 All right. Hi, everybody. We'll go ahead and get started. I know we're probably holding you up for lunch. Who's hungry? Yeah, okay. All right, we'll go fast then So hi, my name is Eric Johnson. I'm a tech lead manager at Google working in the Seattle office And I run a small team of engineers that work on open source integration for a Google Cloud platform I'm Colleen. I work on Eric's team. I've been at Google for about four months working on the service broker So before we pass her over to Colleen and kind of walk you through the service broker work that she's been doing I figured I'd talk a little bit about Google Cloud platform So Google Cloud platform how many people have ever even heard of it? Holy smokes All right, you're pulling my leg, right? Okay, so Never mind then we'll just keep going. So I guess I don't know J I'm so substituting for Jay Marshall. Does anybody know Jay Marshall? Okay, great. So I don't do nearly a good enough job at this is Jay does but anyway, so Jay likes to talk about You know how Google we just turned 18. I think yesterday also So we've been doing this for a while running our own infrastructure. We've done a lot of Innovations both in the data center as well as our networking Software distributed systems were so where we've been doing this for a long time But we just got into cloud sort of recently I'd say within the last few three four years Cloud foundry right so why would you care about any of this stuff? If you're going to use a cloud foundry deployment You can now do that on top of Google Cloud platform We have a Bosch CPI now cloud provider interface That lets you run cloud foundry on top of Google Cloud infrastructure So we have a virtual machine service we call Google Compute Engine and this diagram here We showed off at spring one was anybody at spring one by chance A couple people great. So we walked through kind of how we did this. We had a couple folks on the team walk through this Basically what we've got here two cloud foundry deployments in two different zones. There's a separate director in each We have terraform scripts on our GitHub repo all of this stuff has moved into cloud foundry incubator right now And we've got terraform scripts that will help you set up all of the Google Cloud infrastructure So the load balancers the firewall rules Networking service accounts things that you would need to operate cloud foundry And then we also have instructions for how to use terraform to deploy the open source Cloud foundry so setting up that infrastructure as well and then using the Bosch director to get that stuff deployed What this illustrates also here is that you've got your cloud foundry sitting behind Google's load balancer So this is the same load balancer that Google uses internally for servicing Gmail YouTube apps all of that stuff We surfaced a global anycast IP address and you can route traffic to the closest Cloud foundry deployment that way or what you can do is set up a cloud DNS And then just target basically You know CF log into whichever DNS zone you want Or API endpoint you want you could do multiple deployments simultaneously or you could target a specific region I always want to hit the arrow key As far as Google Cloud services go or Google Cloud platform all of these are services categorized right by various Sections like networking developer tools machine learning. So there's a lot there to take a look at I have a courage anybody that's interested in this for deeper dives to go to cloud.google.com We've got a pretty good set of marketing pages that'll walk you through a lot of this stuff But as far as running cloud foundry goes some of the ones that you care most about would be compute engine Google cloud storage, which is our version of s3 cloud SQL Obviously the networking stuff is pretty critical to having a really low latency high throughput cloud foundry deployment and we also have I'll tell you a little bit about Google compute engine So some of the things that you might care about that are differentiators I think from other cloud providers How many people run cloud foundry on a cloud provider? Great quite a few excellent So one of the things I think that sets us apart obviously is the network have talked about that a little bit Google has its own backbone all over the planet right so we run our own fiber everywhere The way that we have that set up obviously is when you access a Google cloud service in this case a cloud foundry running underneath GCP We're going to drop you down into our network as quickly as possible and then route you all through Google's backbone So low latency high throughput networking. We have a global network space subnetworks for per region But your machines can talk across those you don't have to set up special firewall rules So that's always like an eye-opener for people or eye-brown razor We also have custom machine sizes so sliders you can set your own CPU or memory as well as discrete sizes Preemptible VMs if you're running workloads that can be disrupted That's a good fit for this live migration as we move things around the data center We'll actually move your virtual machine