Google Professional Cloud DevOps Engineer
Get started today
Ultimate access to all questions.
Comments
Loading comments...
Ultimate access to all questions.
You are running a web application that connects to an AlloyDB cluster via a private IP address in your default VPC. You need to perform a database schema migration in your CI/CD pipeline using Cloud Build before deploying a new version of the application while adhering to Google-recommended security practices. What should you do?
A
Set up a Cloud Build private pool to access the database through a static external IP address. Configure the database to only allow connections from this IP address. Execute the schema migration script in the private pool.
B
Create a service account that has permission to access the database. Configure Cloud Build to use this service account and execute the schema migration script in a private pool.
C
Add the database username and password to Secret Manager. When running the schema migration script, retrieve the username and password from Secret Manager.
D
Add the database username and encrypted password to the application configuration file. Use these credentials in Cloud Build to execute the schema migration script.