Google Exam Professional Cloud Developer Topic 3 Question 100 Discussion

Actual exam question for Google's Professional Cloud Developer exam

Question #: 100
Topic #: 3

[All Professional Cloud Developer Questions]

Your team is creating a serverless web application on Cloud Run. The application needs to access images stored in a private Cloud Storage bucket. You want to give the application Identity and Access Management (IAM) permission to access the images in the bucket, while also securing the services using Google-recommended best practices What should you do?

AEnforce signed URLs for the desired bucket. Grant the Storage Object Viewer IAM role on the bucket to the Compute Engine default service account.

BEnforce public access prevention for the desired bucket. Grant the Storage Object Viewer IAM role on the bucket to the Compute Engine
default service account.

CEnforce signed URLs for the desired bucket Create and update the Cloud Run service to use a user -managed service account. Grant the Storage Object Viewer IAM role on the bucket to the service account

DEnforce public access prevention for the desired bucket.
Create and update the Cloud Run service to use a user-managed service account. Grant the Storage Object Viewer IAM role on the bucket to the service account.

Show Suggested Answer

Suggested Answer: B

by Latricia at Jan 09, 2025, 04:16 AM

Limited Time Offer

25%

Off

Get Premium Professional Cloud Developer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Christene

9 days ago

Option C looks like the way to go. Signed URLs and a user-managed service account should do the trick.

upvoted 0 times

Ellen

1 days ago

Option C looks like the way to go. Signed URLs and a user-managed service account should do the trick.

upvoted 0 times

...