from one host to another And it's a very small service disruption kind of like pulling the ethernet cable out and sticking it back in 30 to 45 second boot time so that's another thing people are like well it comes up fast per minute billing So cost savings for Google cloud If you run a workload that the last 15 minutes you bring up a VM run it for 15 minutes shut it down you pay us 15 for 15 minutes We also have sustained use discounts So if you leave a machine running for a full billing cycle it becomes 30% cheaper than the list price So that's another way like if you've got long running workloads the preemptible VMs that I talked about if you have workloads That can survive like that. How many people run concourse? Everybody runs concourse. That's great. So you can set on your jobs, right or your tasks I'm not sure the exact term. You can try retries, right? So you'd have a pipeline running along Maybe we yank the VM out from underneath you in the mid mid stream And then you just have retry policies come in place Bosch will come along and bring that VM right back up for you, right? So 80% cheaper the list price so great great fit for concourse and With that I'll pass it over to Colleen Also, if you're interested in some of those data services, I'll plug Eric's lightning talk for later this afternoon He's gonna be talking about those. So the few of you that were at spring one probably saw Jay in the keynote and he Announced that we're gonna be exposing these services natively by the end of the year So that's the work that I've been doing with the service broker You knew he was gonna say that right I Didn't know he was gonna say that and I didn't know that Eric was gonna screenshot my dev machine and show with the marketplace So I wanted to give a quick overview of Google Cloud Platform Architecture for any of you that haven't used it before so it's Oregon project based projects are just wrappers around Resources users I am policies things like that We have our own identity and access management service And that's what controls the permissions to your resources We offer project level roles as well as curated roles their service specific So your application can for example only have read permissions for only cloud storage and Service accounts are the way that you would map your application to An I am policy so they're basically like user accounts But meant to be used by your application They can do anything that a user account can do so you can still set these Specific permissions on them and to use the service broker You create basically a root level service account that has owner permissions at the project level Which gives it the ability to create new service accounts? Which is the credentials that will provide to you on a CF bind and then we'd suggest Because you can suggest your own role for a CF bind Using those curated roles to set minimum necessary permissions So we're releasing the service broker with a subset of GCP service offerings Storage it's our bucket-based file storage system comparable to s3 Provision for each of these services means something a little different So for cloud storage provision means you'll be creating a new bucket And we'll have different standard plans For cloud storage that are based around accessibility and pricing Pub sub it's our messaging service comparable to sqs We don't really have different tiered plans for pub sub So you just get a default plan and in that case provisioning is going to create a new topic And an optional subscription Big query is our big data analytics engine has a sequel like interface and in this case Provisioning is going to be creating a new data set. And again, we just have one plan for big query cloud sequel is our Basically equivalent to RDS offering right now. My sequel is the only database engine that we support and so provisioning is going to create a new Server instance as well as a database and then since cloud sequel doesn't support IAM roles we'll just use standard username passwords and SSL certs for your bind credentials and the machine learning API's so We tested these did did a little Demo with this adorable poppy picture and this is just one of the many things that you can do with our machine learning API's Upload the picture and it will analyze and give you some tags back as to what is in the picture So it knows the dog, you know, it's a puppy specifically and then the other Tabs that you can see there provide you with more information about the image You'll also have access to our speech translate and natural language API's Since they're just API's provision doesn't really do anything But you can bind to these and then you'll get a service account that is authenticated for the API's Who wants to do a demo? Okay, so if you wanted to use the service broker through Pivotal cloud foundry's ops manager. This is what the config page looks like so you have These three tabs over here that your operator only to fill out this root service account is a Set of credentials that gets downloaded Automatically when you create a service account, you know, it's pastes in you'll need to set up a backing my sequel