Chapter 12. Security: users, groups, and roles
This chapter covers
- Creating users and groups
- Roles: who can do what
- System administrators
So far, you’ve been working under the default accounts and permissions. You’ve made all your changes as Admin, and all your users have presumably been accessing SonarQube anonymously. In this chapter, we’ll help you set up a slightly more sophisticated system that takes advantage of SonarQube’s role-based authorization, which determines who can do what; and we’ll show you how to grant those roles at the project level to groups and individual users. Once your users have their own accounts in SonarQube, they’ll be able to manage their own preferences, so we’ll look at the settings on a user account and discuss the features available to a user.
We’ll end the chapter with a look at the plugins that let you delegate authentication to an existing system through the Lightweight Directory Access Protocol (LDAP), Central Authentication Service (CAS) protocol, Security Assertion Markup Language (SAML), OpenID, or Protocol Analysis Module (PAM).