๐”– Scriptorium
โœฆ   LIBER   โœฆ
๐Ÿ“

Cloud Native Automation with Google Cloud Build: Easily automate tasks in a fully managed, scalable, and secure platform

โœ Scribed by Anthony Bushong, Kent Hua

Publisher
Packt Publishing
Year
2022
Tongue
English
Leaves
246
Category
Library
โฌ‡  Acquire This Volume

No coin nor oath required. For personal study only.

โœฆ Synopsis

Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build

Key Features

  • Learn Cloud Build's API and build configuration/schema
  • Apply scalability and security best practices for using Cloud Build
  • Integrate Cloud Build with external systems critical to workflows

Book Description

When adopting cloud infrastructure, you are often looking to modernize the automation of workflows such as continuous integration and software delivery. Minimizing operational overhead via fully managed solutions such as Cloud Build can be tough. Moreover, learning Cloud Build's API and build schema, scalability, security, and integrating Cloud Build with other external systems can be challenging. This book helps you to overcome these challenges by cementing a Google Cloud Build foundation.

The book starts with an introduction to Google Cloud Build and explains how it brings value via automation. You will then configure the architecture and environment in which builds run while learning how to execute these builds. Next, you will focus on writing and configuring fully featured builds and executing them securely. You will also review Cloud Build's functionality with practical applications and set up a secure delivery pipeline for GKE. Moving ahead, you will learn how to manage safe roll outs of cloud infrastructure with Terraform. Later, you will build a workflow from local source to production in Cloud Run. Finally, you will integrate Cloud Build with external systems while leveraging Cloud Deploy to manage roll outs.

By the end of this book, you'll be able to automate workflows securely by leveraging the principles of Google Cloud Build.

What you will learn

  • Get started with Cloud Build the right way
  • Define new workflows using the Cloud Build schema
  • Implement a secure build and deployment environment for GKE
  • Automate serverless workflows for Cloud Run and Cloud Functions
  • Integrate Cloud Build with source code management and artifact stores
  • Develop a Cloud Build strategy for your organization

Who this book is for

This book is for cloud engineers and DevOps engineers who manage cloud environments and desire to automate workflows in a fully managed, scalable, and secure platform. You are expected to have an understanding of cloud fundamentals, software delivery, and containerization fundamentals to get the most out of this book.

Table of Contents

  1. Introducing Google Cloud Build
  2. Configuring Cloud Build Workers
  3. Getting Started โ€“ Which Build Information Is Available to Me?
  4. Build Configuration and Schema
  5. Triggering Builds
  6. Managing Environment Security
  7. Automating Deployment with Terraform and Cloud Build
  8. Securing Software Delivery to GKE with Cloud Build
  9. Automating Serverless with Cloud Build
  10. Running Operations for Cloud Build in Production
  11. Looking Forward in Cloud Build

