-
Notifications
You must be signed in to change notification settings - Fork 44
/
Copy pathsetup_lab5.sh
executable file
·81 lines (62 loc) · 2.7 KB
/
setup_lab5.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
#!/bin/bash
# Copyright 2021 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
set -v
# Source folder name for the lab
export SERVICE_SRC=garbage-collector
# Enable APIs
gcloud services enable eventarc.googleapis.com
# Don't forget to enable Audit Logs for Cloud Storage as well!
# Build the container
export SERVICE_NAME=${SERVICE_SRC}-service
## Node.js
gcloud builds submit \
../services/${SERVICE_SRC}/nodejs \
--tag gcr.io/${GOOGLE_CLOUD_PROJECT}/${SERVICE_NAME}
## C#
# gcloud builds submit \
# ../services/${SERVICE_SRC}/csharp \
# --tag gcr.io/${GOOGLE_CLOUD_PROJECT}/${SERVICE_NAME}
# Deploy to Cloud Run
export REGION=europe-west1
gcloud config set run/region ${REGION}
gcloud config set run/platform managed
export BUCKET_IMAGES=uploaded-pictures-${GOOGLE_CLOUD_PROJECT}
export BUCKET_THUMBNAILS=thumbnails-${GOOGLE_CLOUD_PROJECT}
## Node.js
gcloud run deploy ${SERVICE_NAME} \
--image gcr.io/${GOOGLE_CLOUD_PROJECT}/${SERVICE_NAME} \
--allow-unauthenticated \
--update-env-vars BUCKET_IMAGES=${BUCKET_IMAGES},BUCKET_THUMBNAILS=${BUCKET_THUMBNAILS}
## C#
# gcloud run deploy ${SERVICE_NAME} \
# --image gcr.io/${GOOGLE_CLOUD_PROJECT}/${SERVICE_NAME} \
# --allow-unauthenticated \
# --update-env-vars BUCKET_IMAGES=${BUCKET_IMAGES},BUCKET_THUMBNAILS=${BUCKET_THUMBNAILS},PROJECT_ID=${GOOGLE_CLOUD_PROJECT}
# Set up Eventarc
# Give default Compute service account eventarc.eventReceiver role
export PROJECT_NUMBER="$(gcloud projects list --filter=$(gcloud config get-value project) --format='value(PROJECT_NUMBER)')"
gcloud projects add-iam-policy-binding $(gcloud config get-value project) \
--member=serviceAccount:${PROJECT_NUMBER}[email protected] \
--role='roles/eventarc.eventReceiver'
# Set eventarc/location
gcloud config set eventarc/location ${REGION}
# Create trigger
gcloud eventarc triggers create trigger-${SERVICE_NAME} \
--destination-run-service=${SERVICE_NAME} \
--destination-run-region=${REGION} \
--event-filters="type=google.cloud.audit.log.v1.written" \
--event-filters="serviceName=storage.googleapis.com" \
--event-filters="methodName=storage.objects.delete" \
--service-account=${PROJECT_NUMBER}[email protected]