Receive direct events from Cloud Storage (Google Cloud console)
This quickstart shows you how to receive direct events from Cloud Storage in an unauthenticated Cloud Run service.
You can configure the triggering of notifications in response to various events inside a Cloud Storage bucket—object creation, deletion, archiving, and metadata updates. For more information, see Create a trigger to route Cloud Storage events to Cloud Run.
You can complete this quickstart using the Google Cloud console. For instructions using the Google Cloud CLI, see Receive direct events from Cloud Storage (gcloud CLI).
In this quickstart, you:
- Create a Cloud Storage bucket to be an event source. 
- Deploy a sample service to Cloud Run to receive events. 
- Create an Eventarc trigger to filter and route events. 
- Generate an event by uploading a file to the Cloud Storage bucket, and view the event in the Cloud Run logs. 
To follow step-by-step guidance for this task directly in the Google Cloud console, click Guide me:
Before you begin
Security constraints defined by your organization might prevent you from completing the following steps. For troubleshooting information, see Develop applications in a constrained Google Cloud environment.
- Sign in to your Google Cloud account. If you're new to Google Cloud, create an account to evaluate how our products perform in real-world scenarios. New customers also get $300 in free credits to run, test, and deploy workloads.
- 
    
    
      In the Google Cloud console, on the project selector page, select or create a Google Cloud project. Roles required to select or create a project - Select a project: Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
- 
      Create a project: To create a project, you need the Project Creator
      (roles/resourcemanager.projectCreator), which contains theresourcemanager.projects.createpermission. Learn how to grant roles.
 
- 
  
    Verify that billing is enabled for your Google Cloud project. 
- 
  
  
    
      Enable the Cloud Build and Eventarc APIs. Roles required to enable APIs To enable APIs, you need the Service Usage Admin IAM role ( roles/serviceusage.serviceUsageAdmin), which contains theserviceusage.services.enablepermission. Learn how to grant roles.
- 
    
    
      In the Google Cloud console, on the project selector page, select or create a Google Cloud project. Roles required to select or create a project - Select a project: Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
- 
      Create a project: To create a project, you need the Project Creator
      (roles/resourcemanager.projectCreator), which contains theresourcemanager.projects.createpermission. Learn how to grant roles.
 
- 
  
    Verify that billing is enabled for your Google Cloud project. 
- 
  
  
    
      Enable the Cloud Build and Eventarc APIs. Roles required to enable APIs To enable APIs, you need the Service Usage Admin IAM role ( roles/serviceusage.serviceUsageAdmin), which contains theserviceusage.services.enablepermission. Learn how to grant roles.
Create a Cloud Storage bucket
This quickstart uses Cloud Storage as the event source.- In the Google Cloud console, go to the Cloud Storage > Overview page. 
- Click Create bucket. 
- Enter a unique Name for your bucket. - For example, - hello-bucket.
- Click Continue. 
- For Location type, select Region, and then select us-central1 (Iowa). 
- Accept the other defaults. 
- Click Create. 
After the event source is created, you can deploy the event receiver service to Cloud Run.
Deploy the event receiver service to Cloud Run
Deploy a sample Cloud Run service that receives and logs events.
- In the Google Cloud console, go to the Cloud Run Services page. 
- Click Deploy container > Service. 
- In the Create service form: - Select Deploy one revision from an existing container image. 
- Click Test with a sample container. 
- In the Region list, for the location of your service, select us-central1 (Iowa). 
- For Authentication, select Allow public access. 
- Accept the other defaults. 
- To deploy the sample container image, click Create. 
 
The deployment of the hello service can take up to two minutes to complete.
Create an Eventarc trigger
The Eventarc trigger will send events from the Cloud Storage bucket to the sample Cloud Run service.- In the Google Cloud console, go to the Eventarc > Triggers page. 
- Click Create trigger. 
- Type a Trigger name. - For example, - hello-trigger.
- In the Trigger type list, select Google sources. - This filters events sent from Google Cloud providers (directly or through Cloud Audit Logs entries), or providers using Pub/Sub messages. 
- In the Event provider list, select Cloud Storage. 
- In the Event type list, select Direct > google.cloud.storage.object.v1.finalized. 
- For Bucket, select the hello-bucket Cloud Storage bucket you created previously. 
- If prompted, grant the following: - iam.serviceAccountTokenCreatorrole to Pub/Sub service account
- pubsub.publisherrole to Cloud Storage service account
 
- Use the Default compute service account as the service account that invokes your service. 
- In the Event destination list, select Cloud Run. 
- For the Cloud Run service, select the sample hello service you created previously. 
- Accept the other defaults. 
- Click Create. 
It might take a few minutes before all necessary permissions are propagated to
the Eventarc service agent. If you receive a Permission denied
while using the Eventarc Service Agent error, wait a few minutes, and then try
again. Once a trigger is created, it can take up to two minutes for a trigger to
be fully functional.
Generate and view an event
Generate an event and confirm that the Eventarc trigger is working as expected.
- To generate an event: - Create a text file with the filename - random.txtand the text "Hello World".
- In the Google Cloud console, go to the Cloud Storage > Buckets page. 
- Click the name of the storage bucket you created. 
- In the Objects tab, click Upload files and upload the - random.txtfile.
 - The upload generates an event and the Cloud Run service logs the event's message. 
- To view the log entry: - In the Google Cloud console, go to the Cloud Run Services page. 
- Click the name of the service you created. 
- To retrieve the log entries for all revisions of this service, in the Service details page, click the Logs tab. You can filter by log severity level. 
- Look for a log entry similar to: - Received event of type google.cloud.storage.object.v1.finalized. Event data: [...] 
 
Congratulations! You have successfully deployed an event receiver service to Cloud Run, created an Eventarc trigger, generated an event from Cloud Storage, and viewed it in the Cloud Run logs.
Clean up
To avoid incurring charges to your Google Cloud account for the resources used on this page, follow these steps.
While Cloud Run does not charge when the service is not in use, you might still be charged for storing the container image in Container Registry, Cloud Run resources, and for storing files in your Cloud Storage bucket.You can delete your image, delete your storage bucket, and delete your Cloud Run service.
To delete the Eventarc trigger:
- In the Google Cloud console, go to the Eventarc Triggers page. 
- Click the name of the trigger you created. 
- On the Triggers details page, click Delete. 
Alternatively, you can delete your Google Cloud project to avoid incurring charges. Deleting your Google Cloud project stops billing for all the resources used within that project.
- In the Google Cloud console, go to the Manage resources page.
- In the project list, select the project that you want to delete, and then click Delete.
- In the dialog, type the project ID, and then click Shut down to delete the project.