How to deploy your application on Google Cloud¶
1. Prerequisites¶
To deploy on Google Cloud, you need to:
Have a Google Cloud account.
Your account has one of the following roles
roles/compute.admin
,roles/editor
, orroles/owner
assigned to a Google project. This role allows you to create a compute resource in the given project.Your account has one of the following roles
roles/browser
,roles/editor
, orroles/owner
. This role allows Telekom Cloud Create to read the IAM access control policy of the project to check for access permissions before a deployment can start.Enable the Compute Engine API and Cloud Resource Manager API in your google project.
1.1 How to assign a role to a principal¶
Go to: IAM & Admin / IAM
Go to Principal, click Edit and assign roles. The following example assigns the role
roles/browser
androles/compute.admin
to a principal.
1.2 How to enable an API on Google Cloud¶
Go to: APIs & Services / Library
Search for an API (e.g.,
Compute Engine
orCloud Resource
)Click Enable
2. How to deploy¶
Step 1. Choose the Google Cloud location¶
Go to: Deploy
Choose Google
Step 2. Authenticate for the first time¶
The first time you deploy an application on Google Cloud, Cloud Create redirects you to Google Cloud to loggin.
After logging sucessfully, click on the allow button to grant the permissions for Cloud Create to manage compute resources on Google Cloud on your behalf.
Important
By clicking the allow button, you allow Cloud Create to access the following information:
Read your email address for authentication purpose.
List your Google projects so you can choose a Google project to deploy.
Manage compute resources on Google Cloud (e.g., to create and delete a VM).
In particular, Cloud Create requests the following OAuth scopes:
https://www.googleapis.com/auth/userinfo.email
https://www.googleapis.com/auth/cloudplatformprojects.readonly
https://www.googleapis.com/auth/compute
Tip
You can revoke access any time later. See 3. How to revoke access.
Step 3. Choose a Google project to deploy¶
Cloud Create displays a list of the Google projects, which you have the permissions to create a compute resource.
Choose one Google project you want to deploy your app into.
Note
If no projects are dislayed, it means you do not have the roles mentioned in the 1. Prerequisites. In such a case, ask your Google administrators to assign a role in a Google project for you.
Step 4. Choose an availability zone and keypair (optional)¶
Click Configure cloud provider
Choose a Compute.
Choose an availability zone from the dropbox. The default availability zone is
europe-west1-c
if not set.Choose a keypair from the dropbox.
Tip
If the keypair dropbox is empty, you can create a keypair from the Open Telekom Cloud console and refresh the page to display it.
Step 5. Deploy¶
Click Deploy to start.
3. How to revoke access¶
In step 2, you grant Cloud Create the permissions to manage compute resources on your behalf. You can revoke this access anytime.
To revoke:
Go to: 1. Manage your Google account / 2. Security / 3. Third party apps with account access.
Click on Revoke access button.
After the access is revoked, if you deploy your app on Google Cloud again, Cloud Create will ask you to authenticate to Google Cloud again (i.e., it will repeat step 2).