How should you configure access for a Cloud Run-deployed web application with both public and authenticated-only microservices, ensuring maximum security with minimal management overhead? The solution must restrict certain services to Google-authenticated users while allowing public access to others.

Exam-Like

Enable Identity-Aware Proxy (IAP) for all microservices. Develop a new microservice that checks the authentication requirements for each application and controls access to the respective services.

8.7%

Enable Identity-Aware Proxy (IAP) for all microservices. Manage access control lists (ACLs) for the restricted services, and configure allAuthenticatedUsers access to the public services.

21.7%

Use Cloud Endpoints with Firebase Authentication for all microservices. Configure Firebase rules to manage access control lists (ACLs) for each service, allowing access to the public services.

21.7%

Configure separate Cloud Run services for the public and restricted microservices. Enable Identity-Aware Proxy (IAP) only for the restricted services, and configure the Cloud Run ingress settings to ‘Internal and Cloud Load Balancing’.

47.8%

Google Professional Cloud Developer

Get started today

Comments