Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Manage the cloudbuild bucket #10

Open
akkornel opened this issue May 17, 2021 · 0 comments
Open

Manage the cloudbuild bucket #10

akkornel opened this issue May 17, 2021 · 0 comments

Comments

@akkornel
Copy link
Owner

The first time someone (with appropriate permissions) does a manual run of Cloud Build from the gcloud CLI, the CLI creates a new bucket. This happens because CLI-based builds work by uploading a .tgz file with the source.

The bucket name is [PROJECT_ID]_cloudbuild, the prefix for uploads is source, and files are named with something that looks like a timestamp plus a hash, with a .tgz extension. It doesn't look like there are any special permissions on the bucket; Cloud Build has access to the bucket through the "Cloud Build Service Account" role.

This bucket should be managed in Terraform. That'll let us do a few things:

• Auto-delete files after 18 months (365.25 * 1.5 days, which we'll round to 548 days).

• Move to Coldline after 32 days.

• Set write permissions to store some build artifacts (like package lists).

And it also lets me keep track of the bucket, in case we want to do anything else.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant