In the interest of transparency, I am trying to configure my SonarQube instance so that any member of my organization can login and view the metrics of the project. What I don’t want is any user that logins to be able to modify the status of issues (changing from Open to Resolved as Fixed, etc), reassigning etc… I would like to limit that to the specific development teams working on the project through various groups.
I have tried making the project public, as well as making it private and providing the ‘Browse’ permission. It seems that the ‘Browse’ permission does more than just allow browse, also allowing edits of a few fields.
Is there a way to achieve this?
SonarQube Version: 188.8.131.52043
External User Authentication: LDAP