Spring Boot on GCP
  • Introduction
  • Getting Started
    • Google Cloud Platform
    • Cloud Shell
    • gcloud CLI
    • Hello World!
      • Cloud Shell
      • App Engine
      • Cloud Run
      • Kubernetes Engine
      • Compute Engine
      • Cloud Functions
  • Application Development
    • Development Tools
    • Spring Cloud GCP
    • Cloud Services
      • Databases
        • Cloud SQL
        • Cloud Spanner
        • Cloud Firestore
          • Datastore Mode
          • Native Mode
      • Messaging
        • Cloud Pub/Sub
        • Kafka
      • Secret Management
      • Storage
      • Cache
        • Memorystore Redis
        • Memorystore Memcached (beta)
      • Other Services
    • Observability
      • Trace
      • Logging
      • Metrics
      • Profiling
      • Debugging
    • DevOps
      • Artifact Repository
  • Deployment
    • Runtime Environments
    • Container
      • Container Image
      • Secure Container Image
      • Container Awareness
      • Vulnerability Scanning
      • Attestation
    • Kubernetes
      • Kubernetes Cluster
      • Deployment
      • Resources
      • Service
      • Health Checks
      • Load Balancing
        • External Load Balancing
        • Internal Load Balancing
      • Scheduling
      • Workload Identity
      • Binary Authorization
    • Istio
      • Getting Started
      • Sidecar Proxy
  • Additional Resources
    • Code Labs
    • Presentations / Videos
    • Cheat Sheets
Powered by GitBook
On this page
  • Cloud SQL Instance
  • Enable API
  • Create an Instance
  • Create a Database
  • Connect to Database instance
  • Create a Table
  • Add a User
  • Instance Connection Name
  • JDBC
  • Cloud SQL Starter
  • Cloud SQL Socket Factory
  • Cloud SQL Proxy
  • VPC Private IP
  • R2DBC
  • Cloud SQL Proxy or VPC Private IP
  • Cloud SQL Connector

Was this helpful?

  1. Application Development
  2. Cloud Services
  3. Databases

Cloud SQL

PreviousDatabasesNextCloud Spanner

Last updated 4 years ago

Was this helpful?

is managed MySQL, PostgreSQL, and SQL Server. Cloud SQL automates backups, replication, and failover to ensure your database is reliable, highly available.

Cloud SQL has automatic data encryption at rest and in transit. Private connectivity with Virtual Private Cloud (VPC) and user-controlled network access that includes firewall protection. Compliant with SSAE 16, ISO 27001, PCI DSS v3.0, and HIPAA

Cloud SQL Instance

Enable API

gcloud services enable sqladmin.googleapis.com

Create an Instance

Create a new Cloud SQL - MySQL Instance.

gcloud sql instances create mysql-instance \
  --database-version=MYSQL_5_7 \
  --region=us-central1 \
  --cpu=2 \
  --memory=4G \
  --root-password=[CHOOSE A PASSWORD]

Create a new Cloud SQL - PostgreSQL instance.

gcloud sql instances create postgresql-instance \
  --database-version=POSTGRES_11 \
  --region=us-central1 \
  --cpu=2 \
  --memory=4G \
  --root-password=[CHOOSE A PASSWORD]

Create a new Cloud SQL - SQL Server instance.

gcloud beta sql instances create sqlserver-instance \
  --database-version=SQLSERVER_2017_STANDARD \
  --region=us-central1 \
  --cpu=2 \
  --memory=4G \
  --root-password=[CHOOSE A PASSWORD]

Create a Database

Create a new database inside of the MySQL database instance.

gcloud sql databases create orders --instance=mysql-instance

Create a new database inside of the PostgreSQL database instance.

gcloud sql databases create orders --instance=postgresql-instance

Create a new database inside of the SQL Server database instance.

gcloud sql databases create orders --instance=sqlserver-instance

Connect to Database instance

By default, every database instance has a public IP address. However, the instance is not publicly accessible because it's protected by the firewall.

To easily connect to the database instance from command line:

Connect to the MySQL instance using gcloud CLI.

gcloud sql connect mysql-instance

Connect to the PostgreSQL instance using gcloud CLI.

gcloud sql connect postgresql-instance

Connect to the SQL Server instance using gcloud CLI.

gcloud sql connect sqlserver-instance

Create a Table

From the command line connection, you can use the client to create a table for the corresponding database. For example:

# Change to orders database
USE orders;

CREATE TABLE order_items (
  id BIGINT NOT NULL AUTO_INCREMENT PRIMARY KEY,
  order_id BIGINT,
  description VARCHAR(255),
  quantity INT DEFAULT 1
);

CREATE TABLE orders (
  id BIGINT NOT NULL AUTO_INCREMENT PRIMARY KEY,
  description VARCHAR(255),
  creation_timestamp TIMESTAMP
);

ALTER TABLE order_items ADD FOREIGN KEY (order_id) REFERENCES orders (id);
# Change to orders database
\c orders

