Cloud native automation with Google Cloud Build easily automate tasks in a fully managed, scalable, and secure platform
Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build Key Features Learn Cloud Build's API and build configuration/schema Apply scalability and security best prac...
Otros Autores: | , |
---|---|
Formato: | Libro electrónico |
Idioma: | Inglés |
Publicado: |
Birmingham, England ; Mumbai :
Packt
[2022]
|
Edición: | 1st ed |
Materias: | |
Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009686031306719 |
Tabla de Contenidos:
- Cover
- Title Page
- Copyright and Credits
- Dedication
- Contributors
- Table of Contents
- Preface
- Part 1: The Fundamentals
- Chapter 1: Introducing Google Cloud Build
- Technical requirements
- The value of automation
- Before there was the cloud
- Making sure there are enough resources
- Who needs to manage all of this?
- Reducing toil with managed services
- Cloud-native automation with Google Cloud Build
- GCP service integrations
- Summary
- Chapter 2: Configuring Cloud Build Workers
- Technical requirements
- How worker pools can be configured in Cloud Build
- Prerequisites for running builds on worker pools
- Using the default pool
- Using private pools
- Summary
- Chapter 3: Getting Started
- Which Build Information Is Available to Me?
- Technical requirements
- How your build resources are accessed
- Build submission and status
- Using the GCP console
- Build operations
- Summary
- Part 2: Deconstructing a Build
- Chapter 4: Build Configuration and Schema
- Defining the minimum configuration for build steps
- Setting up your environment
- Defining your build step container image
- Defining your build step arguments
- Adjusting the default configuration for the build steps
- Defining the relationships between individual build steps
- Configuring build-wide specifications
- Summary
- Chapter 5: Triggering Builds
- Technical requirements
- The anatomy of a trigger
- Integrations with source code management platforms
- Defining your own triggers
- Webhook triggers
- Manual triggers
- Summary
- Chapter 6: Managing Environment Security
- Defense in depth
- The principle of least privilege
- Accessing sensitive data and secrets
- Secret Manager
- Cloud Key Management
- Build metadata for container images
- Provenance
- Attestations
- Securing the network perimeter
- Summary
- Part 3: Practical Applications
- Chapter 7: Automating Deployment with Terraform and Cloud Build
- Treating infrastructure as code
- Simple and straightforward Terraform
- The separation of resource creation and the build steps
- Building a custom builder
- Managing the principle of least privilege for builds
- Human-in-the-loop with manual approvals
- Summary
- Chapter 8: Securing Software Delivery to GKE with Cloud Build
- Creating your build infrastructure and deployment target
- Enabling foundational Google Cloud services
- Setting up the VPC networking for your environment
- Setting up your private GKE cluster
- Securing build and deployment infrastructure
- Creating private pools with security best practices
- Securing access to your private GKE control plane
- Applying POLP to builds
- Creating build-specific IAM service accounts
- Custom IAM roles for build service accounts
- Configuring release management for builds
- Integrating SCM with Cloud Build
- Gating builds with manual approvals