Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Cloud Native Automation with Google Cloud Build
  • Table Of Contents Toc
  • Feedback & Rating feedback
Cloud Native Automation with Google Cloud Build

Cloud Native Automation with Google Cloud Build

By : Anthony Bushong, Kent Hua
5 (1)
Buy this Book
close
close
Cloud Native Automation with Google Cloud Build

Cloud Native Automation with Google Cloud Build

5 (1)
By: Anthony Bushong, Kent Hua
Buy this Book

Overview of this book

When adopting cloud infrastructure, you are often looking to modernize the automation of workflows such as continuous integration and software delivery. Minimizing operational overhead via fully managed solutions such as Cloud Build can be tough. Moreover, learning Cloud Build’s API and build schema, scalability, security, and integrating Cloud Build with other external systems can be challenging. This book helps you to overcome these challenges by cementing a Google Cloud Build foundation. The book starts with an introduction to Google Cloud Build and explains how it brings value via automation. You will then configure the architecture and environment in which builds run while learning how to execute these builds. Next, you will focus on writing and configuring fully featured builds and executing them securely. You will also review Cloud Build's functionality with practical applications and set up a secure delivery pipeline for GKE. Moving ahead, you will learn how to manage safe roll outs of cloud infrastructure with Terraform. Later, you will build a workflow from local source to production in Cloud Run. Finally, you will integrate Cloud Build with external systems while leveraging Cloud Deploy to manage roll outs. By the end of this book, you’ll be able to automate workflows securely by leveraging the principles of Google Cloud Build.
Table of Contents (18 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Part 1: The Fundamentals
Part 1: The Fundamentals
Free Chapter
2
Chapter 1: Introducing Google Cloud Build
Chapter 1: Introducing Google Cloud Build
Technical requirements
The value of automation
Before there was the cloud
Reducing toil with managed services
Cloud-native automation with Google Cloud Build
Summary
3
Chapter 2: Configuring Cloud Build Workers
Chapter 2: Configuring Cloud Build Workers
Technical requirements
How worker pools can be configured in Cloud Build
Prerequisites for running builds on worker pools
Using the default pool
Using private pools
Summary
4
Chapter 3: Getting Started – Which Build Information Is Available to Me?
Chapter 3: Getting Started – Which Build Information Is Available to Me?
Technical requirements
How your build resources are accessed
Build submission and status
Using the GCP console
Build operations
Summary
5
Part 2: Deconstructing a Build
Part 2: Deconstructing a Build
6
Chapter 4: Build Configuration and Schema
Chapter 4: Build Configuration and Schema
Defining the minimum configuration for build steps
Setting up your environment
Adjusting the default configuration for the build steps
Defining the relationships between individual build steps
Configuring build-wide specifications
Summary
7
Chapter 5: Triggering Builds
Chapter 5: Triggering Builds
Technical requirements
The anatomy of a trigger
Integrations with source code management platforms
Defining your own triggers
Summary
8
Chapter 6: Managing Environment Security
chevron up
Chapter 6: Managing Environment Security
Defense in depth
The principle of least privilege
Accessing sensitive data and secrets
Build metadata for container images
Securing the network perimeter
Summary
9
Part 3: Practical Applications
Part 3: Practical Applications
10
Chapter 7: Automating Deployment with Terraform and Cloud Build
Chapter 7: Automating Deployment with Terraform and Cloud Build
Treating infrastructure as code
Building a custom builder
Managing the principle of least privilege for builds
Human-in-the-loop with manual approvals
Summary
11
Chapter 8: Securing Software Delivery to GKE with Cloud Build
Chapter 8: Securing Software Delivery to GKE with Cloud Build
Creating your build infrastructure and deployment target
Securing build and deployment infrastructure
Applying POLP to builds
Configuring release management for builds
Enabling verifiable trust in artifacts from builds
Summary
12
Chapter 9: Automating Serverless with Cloud Build
Chapter 9: Automating Serverless with Cloud Build
Understanding Cloud Functions and Cloud Run
Building containers without a build configuration
Automating tasks for Cloud Run and Cloud Functions
Summary
13
Chapter 10: Running Operations for Cloud Build in Production
Chapter 10: Running Operations for Cloud Build in Production
Executing in production
Configurations to consider in production
Speeding up your builds
Summary
14
Part 4: Looking Forward
Part 4: Looking Forward
15
Chapter 11: Looking Forward in Cloud Build
Chapter 11: Looking Forward in Cloud Build
Implementing continuous delivery with Cloud Deploy
Summary
16
Index
Index
Why subscribe?
17
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Defense in depth

The concept of defense in depth for computing is used by information security to ensure that security constructs are put in place at each layer for protection. Cloud Build ensures that these security constructs are in place; some examples are noted in Figure 6.1:

Figure 6.1 – Defense in depth with Cloud Build

While Cloud Build provides the capabilities mentioned here, some services must be enabled or leveraged in the pipeline. There are other security-related solutions available in the market that may not have direct integration with Cloud Build, but they can still be used for pipeline steps due to Cloud Build’s support for custom container images in each step. For instance, you may be able to retrieve values from HashiCorp Vault if your container image has the correct libraries and tools.

There are also a few other examples to be aware of that may leave pipelines sharing sensitive information:

  • Steps that output and...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 2
Next Section
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY