I have a SonarQube Developer Edition 8.4.1 instance which analyzes private projects on gitlab.com. I’ve created a GitLab account with Reporter access to said projects, and generated a Personal Access token for that user.
When I setup merge request decoration by entering that token in cleartext, everything works just fine. On the other hand, if I encrypt it using the secret key of the instance, and enter the encrypted token like this:
then the decoration fails wth the warning:
Merge Request decoration failed. Please check your configuration and the connectivity to GitLab
Is the encrypted form not supported here? It would be nice if it were, I don’t like too much storing cleartext access to a user which basically has read access to all of the repositories of my organization (especially in the SonarQube database backups).