ExamTopics Logo
Mail Us[email protected]
Menu
Google Discussions
exam questions

Exam Professional Cloud Developer All Questions

View all questions & answers for the Professional Cloud Developer exam
Go to Exam

Exam Professional Cloud Developer topic 1 question 335 discussion

Actual exam question from Google's Professional Cloud Developer
Question #: 335
Topic #: 1
[All Professional Cloud Developer Questions]

You are responsible for managing the security of internal applications in your company. The applications are deployed on Cloud Run, and use Secret Manager to store passwords needed to access internal databases. Each application can cache secrets for up to 15 minutes. You need to determine how to rotate the secrets. You want to avoid application downtime. What should you do?

  • A. Store the new username and password in the secret. Reference the latest version of any secret required, and cache the secret for 15 minutes.
  • B. Design the applications to retrieve the Latest secret payload on application startup, and continue to use the secret for the duration of the application run.
  • C. Store the new password in the secret. Reference the latest version of any secret required, and cache the secret for 15 minutes.
  • D. Store the new password in the secret. Design the applications to reference a specific secret version. Change the code to reference the new version, and schedule the deployment of the application during a maintenance window.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Pime13 at July 15, 2025, 7:20 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Pime13
3 weeks, 6 days ago
Selected Answer: C
https://github.com/GoogleCloudPlatform/platform-engineering/blob/main/reference-architectures/automated-password-rotation/README.md https://cloud.google.com/run/docs/configuring/services/secrets https://cloud.google.com/secret-manager/docs/secret-rotation You can make a secret available to your containers in either of two ways: Mount each secret as a volume, which makes the secret available to the container as files. Reading a volume always fetches the secret value from Secret Manager, so it can be used with the latest version. This method also works well with secret rotation.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel