Share Data Securely via a REST API Using Cloud Run
For the labs in the GCP Serverless Workshop: Pet Theory Quest, you will read through a fictitious business scenario and assist the characters with their serverless migration plan.
Twelve years ago, Lily started the Pet Theory chain of veterinary clinics. As the chain of clinics has grown, Lily spends more time on the phone with insurance companies than treating pets. If only the insurance companies could see the information they need online!
In this lab, you'll help Ruby and Patrick give insurance companies access to customer data without exposing Personal Identifiable Information (PII). You will build a secure Representational State Transfer (REST) API gateway using Cloud Run—a serverless GCP service. This will allow insurance companies to see the total cost of treatments without seeing customers' PII.
This diagram gives you an overview of the services you will be using and how they connect to one another:
What you will learn
In this lab, you will learn how to:
- Build a simple REST API with Docker and Google Container Registry.
- Call your API and test the endpoint in your browser.
- Import customer data into Firestore.
- Connect your REST API to your Firestore database.
- Add authentication procedures to your API to secure customers' data.
- Add a web page that lets users sign in and call the REST API.
- Explore Firebase's real time updates in your web app.
This is a fundamental level lab. This assumes familiarity with the GCP Console and shell environments. Experience with Firebase will be helpful, but it is not required. Taking the previous labs could be helpful, but is not necessary:
- Migrating Data to a Firestore Database
- Build a Serverless Web App with Firebase and Firestore
- Build a Serverless App that Creates PDF Files with Cloud Run
You should also be comfortable editing files. You can use your favorite text editor (like
vi, etc.) or you can launch the code editor from Cloud Shell, which can be found in the top ribbon:
Once you're ready, scroll down and follow the steps below to setup your lab environment.
Wenn Sie sich in Qwiklabs anmelden, erhalten Sie Zugriff auf den Rest des Labs – und mehr!
- Sie erhalten vorübergehenden Zugriff auf Google Cloud Console.
- Mehr als 200 Labs für Einsteiger und Experten.
- In kurze Sinneinheiten eingeteilt, damit Sie in Ihrem eigenen Tempo lernen können.
Build a REST API with Google Container Registry and Cloud Run
Create a new GCS bucket with name as <PROJECT_ID>-customer
Import customer data into Firestore Database
Connect the REST API to the Firestore database
Create an OAuth consent screen for your app
Create OAuth client ID
Create a new GCS bucket with name as <PROJECT_ID>-public
Copy website directory content into <PROJECT_ID>-public bucket
Add an authentication check to the REST API code