We have SonarQube set up, and internally, we have three teams using GitHub, GitLab, and Bitbucket as their repository managers. Currently, when logging into the dashboard, all members can see projects from all teams hosted on these SCMs. We want to restrict access so that each team can only see their own projects or repositories. Specifically, only the team using GitHub should see their GitHub projects, the GitLab team should see only their GitLab projects, and the Bitbucket team should see only their Bitbucket projects. How can we achieve this?
Also for each integrated repo of github its considering as Project. So can create Project specific to team and it will have their own repositories and none of the other team can see or access the project.
Hi @Nitin_Kadam,
First you will need to understand how user groups are managed/synchronized Authentication and provisioning.
Then you should configure permission template based on sonar projectKey to associate group rights to each project.
Security
Hi,
Just to round out @Bachri_Abdel’s already-excellent answer, once you’ve created your permission templates, you’ll need to manually apply them to existing projects. You can do that in bulk at Administration → Projects → Management.
HTH,
Ann