Module 5: Handling Authentication and Authorization

Looking for ‘Developing Applications with Google Cloud: Foundations Module 5 Answers’?

In this post, I provide complete, accurate, and detailed explanations for the answers to Module 5: Handling Authentication and Authorization of Course 3: Developing Applications with Google Cloud: Foundations Preparing for Google Cloud Certification: Cloud Developer Professional Certificate

Whether you’re preparing for quizzes or brushing up on your knowledge, these insights will help you master the concepts effectively. Let’s dive into the correct answers and detailed explanations for each question!

Handling Authentication and Authorization

Graded Assignment

1. Your enterprise has an online expense reporting application. Employees must be able to access the application without having to log into the corporate VPN. How can you enable this type of access?

  • You can use OAuth 2.0 to access resources on behalf of a user.
  • You can give employees read permissions to critical resources in the project.
  • You can use Identity-Aware Proxy to provide application-level access. ✅
  • You can leverage federated identity management by using Firebase authentication.

Explanation:
Identity-Aware Proxy (IAP) allows secure access to applications without a VPN by verifying user identity and applying access policies.

2. Your photo-sharing application requires user login. You don't want to build a custom user authentication system that stores usernames and passwords. What is the best way to authenticate your users?

  • You can use OAuth 2.0 to access resources on behalf of a user.
  • You can give employees read permissions to critical resources in the project.
  • You can use Identity-Aware Proxy to provide application-level access.
  • You can leverage federated identity management by using Firebase Authentication. ✅

Explanation:
Firebase Authentication simplifies user authentication by integrating with Google, Facebook, and other identity providers.

3. How should you authenticate to Google Cloud APIs from your production application that is deployed to Cloud Run?

  • Use “gcloud auth application-default login.”
  • Use a service account key.
  • Attach a service account to your application. ✅
  • Use workload identity federation.

Explanation:
Best practice: Attach a service account with the correct permissions to Cloud Run.

Related contents:

Module 2: Best Practices for Cloud Application Development
Module 3: Getting Started with Google Cloud Development
Module 4: Data Storage Options
Module 6: Adding Intelligence to Your Application
Module 7: Deploying Applications
Module 8: Compute Options for Your Application
Module 9: Monitoring and Performance Tuning

You might also like:

Course 3:

Leave a Reply