Advanced configuration

HTTP configuration

To operate, SonarLint needs to perform HTTP requests, especially in Connected Mode. While SonarLint will work out-of-the-box in most situations, some network infrastructure may require a custom configuration.

Manage your configuration

HTTP Client timeouts

SonarLint supports various timeouts. Below you will find the properties added to control them:

sonarlint.http.connectTimeout

Determines the timeout, in minutes, until a new connection is fully established.
Default: 3 min

sonarlint.http.socketTimeout

Determines the default socket timeout value, in minutes, for I/O operations.
Default: infinite

sonarlint.http.connectionRequestTimeout

The connection lease request timeout, in minutes, is used when requesting a connection from the connection manager.
Default: 3 min

sonarlint.http.responseTimeout

Determines the timeout, in minutes, until the arrival of a response from the opposite endpoint.
Default: infinite

Server SSL certificates

SonarLint manages its own truststore in addition to the OS and Java truststores. When encountering an untrusted certificate, SonarLint will ask the user if the certificate should be trusted. If the answer is yes, the certificate will be added to the truststore.

TrustStore

sonarlint.ssl.trustStorePath

Path to the keystore used by SonarLint to store custom trusted server certificates
default: ~/.sonarlint/ssl/truststore.p12

sonarlint.ssl.trustStorePassword

Password of the truststore.
default: sonarlint

sonarlint.ssl.trustStoreType

The format of the keystore file is found in the Oracle documentation.
default: PKCS12

Client SSL certificates

Some servers or proxies may also require SonarLint to authenticate using client-side SSL certificates. This is a rare use case, and at for the moment, there is no UI to configure client-side SSL certificates. To properly authenticate client-side SSL certificates, you must manually create a keystore at the default location, or use the following properties:

KeyStore

sonarlint.ssl.keyStorePath

Path to the keystore used by SonarLint to store client certificates.
default: ~/.sonarlint/ssl/keystore.p12

sonarlint.ssl.keyStorePassword

Password of the keystore.
default: sonarlint

sonarlint.ssl.keyStoreType

The format of the keystore file is found in the Oracle documentation.
default: PKCS12

Passing SonarLint properties

In SonarLint for Eclipse, you must edit the eclipse.ini and define extra VM arguments.

You'll need to edit the eclipse.ini file to add advanced HTTP properties.

Providing a Java runtime

SonarLint for Eclipse 10.0+ provides its own Java runtime to run some processes independently from the IDE; this requires Java 17 or newer. However, it’s possible to define a unique, self-managed runtime in the SonarLint preferences.

As shown in this example, SonarLint will use the Java 17 environment: amazon-corretto-17.jdk

To define another Java 17+ runtime, go to Eclipse Window > Preferences > SonarLint (or Eclipse > Settings… > SonarLint for Mac OS), select the Java installation path, and restart your IDE.

Leaving the field blank will use the embedded JRE.

In the case that you provide your own runtime, please check that your environment meets the Java 17 or newer requirement and verify that SonarLint is working correctly. If the specified runtime is moved or cannot be found, SonarLint 10.0+ will fall back to the embedded runtime.

On this page

Advanced configuration

.css-4ebt6d{position:relative;--tw-text-opacity:1;color:rgb(0 0 0 / var(--tw-text-opacity));}HTTP configuration.css-abpesc{width:2rem;display:none;margin-left:0.5rem;fill:#5F656D;}.css-abpesc:hover{fill:#290042;}

HTTP configuration