CREATE TABLE order_items (
  id BIGSERIAL NOT NULL PRIMARY KEY,
  order_id BIGINT,
  description VARCHAR(255),
  quantity INT DEFAULT 1
);

CREATE TABLE orders (
  id BIGSERIAL NOT NULL PRIMARY KEY,
  description VARCHAR(255),
  creation_timestamp TIMESTAMP
);

ALTER TABLE order_items ADD FOREIGN KEY (order_id) REFERENCES orders (id);
USE orders;

CREATE TABLE order_items (
  id BIGINT NOT NULL IDENTITY(1,1) PRIMARY KEY,
  order_id BIGINT,
  description VARCHAR(255),
  quantity INT DEFAULT 1
);

CREATE TABLE orders (
  id BIGINT NOT NULL IDENTITY(1,1) PRIMARY KEY,
  description VARCHAR(255),
  creation_timestamp TIMESTAMP
);

ALTER TABLE order_items ADD FOREIGN KEY (order_id) REFERENCES orders (id);

Add a User

You can add a user using gcloud command line:

Use gcloud command line to create a new user:

gcloud sql users create order-user
  --instance=mysql-instance \
  --password=...

Use gcloud command line to create a new user:

gcloud sql users create order-user \
  --instance=postgresql-instance \
  --password=...

Use gcloud command line to create a new user:

gcloud sql users create order-user \
  --instance=sqlserver-instance \
  --password=...

Instance Connection Name

Every Cloud SQL Instance has a unique instance connection name for the form of PROJECT_ID:REGION:INSTANCE_NAME.

Find the Instance Connection Name using gcloud command line:

gcloud sql instances describe INSTANCE_NAME --format='value(connectionName)'

MySQL instance's Instance Connection Name

gcloud sql instances describe mysql-instance \
  --format='value(connectionName)'

PostgreSQL instance's Instance Connection Name

gcloud sql instances describe postgresql-instance \
  --format='value(connectionName)'

SQL Server instance's Instance Connection Name

gcloud sql instances describe sqlserver-instance \
  --format='value(connectionName)'

JDBC

There are different ways to connect to a Cloud SQL instance. All methods will configure a JDBC URL to allow you to use the corresponding JDBC Driver, and subsequently, JPA / Hibernate and Spring Data.

Method

MySQL

PostgreSQL

SQL Server

Considerations

Cloud SQL Starter

✅

✅

🚫

Easy to configure for Spring Boot projects.

Cloud SQL Socket Factory

✅

✅

🚫

Works with non Spring Boot projects.

Cloud SQL Proxy

✅

✅

✅

Offloads authentication to proxy.

VPC Private IP

✅

✅

✅

Access via VPC. Can be used with all of the other methods above.

Cloud SQL Starter

Cloud SQL starter will automatically:

  • Configure the JDBC URL for the corresponding database instance.

Dependency

Add the Cloud SQL Starter dependency:

Maven:

pom.xml
<dependency>
    <groupId>org.springframework.cloud</groupId>
    <artifactId>spring-cloud-gcp-starter-sql-mysql</artifactId>
</dependency>

Gradle:

build.gradle
dependencies {
    compile group: 'org.springframework.cloud', name: 'spring-cloud-gcp-starter-sql-mysql'
}

Maven:

pom.xml
<dependency>
    <groupId>org.springframework.cloud</groupId>
    <artifactId>spring-cloud-gcp-starter-sql-postgresql</artifactId>
</dependency>

Gradle:

build.gradle
compile group: 'org.springframework.cloud', name: 'spring-cloud-gcp-starter-sql-postgresql'

Cloud SQL Starter is not supported for SQL Server. Use Cloud SQL Proxy instead.

Configuration

application.properties
# Retrieve instance connection name from the previous step
spring.cloud.gcp.sql.instance-connection-name=INSTANCE_CONNECTION_NAME
spring.cloud.gcp.sql.database-name=orders

# Cloud SQL starter automatically configures the JDBC URL

# Configure username/password
spring.datasource.username=...
spring.datasource.password=...

# Configure connection pooling if needed
spring.datasource.hikari.maximum-pool-size=10

Sample

Cloud SQL Socket Factory

Dependency

In addition to the JDBC Driver dependency, add the Cloud SQL Socket Factory dependency:

Maven:

<dependency>
    <groupId>com.google.cloud.sql</groupId>
    <artifactId>mysql-socket-factory-connector-j-8</artifactId>
    <version>1.1.0</version>
</dependency>

Gradle:

build.gradle
dependencies {
    compile 'com.google.cloud.sql:mysql-socket-factory-connector-j-8:1.1.0'
}

Maven:

<dependency>
    <groupId>com.google.cloud.sql</groupId>
    <artifactId>postgres-socket-factory</artifactId>
    <version>1.1.0</version>
</dependency>

Gradle:

build.gradle
dependencies {
    compile 'com.google.cloud.sql:postgres-socket-factory:1.1.0'
}

