundations
Section 3: Storage Foundations
10
Chapter 7: Handling Unstructured Data
Chapter 7: Handling Unstructured Data
Technical requirements
Different real-world use cases for cloud storage
How to reduce costs using different tiers
Backing up and deleting files automatically
Protecting my data with security best practices
Integrating cloud storage with my application
Summary
11
Chapter 8: Databases and Event Messages in Google Cloud
Chapter 8: Databases and Event Messages in Google Cloud
Technical requirements
First steps in the Cloud SQL and NoSQL world with Firestore
Differences in designing and integrating a SQL database versus a NoSQL database in your application
Understanding how to connect to a Cloud SQL instance and the Firestore dashboard
Decoupling applications using Pub/Sub
Creating, updating, and showing data in your frontend application
Summary
12
Chapter 9: Data Management and Database Strategies
Chapter 9: Data Management and Database Strategies
Technical requirements
How to decide which database fits your needs
Data management strategies for your databases in Google Cloud
Database and application management best practices
Summary
13
Chapter 10: Optimizing Applications with Caching Strategies on Google Cloud Platform
Chapter 10: Optimizing Applications with Caching Strategies on Google Cloud Platform
Technical requirements
How, when, and why you should use a caching strategy in your applications
Handling high traffic volumes with Memorystore for Memcached
Optimizing your application with Memorystore for Redis
Summary
14
Section 4: SRE for Developers
Section 4: SRE for Developers
15
Chapter 11: Logging on Google Cloud Platform
Chapter 11: Logging on Google Cloud Platform
Technical requirements
Introduction to Cloud Logging, the logging solution of GCP
Learning logging best practices in the cloud
How to enable an application to create custom logs
How to watch logs and make advanced logging queries on Cloud Logging
Real-case logging examples using Cloud Logging and Cloud Monitoring
Summary
16
Chapter 12: Cloud Monitoring, Tracing, and Debugging
Chapter 12: Cloud Monitoring, Tracing, and Debugging
Technical requirements
Your first operational dashboard and metrics
Optimizing your application with cloud tracing and profiling
Real case examples using cloud monitoring, debugging, and tracing for applications on GCP
Summary
17
Section 5: Analyzing a Sample Case Study
Section 5: Analyzing a Sample Case Study
18
Chapter 13: HipLocal Sample Case Study Preparation
Chapter 13: HipLocal Sample Case Study Preparation
Technical requirements
Pro tips to ace the sample case study
Reviewing the executive statement, existing solution, and requirements
Architecting the solution
Summary
19
Chapter 14: Questions and Answers
Chapter 14: Questions and Answers
Technical requirements
Questions
Answers
Summary
Why subscribe?
20
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Don't waste your time – use cloud management services and securely run your applications

In this section, we review some of the existing services to which we can delegate specific responsibilities so that we can focus development efforts on what really matters, which is business logic.

We will also review how we can communicate with these services in a secure way through service accounts, and how to ensure communication between services.

Don't reinvent the wheel

GCP offers multiple services that allow us to perform tasks just by invoking the available APIs without having to code a solution completely from scratch.

In this section, we will review 10 of the most used services in GCP. In later chapters, we will review each of these services in detail. The services are as follows:

  • Cloud storage
  • Pub/Sub
  • Cloud SQL
  • Firestore
  • Memorystore
  • Compute Engine
  • Google Kubernetes Engine
  • Google Secret Manager
  • Cloud logging
  • Cloud monitoring

Cloud Storage is an object store that allows unlimited storage of information in different regions, storage classes (the possibility of reducing costs, changing the pricing model, and the availability of the objects required by the solution), and life cycle policy configuration for existing files. It also allows access to information in a granular way and the hosting of static data web applications.

Pub/Sub is a serverless messaging service under the publisher/subscriber pattern, used for communication between two services in a reliable and decoupled way. It has automatic autoscaling and allows messages to be stored for up to 7 days in case of subscriber failures.

Cloud SQL is a self-managed solution for Online Transactional Processing (OLTP) databases such as MySQL, PostgreSQL, and SQL Server. It allows you to configure the type of machine on which the databases will run, create read-only replicas, and generate backups on a scheduled basis.

Firestore is a serverless NoSQL database solution that allows you to store information in the form of documents based on keys and values, allowing you to access the information very quickly.

Memorystore is an in-memory database solution for technologies such as Redis and Memcached, used when you want to optimize the use of resources, reduce costs, and increase performance in calls to data sources that have zero or very low modification frequency.

Compute Engine is the IaaS solution for getting virtual machines on-demand using the GCP infrastructure.

Google Kubernetes Engine is the self-managed solution for Kubernetes clusters. It offers management of the master node in a totally self-administered way, and provides a host of configuration and monitoring options through the GCP console.

Google Secret Manager is a secret storage solution. It is used in order to comply with security standards, obtaining the secrets to use in on-demand applications instead of hardcoded values.

Cloud Logging is the logging and visualization solution. It allows you to store an unlimited number of logs and query the logs.

Cloud Monitoring is the solution for viewing metrics and scheduling alerts.

These are some of the most used services on GCP. In all, over 100 services are available for delegating different responsibilities within the solution design of your application, allowing you to focus on the development of business logic and the delivery of value to the end user.

Accessing services in a secure way

When we delegate the responsibilities of our solution to one or more services, we must have a way of communicating securely from our application to each of those services.

For the consumption of services and APIs in GCP, two types of authentication are used.

If the application needs to consume GCP services such as Cloud Storage, authentication is carried out through OIDC, or OpenID Connect, an identity layer that utilizes the OAuth 2.0 protocol for authorization, allowing the identity of the consumer to be verified.

If the application is to consume any of the Google APIs hosted on googleapis.com, OAuth 2.0 is used, the standard protocol to manage authentication and authorization.

However, in most cases, it will not be necessary to use either of these protocols and connecting to any of the services will be possible simply by using the libraries of the available programming languages and a service account with the necessary permissions.

A service account is an account that is used by services to consume other services, unlike users who use a username and password. Roles are assigned to the service account (this process is called binding), which has one or more permissions already defined in order to facilitate the consumption of services.

If it is necessary to consume a service from a resource in a GCP project, simply access the project's metadata and select the service account to use. This will allow the service to have access to the service account private key path through the GOOGLE_APPLICATION_CREDENTIALS environment variable and the client library will handle the authentication using the private key and sign the access token.

On the other hand, if the application needs to consume a GCP service and the application is not inside a GCP project, it is necessary to generate a private key of that particular service account, download it, and save it safely in the resource. You can then expose it in your application through the GOOGLE_APPLICATION_CREDENTIALS environment variable:

Figure 1.9 – Service account

Figure 1.9 – Service account

In this way, it is possible to consume the different GCP services both for resources within the platform itself and as resources in other clouds or in environments within their own data centers.

End of Section 5
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete