Pull request decoration results in 401 error on SonarQube

Continuing the discussion from Azure DevOps integration broken:

We would like to use PR decoration in our project. We follow the following guide:
https://docs.sonarqube.org/latest/analysis/pull-request/#header-3 (for Azure Devops)
But the decorations don’t show up, and there is a warning in the specific PR branch on SonarQube.
In the logs of the sonarqube server we found a http status code 401.

  • versions used
    SonarQube = Developer Edition Version 7.9.1 (on a VM in Azure)
    Build tasks = 4.8.0 on Azure DevOps
    Scanner = SonarScanner for MSBuild 4.7.1

  • error observed
    No annotations on the pull request in Azure Devops and on specific branch in sonarqube, the following warning:

  • steps to reproduce
    Create a pullrequest in Azure DevOps for a project already in SonarQube, which contains issues, and the PR build does an analysis of the branch. The pull-request should now be decorated with the issues.

  • potential workaround
    Normal analysis works, it’s the decorations that won’t show up. And the ability to block the PR on SonarQube issues is lost.


Well, maybe a dumb question, but what are the scopes that you’ve set on your Personal Access Token ?