Frequency of user permission sync with github automatic provisioning?

SonarQube Server / Community Build
1
  • which versions are you using: SonarQube 10.6.0
  • how is SonarQube deployed: Docker
  • what are you trying to achieve: More frequent automatic user permission synchronisation
  • what have you tried so far to achieve this: Using the manual sync button

Hello,

Have recently switched from github JIT provisioning to github automatic provisioning.

Am noticing that changing a users role on a repo in github is not being reflected in the SonarQube role mapping 22+ hours later. Invoking a sync manually updates the role mapping as expected.

Reading the docs I can see that users and groups are synced hourly but no timeframe is given for the permissions sync. For our use case we would prefer if permissions were also synced at least hourly.

Is anyone able to provide more information on when permissions are synced please?

Thanks

5

Hello @cindy,

Permissions are synced hourly, together with the users and groups. If required, you can confirm that by checking the CE logs. They will display information whenever user, groups and permissions are synchronized.

Cheers,
Aurélien

8

Hi Aurélien,

Thank you for your response.

SonarQube is reporting that is has not synced for 18 hours - which the last time I manually invoked a permissions sync

Screenshot 2024-07-16 at 10.36.15 AM
Screenshot 2024-07-16 at 10.36.15 AM1526×346 36.3 KB

Any ideas why this would be?

Thanks,
Cindy

9

Hi Cindy,

Could you please check your compute engine logs to see if you see anything obvious?

If not, could you turn the level to debug and send it to us?

Thanks a lot,
Aurélien

Ps: here are instructions on how to enable debug for CE logs