Request for Reintroduction of OIDC Protocol Support

elay_chen · February 19, 2025, 2:23am

Version： Community V10.8
Deploy： Docker

Hi Team,

We previously integrated with SonarQube using a plugin based on the OIDC protocol. However, after upgrading to version V25.1, the new version no longer supports the OIDC protocol, which has rendered our existing identity provider login method inoperable. Furthermore, our identity provider does not support the SAML protocol.

We are wondering if there is a solution to this and whether OIDC protocol support can be reintroduced.

Thank you.

Best regards

Colin · February 20, 2025, 9:24am

Hey there.

I guess you were using sonar-auth-oidc/sonar-auth-oidc. It looks like there are some users supporting a fork of sonar-auth-oidc:

github.com/sonar-auth-oidc/sonar-auth-oidc

Compatibility with latest Sonarqube Community Build (Community Build v25.1.0.102122)

opened 08:35AM - 08 Jan 25 UTC

gschwienbacher

After upgrading to the latest Sonarqube Community Build **(Community Build v25.1….0.102122)** the startup with this plugin enabled fails for us: _web.log:_ ``` 2025.01.08 08:05:11 INFO web[][o.s.s.p.DetectPluginChange] Detect plugin changes 2025.01.08 08:05:11 ERROR web[][o.s.s.p.Platform] Background initialization failed. Stopping SonarQube java.lang.IllegalStateException: Fail to load plugin OpenID Connect Authentication for SonarQube [authoidc] at org.sonar.server.plugins.ServerExtensionInstaller.installExtensions(ServerExtensionInstaller.java:81) at org.sonar.server.platform.platformlevel.PlatformLevel4.start(PlatformLevel4.java:753) at org.sonar.server.platform.PlatformImpl.start(PlatformImpl.java:217) at org.sonar.server.platform.PlatformImpl.startLevel34Containers(PlatformImpl.java:197) at org.sonar.server.platform.PlatformImpl$AutoStarterRunnable.runIfNotAborted(PlatformImpl.java:365) at org.sonar.server.platform.PlatformImpl$1.doRun(PlatformImpl.java:116) at org.sonar.server.platform.PlatformImpl$AutoStarterRunnable.run(PlatformImpl.java:349) at java.base/java.lang.Thread.run(Unknown Source) Caused by: java.lang.NoClassDefFoundError: org/sonar/api/web/ServletFilter at java.base/java.lang.ClassLoader.defineClass1(Native Method) at java.base/java.lang.ClassLoader.defineClass(Unknown Source) at java.base/java.security.SecureClassLoader.defineClass(Unknown Source) at java.base/java.net.URLClassLoader.defineClass(Unknown Source) at java.base/java.net.URLClassLoader$1.run(Unknown Source) at java.base/java.net.URLClassLoader$1.run(Unknown Source) at java.base/java.security.AccessController.doPrivileged(Unknown Source) at java.base/java.net.URLClassLoader.findClass(Unknown Source) at org.sonar.classloader.ClassRealm.loadClassFromSelf(ClassRealm.java:135) at org.sonar.classloader.ParentFirstStrategy.loadClass(ParentFirstStrategy.java:37) at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:97) at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:86) at org.vaulttec.sonarqube.auth.oidc.AuthOidcPlugin.define(AuthOidcPlugin.java:28) at org.sonar.server.plugins.ServerExtensionInstaller.installExtensions(ServerExtensionInstaller.java:71) ... 7 common frames omitted Caused by: java.lang.ClassNotFoundException: org.sonar.api.web.ServletFilter at org.sonar.classloader.ParentFirstStrategy.loadClass(ParentFirstStrategy.java:39) at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:97) at org.sonar.classloader.ClassRealm.loadClass(ClassRealm.java:86) ... 21 common frames omitted 2025.01.08 08:05:12 INFO web[][o.h.v.i.util.Version] HV000001: Hibernate Validator null 2025.01.08 08:05:12 INFO web[][o.s.p.ProcessEntryPoint] Hard stopping process 2025.01.08 08:05:12 INFO web[][c.z.h.HikariDataSource] HikariPool-1 - Shutdown initiated... 2025.01.08 08:05:12 INFO web[][c.z.h.HikariDataSource] HikariPool-1 - Shutdown completed. ``` After removing the `sonar-auth-oidc-plugin-2.1.1.jar` from the **extensions/plugins/** directory, sonarqube starts up as expected. Is this only happening for us? Does this work for you / other users of this plugin? [https://docs.sonarsource.com/sonarqube-community-build/server-upgrade-and-maintenance/release-notes-and-notices/release-notes/#sonarqube-community-build-25.1.0.102122](https://docs.sonarsource.com/sonarqube-community-build/server-upgrade-and-maintenance/release-notes-and-notices/release-notes/#sonarqube-community-build-25.1.0.102122)

That might be worth a try! On our end, built-in OIDC support is not currently on our roadmap.

Topic		Replies	Views
Sonar-auth-oidc-plugin version compatibility Plugin Development plugin	3	135	February 11, 2025
SonarQube Support for OpenID Connect SonarQube Server / Community Build sonarqube , scanner	3	3186	November 29, 2022
SonarQube SSO Implementation by using OpenID Connect SonarQube Server / Community Build sonarqube	1	2172	June 10, 2022
We re trying to integrate SSO for sonar with OpenID Connect which we are facing this error SonarQube Server / Community Build	2	696	November 28, 2023
Q: Plugin Sonarqube to Openshift Authentication SonarQube Server / Community Build sonarqube , plugin , custom_plugin	6	2541	December 5, 2018

Request for Reintroduction of OIDC Protocol Support

Related topics