We updated our instance of SonarQube Community from 7.9.2 to 8.1 (188.8.131.52237).
We relied on the behavior where the
login parameter of a user was extracted from the SAML identity (with the configuration key "SAML user login attribute
In 8.1 the
login parameter is automatically generated; this is confirmed in SONAR-12475 and this commit.
This has broken our group sync workflow: we want to synchronize the groups between our GitHub organization and our SonarQube instance. We use the SAML authentication on both GitHub and SonarQube. When synchronizing the users we only have access to the SAML identity from GitHub, not their corporate email, so we were searching SonarQube with the
login parameter (the API
GET api/users/search indicates that we can search for login, name and email).
Now that user login is randomly generated by SonarQube (and impossible to update, see SONAR-12531), we cannot search our users anymore.
Can you revert this behavior? Is there a way for us to work around it?
Thanks in advance.