...
Security
Since Sonar 3.4, if you have set the security property 'sonar.forceAuthentication' to 'true', to run the analysis, you have to set the the project cannot be accessed anonymously, the 'sonar.login' and 'sonar.password' properties are required to an existing user, run an analysis. These properties have to be set to the credentials of a user having the 'User' role on this project. You can set them either:
- directly on the command line by adding -Dsonar.login=myUser -Dsonar.password=myPassword
- or by setting these two properties in the pom.xml project configuration file
- or in the Maven profile (settings.xml file)
A project cannot be anonymously accessed when either:
- the 'sonar.forceAuthentication' property is set to 'true'
- or the 'sonar.forceAuthentication' property is set to 'false' and the 'Anyone' group has not been granted a 'User' role on the project
Sample Projects
To help you getting started, a simple project sample is available on github that can be browsed or downloaded: projects/languages/java/maven/java-maven-simple
...
