GitLab Authenticated Users Generate Invalid Project Analysis Tokens In Some Cases

wmarshall · March 11, 2026, 7:12pm

We recently got GitLab authentication working with SonarQube and are trying to migrate off of LDAP authenticated users. However, we ran into a major stumbling block: newly created Project Analysis tokens are inconsistently valid.

I’ve tried deleting and recreating tokens using various settings, but I have yet to find anything that consistently generated a token SonarQube will accept as valid.

wmarshall · March 11, 2026, 8:11pm

GitLab must have been caching tokens somewhere. Solution I found was:

Delete the old SONAR_TOKEN
Create a new SONAR_TOKEN that is hidden but not masked
Delete the new SONAR_TOKEN
Create a new SONAR_TOKEN that is hidden and masked.

system · March 20, 2026, 4:56pm

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Access SonarQube from Gitlab with user authentication enforced SonarQube Server / Community Build sonarqube , scanner , authentication , tokens	1	1467	July 26, 2021
Issue with GitLab Token Expiration in DevOps Platform Integrations in SonarQube SonarQube Server / Community Build gitlab , tokens	3	179	March 27, 2025
Recreate poject analysis token SonarQube Cloud	1	45	February 11, 2025
Sonar Cube Gitlab Access Toke Is Not Valid SonarQube Cloud sonarqube-cloud	1	1323	January 15, 2021
Adding project via Gitlab - your personal access couldn't be validated error SonarQube Server / Community Build sonarqube , gitlab	1	632	June 30, 2022

GitLab Authenticated Users Generate Invalid Project Analysis Tokens In Some Cases

Related topics