Setup in Ping Identity

This page explains how to register SonarQube Community Build in PingOne (or PingFederate). This is the first step of SAML authentication setup.

This page explains how to register SonarQube Community Build in PingOne. The procedure with PingFederate is similar (The properties and values to be configured are the same.). This is the first step of SAML authentication setup with Ping Identity. For an overview of the complete setup, see Introduction.

Step 1: Create the SAML application for SonarQube Community Build

1. In PingOne, go to Applications > Applications.

2. Select the + icon.

3. Enter the application name and description.

4. In Choose Application Type, select SAML Application.

5. Select Configure.

6. