Deprecating sonar.login and sonar.password in favor of sonar.token

Hello SonarCloud :sonarcloud: users,

We are deprecating sonar.login and sonar.password as a way of authenticating with SonarCloud during the analysis. Please switch to sonar.token going forward. You will receive a warning on any project that is still using the deprecated parameters.

You can find more information about user tokens here: User Accounts | SonarCloud Docs.

The SonarCloud :sonarcloud: Team

We are using Azure DevOps task: SonarCloudPrepare@1, and these are the parameters:

    SonarCloud: '$(sonarCloudServiceConnection)'
    organization: '$(sonarCloudOrganisation)'
    scannerMode: 'MSBuild'
    projectKey: '$(sonarCloudProjectKey)'
    projectName: 'Z$(sonarCloudProjectName)'

We’ve added the SonarCloud extension and added a service connection with SonarCloud token for authentication.

We are not passing the password during the analysis, but still getting the warning in SonarCloud.

Will this be an issue in the near future or will it be resolved soon?

Ricardo Bicho

HI @Ricardo_Bicho and welcome to the community

Thanks for reporting it.
We will fix this warning in some time.
You do not need to worry about potential issues as the extension will be modified accordingly.

And here is the ticket for the change.

when the sonar.login cannot be used?