nerdexam
ExamsPROFESSIONAL-CLOUD-DEVELOPERQuestions#273
GoogleGoogle

PROFESSIONAL-CLOUD-DEVELOPER · Question #273

PROFESSIONAL-CLOUD-DEVELOPER Question #273: Real Exam Question with Answer & Explanation

The correct answer is D: Enforce public access prevention for the desired bucket. Create and update the Cloud Run. See the full explanation below for the reasoning.

Securing applications

Question

Your team is creating a serverless web application on Cloud Run. The application needs to access images stored in a private Cloud Storage bucket. You want to give the application Identity and Access Management (IAM) permission to access the images in the bucket, while also securing the services using Google-recommended best practices. What should you do?

Options

  • AEnforce signed URLs for the desired bucket. Grant the Storage Object Viewer IAM role on the
  • BEnforce public access prevention for the desired bucket. Grant the Storage Object Viewer IAM
  • CEnforce signed URLs for the desired bucket. Create and update the Cloud Run service to use a
  • DEnforce public access prevention for the desired bucket. Create and update the Cloud Run

Topics

#Cloud Run#Cloud Storage#IAM#Service Accounts

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PROFESSIONAL-CLOUD-DEVELOPER PracticeBrowse All PROFESSIONAL-CLOUD-DEVELOPER Questions