Roman Kh
Reputation: 2735
Disallow anonymous users to access Sonar
I have installed Sonar 3.5.1 and want to disable anonymous users access to the web console. I went to Security page and deleted Anyone from users and codeviewers roles. However, when I visit the web console without authentication I am still able to see "Welcome to Sonar Dashboard" page, whereas I expected to be redirected to the login page.
Is it possible to completely disallow unauthenticated users to see any content except the login page?
Upvotes: 42
Views: 17159
Answers (1)
Fabrice - SonarSource Team
Reputation: 26843
You can set the "sonar.forceAuthentication" to "true" in the web admin interface:
See http://docs.sonarqube.org/display/SONAR/Authentication for more details.
Upvotes: 77
Related Questions
- sonarqube analysis requires authentication when permission is anyone
- Allow anonymous authentication on SonarQube 8.6
- Sonarqube authentication
- Authorization in Sonar REST/Web API
- Problems with users authorization in Sonar 6.2
- Sonar API call with Groovy script, Disabling anonymous Authentication in SonarQube
- Sonar Let Anonymous user see the reports
- Sonarqube Authentication: Disable Login Field
- How to do role based access control with SonarQube?
- How do I hide Sonar database credentials from end users