Configuration

MySQL instance's JDBC URL with Cloud SQL Socket Factory follows the format of:

jdbc:mysql:///DATABASE_NAME?cloudSqlInstance=INSTANCE_CONNECTION_NAME&socketFactory=com.google.cloud.sql.mysql.SocketFactory

The JDBC URL for the Cloud SQL instance in this example is:

jdbc:mysql:///orders?cloudSqlInstance=PROJECT_ID:us-central1:mysql-instance&socketFactory=com.google.cloud.sql.mysql.SocketFactory

PostgreSQL instance's JDBC URL with Cloud SQL Socket Factory follows the format of:

jdbc:postgresql:///DATABASE_NAME?cloudSqlInstance=INSTANCE_CONNECTION_NAME&socketFactory=com.google.cloud.sql.postgres.SocketFactory

The JDBC URL for the Cloud SQL instance in this example is:

jdbc:postgresql:///orders?cloudSqlInstance=PROJECT_ID:us-central1:postgresql-instance&socketFactory=com.google.cloud.sql.postgres.SocketFactory

Cloud SQL Socket Factory is not supported for SQL Server. Use Cloud SQL Proxy instead.

Cloud SQL Proxy

Install Cloud SQL Proxy:

gcloud components install cloud_sql_proxy

Start the proxy:

# Refer to Instance Connection Name from previous section
cloud_sql_proxy -instances=INSTANCE_CONNECTION_NAME=tcp:3306
# Refer to Instance Connection Name from previous section
cloud_sql_proxy -instances=INSTANCE_CONNECTION_NAME=tcp:5432
# Refer to Instance Connection Name from previous section
cloud_sql_proxy -instances=INSTANCE_CONNECTION_NAME=tcp:1433

You can then establish connections on localhost with the corresponding ports.

Connect with mysql CLI:

mysql -u root -p

Or, connect with JDBC using JDBC URL:

jdbc:mysql://localhost/orders

Connect with psql CLI:

psql -h localhost -U postgres

Or, connect with JDBC using JDBC URL:

jdbc:postgresql://localhost/orders

Connect with mssql-cli CLI:

mssql-cli -U sqlserver

Or, connect with JDBC using JDBC URL:

jdbc:sqlserver://localhost/databaseName=orders

Unix Socket Domain

VPC Private IP

R2DBC

You can use R2DBC driver for reactive database access when you connect to Cloud SQL instances using:

  • Cloud SQL Proxy

  • VPC Private IP

  • Using R2DBC Cloud SQL Connector

Cloud SQL Proxy or VPC Private IP

Cloud SQL Connector

You can use R2DBC Cloud SQL Connector that automatically exchanges the certificates like the Cloud SQL Socket Factory.

You need the installed locally first, so that you can use mysql to connect to any MySQL server.

You need the installed locally first, so that you can use psql to connect to any PostgreSQL server.

You need the installed locally first, so that you can use mssql-cli to connect to any SQL Server.

You can configure Cloud SQL instances to only have , so that it's only accessible from a Virtual Private Cloud network.

The new user has no privileges. Connect to the database server and grant privileges. Refer to .

The new user has no privileges. Connect to the database server and grant privileges. Refer to .

The new user has no privileges. Connect to the database server and grant privileges. Refer to .

When using Spring Boot, you can use .

Add dependency to the corresponding JDBC driver, and the . You do not need to add those dependency separately.

Configure Spring Boot application'sapplication.properties with and the database name:

If you don't use Spring Cloud GCP's Cloud SQL starter, and need to configure JDBC URL directly, you can use with existing JDBC driver.

Different MySQL Socket Factory artifact is needed for different MySQL Connector/J versions. See for more information.

is the generic way of establishing secured connection to a Cloud SQL instance. Rather than using the Cloud SQL Socket Factory to exchange certificates, Cloud SQL Proxy will authenticate and exchange the certificates.

You can optionally configure Cloud SQL Proxy to expose not a TCP IP port, but using Unix Socket Domain instead, and configure the Cloud SQL Socket Factory to connect using the Unix Socket Domain. See for more details.

If your Cloud SQL instance is on , and your application is running in the Cloud able to access the same VPC, then configure JDBC drivers normally connecting to the private IP address.

You can use standard R2DBC driver to connect using the IP address. See for corresponding driver usages:

See for more information on configuring the R2DBC driver for Cloud SQL.

Cloud SQL
MySQL client
PostgreSQL client
MS SQL Server client
private IP addresses
MySQL documentation to use GRANT
PostgreSQL documentation to use GRANT
SQL Server documentation to use GRANT
Spring Cloud GCP's Cloud SQL starter
Spring Boot with Cloud SQL PostgreSQL
Spring Boot with Cloud SQL MySQL
Cloud SQL Socket Factory
MySQL Socket Factory README
Cloud SQL Proxy
Connect External App documentation
VPC and has a private IP
R2DBC documentation
r2dbc-mysql
r2dbc-postgresql
r2dbc-mssql
Cloud SQL Socket Factory README
Cloud SQL socket factory
Instance Connection Name
Cloud SQL Proxy diagram