User Permission Gets Reset to Default

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension)
    Sonar 7.4 with LDAP Authentication
  • what are you trying to achieve

It has bee 2 months, we have switched from Local AD to LDAP Authentication. Since then, the user permission get set to default after they do logout.

  • what have you tried so far to achieve this:
    The only error which we could trace in logs is the following :
2020.05.29 12:26:33 ERROR web[AXI7BadW28lEEdnHAAt8][o.s.s.p.UpdateCenterClient] Fail to connect to update center
org.sonar.api.utils.SonarException: Fail to download: https://update.sonarsource.org/update-center.properties (no proxy)
        at org.sonar.core.util.DefaultHttpDownloader.failToDownload(DefaultHttpDownloader.java:155)

Not sure, if this error has any relevance with this login issue. Can you please help and guide, how to approach and proceed further to fix this issue?

Regards,
Vivek Mistry

Have you enabled Group Mapping (configured ldap.group.request)?

Keep in mind these points from our documentation on Delegated Authentication:

Group Mapping

When using group mapping, the following caveats apply regardless of which delegated authentication method is used:

  • membership in synchronized groups will override any membership locally configured in SonarQube at each login
  • membership in a group is synched only if a group with the same name exists in SonarQube
  • membership in the default group sonar-users remains (this is a built-in group) even if the group does not exist in the identity provider

When group mapping is configured, the delegated authentication source becomes the one and only place to manage group membership, and the user’s groups are re-fetched with each log in.

Thanks, it worked after updating right values for “member” under ldap.group.request.