Topic 1 Question 159
2 つ選択You are building an application that processes data files uploaded from thousands of suppliers. Your primary goals for the application are data security and the expiration of aged data. You need to design the application to:
- Restrict access so that suppliers can access only their own data.
- Give suppliers write access to data only for 30 minutes.
- Delete data that is over 45 days old. You have a very short development cycle, and you need to make sure that the application requires minimal maintenance. Which two strategies should you use?
Build a lifecycle policy to delete Cloud Storage objects after 45 days.
Use signed URLs to allow suppliers limited time access to store their objects.
Set up an SFTP server for your application, and create a separate user for each supplier.
Build a Cloud function that triggers a timer of 45 days to delete objects that have expired.
Develop a script that loops through all Cloud Storage buckets and deletes any buckets that are older than 45 days.
ユーザの投票
コメント(17)
Correct Answers are: (AB):
(A) Object Lifecycle Management Delete The Delete action deletes an object when the object meets all conditions specified in the lifecycle rule.
Exception: In buckets with Object Versioning enabled, deleting the live version of an object causes it to become a noncurrent version, while deleting a noncurrent version deletes that version permanently. https://cloud.google.com/storage/docs/lifecycle#delete
(B) Signed URLs This page provides an overview of signed URLs, which you use to give time-limited resource access to anyone in possession of the URL, regardless of whether they have a Google account
https://cloud.google.com/storage/docs/access-control/signed-urls
👍 43ESP_SAP2020/08/22AB is the answer
👍 14francisco_guerra2020/08/12100% A and B.
A. lifecycle policies are designed for situations just like these. It can cleanly schedule deletion of objects that are past 45 days old. B. signed URls also can allow the user to 1) access exclusively their own data and 2) access it for a set period of time, in this case 30 minutes C. an SFTP server? Really? This is GCP, not circa 2000. Plus it's high maintenance. D. Ok, though it's better than C, it's still clunky. Why not use a pre-built lifecycle policy? Plus this doesn't tell us how objects are marked as expired anyways. Sounds like extra work. E. Now this one is as bad as C. All that looping isn't sustainable as the dataset grows. Plus it's overly complex, and doesn't even mention how the script gets invoked in the first place. Another can of worms.
A and B for sure.
👍 9[Removed]2020/09/09
シャッフルモード