Permission for Github integration

Emmanuel_Prou · May 10, 2022, 9:25am

Hello,

My team would like to use the sonarqube (9.4.0.54424) instance of another team in my company.
To do that, my colleague (who installed sonarqube)activate the github authentication and i created a github app with right permissions.
I can authenticate myself on the Sonarqube interface with Github but i have a problem, when i try to create a project coming from github i always have this message :

You’re not authorized to access this page. Please contact the administrator.

I followed the documentation ton grant right permissions for the github app so i don’t think that it comming from here.

I precise that ma colleague add me to the the sonar-administrator group but it change nothing.

Maybe i forget a step, i’m a little bit lost .

Does anyone have an idea ?

(Sorry for my english, i’m french)

ganncamp · May 10, 2022, 3:09pm

Hi,

Welcome to the community!

Do you have project creation rights within SonarQube?

Ann

Emmanuel_Prou · May 11, 2022, 7:33am

Hi,

Thanks to take the time to answer to my question.

Yes i’ve check again this morning and i have creation right for my user

Emmanuel

ganncamp · May 11, 2022, 7:40am

Hi,

Sorry, but this isn’t quite clear to me. What page are you coming from, and what’s the URL (or just the path, if you like) where you see this error?

Thx,
Ann

Emmanuel_Prou · May 11, 2022, 11:38am

So when I am on the page Projects :

Click on the button create project
Click on github
Then i’m redirect to /projects/create?mode=github (briefly) and i’m automatically redirect to the url /sessions/unauthorized with the message You’re not authorized to access this page. Please contact the administrator.

ganncamp · May 11, 2022, 12:09pm

Hi,

Is there a proxy involved?

And… I assume you’re delegating authentication. By what method / to what system?

Ann

Emmanuel_Prou · May 12, 2022, 7:10am

Hi

For the proxy i’m not sure i’m gonna ask to my colleague but for the authentication we use GitHub Authentication with client_secret, client_id, app id and private key .

Emmanuel

ganncamp · May 12, 2022, 7:32am

Hi,

I’m a little lost myself. I’ve referred this for more expert attention.

Ann

Emmanuel_Prou · May 12, 2022, 8:05am

Thank you for your help Ann

My colleague just told me that we use a proxy ngninx ingress kubernetes (and our sonarqube instance is hosted on Goggle Kubernetes Engine )