โœฆ Table of Contents

Cover
Title Page
Copyright and Credits
Dedication
Contributors
Table of Contents
Preface
Part 1: The Fundamentals
Chapter 1: Introducing Google Cloud Build
Technical requirements
The value of automation
Before there was the cloud
Making sure there are enough resources
Who needs to manage all of this?
Reducing toil with managed services
Cloud-native automation with Google Cloud Build
GCP service integrations
Summary
Chapter 2: Configuring Cloud Build Workers
Technical requirements
How worker pools can be configured in Cloud Build
Prerequisites for running builds on worker pools
Using the default pool
Using private pools
Summary
Chapter 3: Getting Started โ€“ Which Build Information Is Available to Me?
Technical requirements
How your build resources are accessed
Build submission and status
Using the GCP console
Build operations
Summary
Part 2: Deconstructing a Build
Chapter 4: Build Configuration and Schema
Defining the minimum configuration for build steps
Setting up your environment
Defining your build step container image
Defining your build step arguments
Adjusting the default configuration for the build steps
Defining the relationships between individual build steps
Configuring build-wide specifications
Summary
Chapter 5: Triggering Builds
Technical requirements
The anatomy of a trigger
Integrations with source code management platforms
Defining your own triggers
Webhook triggers
Manual triggers
Summary
Chapter 6: Managing Environment Security
Defense in depth
The principle of least privilege
Accessing sensitive data and secrets
Secret Manager
Cloud Key Management
Build metadata for container images
Provenance
Attestations
Securing the network perimeter
Summary
Part 3: Practical Applications
Chapter 7: Automating Deployment with Terraform and Cloud Build
Treating infrastructure as code
Simple and straightforward Terraform
The separation of resource creation and the build steps
Building a custom builder
Managing the principle of least privilege for builds
Human-in-the-loop with manual approvals
Summary
Chapter 8: Securing Software Delivery to GKE with Cloud Build
Creating your build infrastructure and deployment target
Enabling foundational Google Cloud services
Setting up the VPC networking for your environment
Setting up your private GKE cluster
Securing build and deployment infrastructure
Creating private pools with security best practices
Securing access to your private GKE control plane
Applying POLP to builds
Creating build-specific IAM service accounts
Custom IAM roles for build service accounts
Configuring release management for builds
Integrating SCM with Cloud Build
Gating builds with manual approvals
Executing builds via build triggers
Enabling verifiable trust in artifacts from builds
Building images with build provenance
Utilizing Binary Authorization for admission control
Summary
Chapter 9: Automating Serverless with Cloud Build
Understanding Cloud Functions and Cloud Run
Cloud Functions
Cloud Run
Cloud Functions 2nd gen
Comparing Cloud Functions and Cloud Run
Building containers without a build configuration
Dockerfile
Language-specific tooling
Buildpacks
Automating tasks for Cloud Run and Cloud Functions
Deploying services and jobs to Cloud Run
Deploying to Cloud Functions
Going from source code directly to containers running in Cloud Run
Progressive rollouts for revisions of a Cloud Run service
Securing production with Binary Authorization
Summary
Chapter 10: Running Operations for Cloud Build in Production
Executing in production
Leveraging Cloud Build services from different projects
Securing build triggers even further
Notifications
Deriving more value from logs
Configurations to consider in production
Making builds more dynamic
Changes in Cloud Build related to secret management
Speeding up your builds
Summary
Part 4: Looking Forward
Chapter 11: Looking Forward in Cloud Build
Implementing continuous delivery with Cloud Deploy
The relationship between Cloud Build and Cloud Deploy
Summary
Index
About Packt
Other Books You May Enjoy

๐Ÿ“œ SIMILAR VOLUMES

Cloud Native Automation with Google Clou
๐Ÿ“ Cloud Native Automation with Google Cloud Build: Easily automate tasks in a fully managed, scalable, and secure platform
โœ Anthony Bushong, Kent Hua ๐Ÿ“‚ Library ๐Ÿ“… 2022 ๐Ÿ› Packt Publishing ๐ŸŒ English

<p><span>Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Learn Cloud Build's API and build config

Cloud Native Automation with Google Clou
๐Ÿ“ Cloud Native Automation with Google Cloud Build: Easily automate tasks in a fully managed, scalable, and secure platform
โœ Anthony Bushong, Kent Hua ๐Ÿ“‚ Library ๐Ÿ“… 2022 ๐Ÿ› Packt Publishing ๐ŸŒ English

<p><span>Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Learn Cloud Build's API and build config

Cloud Native Automation with Google Clou
๐Ÿ“ Cloud Native Automation with Google Cloud Build: Easily automate tasks in a fully managed, scalable, and secure platform
โœ Anthony Bushong, Kent Hua ๐Ÿ“‚ Library ๐Ÿ“… 2022 ๐Ÿ› Packt Publishing ๐ŸŒ English

<p><span>Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Learn Cloud Build's API and build config

Cloud Native Automation with Google Clou
๐Ÿ“ Cloud Native Automation with Google Cloud Build: Easily automate tasks in a fully managed, scalable, and secure platform
โœ Anthony Bushong, Kent Hua ๐Ÿ“‚ Library ๐Ÿ“… 2022 ๐Ÿ› Packt Publishing ๐ŸŒ English

<p><span>Written by two Google Cloud experts, this book will help you to create a concrete foundation of Cloud Build so that you can define workflows and pipelines as builds in Google Cloud Build</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Learn Cloud Build's API and build config

Google Cloud Platform for Developers: Bu
๐Ÿ“ Google Cloud Platform for Developers: Build highly scalable cloud solutions with the power of Google Cloud Platform
โœ Ted Hunter, Steven Porter ๐Ÿ“‚ Library ๐Ÿ“… 2018 ๐Ÿ› Packt Publishing ๐ŸŒ English

<p><span>Develop, deploy, and scale your applications with Google Cloud Platform</span></p><h4><span>Key Features</span></h4><ul><li><span><span>Create and deploy your applications on Google Cloud Platform</span></span></li><li><span><span> Store and manage source code and debug Cloud-hosted apps wi