database for the service broker and You'll need to set up some dynamic service plans if you want to use cloud sequel and for those you're just setting up a picking a tier a Pricing plan and setting a max disk size and then as a cloud foundry developer You can come into apps manager. That's what you'll see in the marketplace So that's actually Now I might need to hold the mic. Oh, this is gonna be fun doing it from the side. Maybe you can yell Can I yell? Can everybody hear me? Okay, oh This is hard because my mouse is There we go Okay, so I created a little app for Summit I'll see a summit and all it does is upload a picture to a Google Cloud storage bucket so we can curl CF summit and put a picture and Then it takes a bucket name call it CF summit thinking We don't have any credentials, right? We don't even have a bucket. Do we let's go look where's my mouse? so we can come into This is the Google Cloud Platform UI Console and we can see we don't have any buckets right now. So Let's create one if we go to the marketplace Eventually with the slow conference Wi-Fi we can see that we have Google storage listed in the marketplace. So let's CF create Service Google storage and let's call it Use the standard plan and call it storage test and then for almost all these calls You'll need to supply some custom parameters. So for this call You're just supplying a name which is the name of the bucket okay so then now if we go back and Refresh our console. Now we have CF summit bucket. Cool So let's bind to the bucket to get our credentials. So find service CF summit Storage test. This is like a live live demo with the typing even And Then this is where you'll supply that I am role and then I'm going to use a curated role So I'm going to use the storage admin role that has permissions to upload things and I'm going to restage and then while it's restaging. We'll go take a look at what bind made So if we come back into our I am an admin panel We can go to the service accounts pane and See that we have a new service account here with the part of the binding ID to identify it And then if we flip over to I am we can see We need to refresh the page So we can see now we can see our new service account storage admin permissions And now let's see if restage is done Not quite So while that's going on I'm supposed to tell jokes Actually what I wanted to do is give a shout out to mark to Kuna and Tofer Bullock working out of the Toronto office. They've been very good in terms of helping us Kind of giving us education on how to develop a service broker Kind of some pointers tips and tricks on getting this stuff developed. We've worked very closely with lots of folks across Pivotal Mike Jeffery's team also helped us a lot. We were out at What was it pivotal industry days up in Seattle not too long ago? Mike Godard on that team also helped us a lot So it's just been and there are many other teams of pivotal that we've been working with for like the Bosch CPI and everything So that's my joke Awesome, so every stage. So let's try that curl again Success now I have to find my cursor again. So let's go look at what's in the bucket. Oh, there's one thing in there test image That Wi-Fi right? I thought Google was supposed to be fast So that's what we have coming out and then we'll have I can take this back now. We'll have a bunch of other iterations coming up pretty much Constantly as soon as we can so to start with we're going to add a bunch more services Big table data flow logging anything else that you guys want. Please let us know I've heard from one or two people that CLI plugins are a cool thing. So maybe I'll write one of those and You can actually see this now on GitHub Super exciting So slow it's just building suspense and you can download it and deploy it as Service record to your CF installation, but you really can't write because it says it's a private repo So it does. Should I make it public? Should you should you make it public dramatic live action open source? Oh Now you got to take your password Dots This could be bad I guess that was the delete button I hope I click the right button. Oh now I have to remember my If you want more information, you have questions you have input anything Please feel free to reach out to me or Eric or Jay And I guess lastly so it's I didn't see Alex is Alex around probably not So I saw this and I was like, oh, I feel embarrassed because we didn't have any YAML In our presentation, so we added a little YAML for you So For anyone, thank you very much for anyone that has not tried GCP. We do have a free trial. It's $300 credit Last like 60 or 90 days something like that It's enough to kind of just tinker around a little bit probably not enough for a full of cloud foundry deployment And then also we've got the Bosch link there as well So if you're interested in trying open source cloud foundry on top of GCP That's a great place to get started and with that we'll let you go to lunch unless there's questions. I don't know Are we doing questions? We'll be around so We're easy to find We have a booth There's a lightning talk later also, so thank you very much for coming