ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Developer All Questions

View all questions & answers for the Professional Cloud Developer exam
Go to Exam

Exam Professional Cloud Developer topic 1 question 123 discussion

Actual exam question from Google's Professional Cloud Developer
Question #: 123
Topic #: 1
[All Professional Cloud Developer Questions]

Your team is developing an application in Google Cloud that executes with user identities maintained by Cloud Identity. Each of your application's users will have an associated Pub/Sub topic to which messages are published, and a Pub/Sub subscription where the same user will retrieve published messages. You need to ensure that only authorized users can publish and subscribe to their own specific Pub/Sub topic and subscription. What should you do?

  • A. Bind the user identity to the pubsub.publisher and pubsub.subscriber roles at the resource level.
  • B. Grant the user identity the pubsub.publisher and pubsub.subscriber roles at the project level.
  • C. Grant the user identity a custom role that contains the pubsub.topics.create and pubsub.subscriptions.create permissions.
  • D. Configure the application to run as a service account that has the pubsub.publisher and pubsub.subscriber roles.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by scaenruy at Jan. 9, 2022, 4:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
__rajan__
7 months, 1 week ago
Selected Answer: A
A is correct.
upvoted 1 times
...
purushi
8 months, 3 weeks ago
Selected Answer: A
Granting IAM at resource level is enough. If project level permission is given then user will be having publisher and subscriber roles for all the pub-sub topics created within the project. So this should be avoided according to the question asked.
upvoted 1 times
...
Pime13
1 year, 2 months ago
Selected Answer: A
A -> resource level
upvoted 1 times
...
omermahgoub
1 year, 3 months ago
Selected Answer: A
A. Bind the user identity to the pubsub.publisher and pubsub.subscriber roles at the resource level. By binding the user identity to the pubsub.publisher and pubsub.subscriber roles at the resource level, you can ensure that each user can only publish and subscribe to their specific Pub/Sub topic and subscription. This allows for granular permissions management and ensures that each user can only access the resources they are authorized to. The other options are not suitable in this case because,
upvoted 2 times
omermahgoub
1 year, 3 months ago
B. Granting the user identity the pubsub.publisher and pubsub.subscriber roles at the project level would give the user access to all topics and subscriptions within the project and not specific to a user. C. Granting the user identity a custom role that contains the pubsub.topics.create and pubsub.subscriptions.create permissions would allow user to create topics and subscriptions but not access to their specific topic or subscription. D. Configuring the application to run as a service account that has the pubsub.publisher and pubsub.subscriber roles would not provide granular permissions management for the user.
upvoted 2 times
TNT87
1 year, 2 months ago
why do you write all these compositions , you write unneccesary paragraphs always, as if we dnto have documents and often times you will be giving wrong explanations. i beleve just pasting a link to supoort your answer is enough as well have access to the documentation
upvoted 2 times
TNT87
1 year, 2 months ago
believe
upvoted 1 times
...
...
...
...
zellck
1 year, 4 months ago
Selected Answer: A
A is the answer.
upvoted 1 times
...
tomato123
1 year, 8 months ago
Selected Answer: A
A is correct
upvoted 2 times
...
akshaychavan7
1 year, 8 months ago
Selected Answer: A
I think it should be option A since the authorization should be at the user level for a specific resource.
upvoted 2 times
...
nqthien041292
2 years ago
Selected Answer: A
Vote A
upvoted 2 times
...
hitmax87
2 years ago
I would choose D
upvoted 2 times
...
scaenruy
2 years, 3 months ago
I vote A
upvoted 3 times
Blueocean
2 years, 3 months ago
Agree with Option A
upvoted 4 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago