Unable to run SonarQube analysis with permissions on project
2,527 views
Skip to first unread message
Etienne Jouvin
Sep 21, 2015, 5:47:18 PM9/21/15
to SonarQube
Hello all.
On Sonar 5.1.2 (after multiple updates from previous versions) I have errors durings analysis, runned under Jenkins.
Here is the environment.
One project
For permissions on the project
BROWSE
sonar-administrators, my-specific-group
ADMINISTER
sonar-administrators
ADMINISTER ISSUES
sonar-administrators, my-specific-group
SEE SOURCE CODE
sonar-administrators, my-specific-group
For global permissions
Execute Analysis
Anyone
The first analysis workes fine.
I am able to change the quality profile also, and the second run is OK.
But when a file, impacted by an issue, is changed, the analysis failed with following message:
org.apache.maven.lifecycle.LifecycleExecutionException: Failed to execute goal org.codehaus.mojo:sonar-maven-plugin:2.6:sonar (default-cli) on project extraction: Fail to decorate 'org.sonar.api.resources.File@1bbdf778[key=src/main/java/...,path=src/main/java/...,filename=...,language=Java]' at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:216) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:153) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:145) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:116) at org.apache.maven.lifecycle.internal.LifecycleModuleBuilder.buildProject(LifecycleModuleBuilder.java:80) at org.apache.maven.lifecycle.internal.builder.singlethreaded.SingleThreadedBuilder.build(SingleThreadedBuilder.java:51) at org.apache.maven.lifecycle.internal.LifecycleStarter.execute(LifecycleStarter.java:128) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:307) at org.apache.maven.DefaultMaven.doExecute(DefaultMaven.java:193) at org.apache.maven.DefaultMaven.execute(DefaultMaven.java:106) at org.apache.maven.cli.MavenCli.execute(MavenCli.java:862) at org.apache.maven.cli.MavenCli.doMain(MavenCli.java:286) at org.apache.maven.cli.MavenCli.main(MavenCli.java:197) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced(Launcher.java:289) at org.codehaus.plexus.classworlds.launcher.Launcher.launch(Launcher.java:229) at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode(Launcher.java:415) at org.codehaus.plexus.classworlds.launcher.Launcher.main(Launcher.java:356) Caused by: org.apache.maven.plugin.MojoExecutionException: Fail to decorate 'org.sonar.api.resources.File@1bbdf778[key=src/main/java/...,path=src/main/java/...,filename=...,language=Java]' at org.codehaus.mojo.sonar.bootstrap.ExceptionHandling.handle(ExceptionHandling.java:41) at org.codehaus.mojo.sonar.bootstrap.RunnerBootstraper.execute(RunnerBootstraper.java:139) at org.codehaus.mojo.sonar.SonarMojo.execute(SonarMojo.java:132) at org.apache.maven.plugin.DefaultBuildPluginManager.executeMojo(DefaultBuildPluginManager.java:134) at org.apache.maven.lifecycle.internal.MojoExecutor.execute(MojoExecutor.java:208) ... 20 more Caused by: org.sonar.api.utils.SonarException: Fail to decorate 'org.sonar.api.resources.File@1bbdf778[key=src/main/java/...,path=src/main/java/...,filename=...,language=Java]' at org.sonar.batch.phases.DecoratorsExecutor.executeDecorator(DecoratorsExecutor.java:104) at org.sonar.batch.phases.DecoratorsExecutor.decorateResource(DecoratorsExecutor.java:87) at org.sonar.batch.phases.DecoratorsExecutor.decorateResource(DecoratorsExecutor.java:79) at org.sonar.batch.phases.DecoratorsExecutor.decorateResource(DecoratorsExecutor.java:79) at org.sonar.batch.phases.DecoratorsExecutor.execute(DecoratorsExecutor.java:71) at org.sonar.batch.phases.DatabaseModePhaseExecutor.execute(DatabaseModePhaseExecutor.java:127) at org.sonar.batch.scan.ModuleScanContainer.doAfterStart(ModuleScanContainer.java:264) at org.sonar.api.platform.ComponentContainer.startComponents(ComponentContainer.java:92) at org.sonar.api.platform.ComponentContainer.execute(ComponentContainer.java:77) at org.sonar.batch.scan.ProjectScanContainer.scan(ProjectScanContainer.java:235) at org.sonar.batch.scan.ProjectScanContainer.scanRecursively(ProjectScanContainer.java:230) at org.sonar.batch.scan.ProjectScanContainer.doAfterStart(ProjectScanContainer.java:220) at org.sonar.api.platform.ComponentContainer.startComponents(ComponentContainer.java:92) at org.sonar.api.platform.ComponentContainer.execute(ComponentContainer.java:77) at org.sonar.batch.scan.ScanTask.scan(ScanTask.java:57) at org.sonar.batch.scan.ScanTask.execute(ScanTask.java:45) at org.sonar.batch.bootstrap.TaskContainer.doAfterStart(TaskContainer.java:135) at org.sonar.api.platform.ComponentContainer.startComponents(ComponentContainer.java:92) at org.sonar.api.platform.ComponentContainer.execute(ComponentContainer.java:77) at org.sonar.batch.bootstrap.GlobalContainer.executeTask(GlobalContainer.java:158) at org.sonar.batch.bootstrapper.Batch.executeTask(Batch.java:95) at org.sonar.batch.bootstrapper.Batch.execute(Batch.java:67) at org.sonar.runner.batch.IsolatedLauncher.execute(IsolatedLauncher.java:48) at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:57) at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.lang.reflect.Method.invoke(Method.java:606) at org.sonar.runner.impl.BatchLauncher$1.delegateExecution(BatchLauncher.java:87) at org.sonar.runner.impl.BatchLauncher$1.run(BatchLauncher.java:75) at java.security.AccessController.doPrivileged(Native Method) at org.sonar.runner.impl.BatchLauncher.doExecute(BatchLauncher.java:69) at org.sonar.runner.impl.BatchLauncher.execute(BatchLauncher.java:50) at org.sonar.runner.api.EmbeddedRunner.doExecute(EmbeddedRunner.java:102) at org.sonar.runner.api.Runner.execute(Runner.java:100) at org.codehaus.mojo.sonar.bootstrap.RunnerBootstraper.execute(RunnerBootstraper.java:135) ... 23 more Caused by: java.lang.IllegalStateException: Insufficient privileges at org.sonar.batch.bootstrap.ServerClient.handleHttpException(ServerClient.java:137) at org.sonar.batch.bootstrap.ServerClient.request(ServerClient.java:107) at org.sonar.batch.bootstrap.ServerClient.request(ServerClient.java:99) at org.sonar.batch.bootstrap.ServerClient.request(ServerClient.java:87) at org.sonar.batch.issue.tracking.DefaultServerLineHashesLoader.loadHashesFromWs(DefaultServerLineHashesLoader.java:47) at org.sonar.batch.issue.tracking.DefaultServerLineHashesLoader.getLineHashes(DefaultServerLineHashesLoader.java:38) at org.sonar.batch.issue.tracking.SourceHashHolder.initHashes(SourceHashHolder.java:52) at org.sonar.batch.issue.tracking.SourceHashHolder.getHashedSource(SourceHashHolder.java:65) at org.sonar.batch.issue.tracking.IssueTracking.setChecksumOnNewIssues(IssueTracking.java:66) at org.sonar.batch.issue.tracking.IssueTracking.track(IssueTracking.java:51) at org.sonar.batch.issue.tracking.IssueTrackingDecorator.doDecorate(IssueTrackingDecorator.java:139) at org.sonar.batch.issue.tracking.IssueTrackingDecorator.decorate(IssueTrackingDecorator.java:113) at org.sonar.batch.phases.DecoratorsExecutor.executeDecorator(DecoratorsExecutor.java:96) ... 57 more
To get it work, I must allow Anyone to have BROWSE permission.
But I do not want that, because the project must be "secret" and not visible by everybody.
Any idea ?
Regards
Etienne Jouvin
Adam Gabryś
Sep 22, 2015, 6:27:02 AM9/22/15
to Etienne Jouvin, SonarQube
Hi,
Your Jenkins user needs:
1) Global permissions:
- Execute Analysis
- Execute Preview Analysis
2) Project permissions:
- BROWSE
- SEE SOURCE CODE
Regards,
Adam Gabryś
--
You received this message because you are subscribed to the Google Groups "SonarQube" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sonarqube+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/sonarqube/d0f58caa-6258-4f6d-83d1-11d7592dd009%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
You received this message because you are subscribed to the Google Groups "SonarQube" group.
To unsubscribe from this group and stop receiving emails from it, send an email to sonarqube+...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/sonarqube/d0f58caa-6258-4f6d-83d1-11d7592dd009%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Etienne Jouvin
Sep 22, 2015, 5:09:59 PM9/22/15
to SonarQube, lapino...@gmail.com
Hi.
Thanks for the response.
I was really surprised because first analysis was sucessful, and after I had errors.
I am going to setup securities as required, as it is designed.
Thanks, and let's play
Regards
Etienne
yeshu...@gmail.com
Jan 7, 2016, 5:20:40 AM1/7/16
to SonarQube
Hi Etienne,
I am experiencing the same issue when running through Jenkins.
I applied the above permissions but still hasnt solved my issue. Did this resolve yours? or is this a bug?
Regards,
Tammy
I am experiencing the same issue when running through Jenkins.
I applied the above permissions but still hasnt solved my issue. Did this resolve yours? or is this a bug?
Regards,
Tammy
Reply all
Reply to author
Forward
0 new messages