Secure SonarQube

Before running the commands shown on this page, you should load the Bitnami stack environment by executing the installdir/use_APPNAME script (Linux and MacOS) or by clicking the shortcut in the Start Menu under “Start -> Bitnami APPNAME Stack -> Application console” (Windows). On OS X VMs, the installation directory is /opt/bitnami and OS X VM users can click the “Open Terminal” button to run commands. Learn more about the Bitnami stack environment and about OS X VMs.

Authentication and Authorization

In the Bitnami SonarQube Stack, user authentication is activated by defatul using the users/groups mechanism. Refer to the first steps section in order to find the default credentials.

You can configure the SonarQube application to use a different authentication mechanism as described in SonarQube’s official authentication documentation.

You can also customize the User/Groups authorization settings along with the project and global permissions. Please refer to the SonarQube’s official authorization documentation for more information.

Settings Encryption

SonarQube provides a mechanism to encrypt the settings, which is very useful for removing clear passwords and credentials from the configuration files.

By default, these settings are not encrypted in the Bitnami SonarQube Stack. It is strongly recommended to encrypt them in order to enforce the security of your application. Please folllow the steps described at SonarQube’s official Encryption documentation in order to do so.

Last modification July 14, 2021