Must-share information (formatted with Markdown):
- which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)
SonarQube 10.4 - with Developer License - how is SonarQube deployed: zip, Docker, Helm
Helm - what are you trying to achieve
I am trying to provide Project (not Server) administration rights to groups that are created by the “Automatic user and group provisioning” feature of the Gitlab authentication feature. - what have you tried so far to achieve this
I configured the “Automatic user and group provisioning” feature with allowed groups for our Gitlab instance. This worked fine.
I also configured the DevOps Platform Integration for Gitlab (same, private instance with [v16.9.2-ee]) that also worked fine.
I then created a Project via the integration, configured a Gitlab-CI pipeline and executed the first scans. That all works.
After that, I wanted to hand over the permissions to configure their projects to the corresponding teams (groups). Those groups are available, I see the user accounts and the members can login and see the project.
This is where I fail. The users are of type Owner
on the imported GitLab groups, so it can’t be configured differently.
- I can’t configure permissions on the project settings (Project → Settings → Permissions). I get a red popup with “Operation not allowed when the project is externally managed”
- I can’t attach a Permission Template to a Project (Project → Settings → Permissions) with the same error message.
- I can create a new Permission Template, but when I want to apply it via Administration → Projects → Projects Management it fails with
You can't apply permission templates to GitHub projects.
- What I can do is assigning Global Permissions to groups through Administration → Security → Global Permissions, but that’s not working for project permissions.
There are no log entries on the Server that would be helpful.
Is this a bug, because the feature is so new or am I doing something wrong? The documentation states that group permissions are only handled by GitHub, and I see an error that states I am trying to change the permissions for a GitHub project, but I only used GitLab integrations (Auth and DevOps).