Hi all,
we are trying to integrate Azure DevOps Server with SonarQube.
These are the details of our environment:
- Azure DevOps Server 2020 update 1
- SonarQube 9.6.1 (Developer Edition)
- SonarScanner for Azure DevOps 5.8.0
The VSTS build SERVER is installed on Ubuntu Linux while the SonarQube server is running on a Linux container in Kubernetes.
Everything is on premise and all the web sites are using https with certificates provided by our internal CA.
Problem details
During the “Prepare Analysis Configuration” task we get the error
##[error][SQ] API GET ‘/api/server/version’ failed, error was: {“code”: “UNABLE_TO_VERIFY_LEAF_SIGNATURE”}
I have seen from other posts that this error is quite common and is due to an SSL certificate problem.
the solution usually proposed is.
- set NODE_EXTRA_CA_CERTS to point to your root ca in a .pem format
- if using the standalone scanner option in the run code analysis task make sure to add the root ca to the java keystore
However, in no post is the solution described in detail.
Is it possible from those who have solved the problem to attach the detailed solution, especially related to point 1? (NODE_EXTRA_CA_CERTS)
Thanks in advance