zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloud-foundation-fabric/examples/data-solutions
History
Julio Castillo 5396735bc6
Changes to gcs to bq least privilege example (#447) 
* Changes to gcs to bq least privilege example

* Fix 'try' on encryption variables

* Fix roles

* Fix tests

* Use templatefile in output variables

* Remove FIXME

* Fix tests

* Changes to gcs to bq least privilege example

* Fix 'try' on encryption variables

* Fix roles

* Fix tests

* Use templatefile in output variables

* Remove FIXME

* Fix tests

* Merge branch 'jccb/gcs-to-bq-changes' of https://github.com/GoogleCloudPlatform/cloud-foundation-fabric into jccb/gcs-to-bq-changes

* fix readme and template

* fix readme

* Update FIXME.

Co-authored-by: Lorenzo Caggioni <lorenzo.caggioni@gmail.com>
Co-authored-by: Ludovico Magnocavallo <ludomagno@google.com>
 		2022-02-02 08:32:59 +01:00
..
cmek-via-centralized-kms Link vars and outputs from README 2022-01-22 14:15:16 +01:00
data-platform-foundations Add periods at the end of each description field where missing (#478) 2022-01-31 10:45:34 +01:00
gcs-to-bq-with-dataflow Add periods at the end of each description field where missing (#478) 2022-01-31 10:45:34 +01:00
gcs-to-bq-with-least-privileges Changes to gcs to bq least privilege example (#447) 2022-02-02 08:32:59 +01:00
README.md New folder structure 2022-01-11 11:53:19 +01:00

README.md

GCP Data Services examples

The examples in this folder implement typical data service topologies and end-to-end scenarios, that allow testing specific features like Cloud KMS to encrypt your data, or VPC-SC to mitigate data exfiltration.

They are meant to be used as minimal but complete starting points to create actual infrastructure, and as playgrounds to experiment with specific Google Cloud features.

Examples

GCE and GCS CMEK via centralized Cloud KMS

This example implements CMEK for GCS and GCE, via keys hosted in KMS running in a centralized project. The example shows the basic resources and permissions for the typical use case of application projects implementing encryption at rest via a centrally managed KMS service.

Cloud Storage to Bigquery with Cloud Dataflow

This example implements Cloud Storage to Bigquery data import using Cloud Dataflow. All resources use CMEK hosted in Cloud KMS running in a centralized project. The example shows the basic resources and permissions for the typical use case to read, transform and import data from Cloud Storage to Bigquery.

Data Platform Foundations

This example implements a robust and flexible Data Foundation on GCP that provides opinionated defaults, allowing customers to build and scale out additional data pipelines quickly and reliably.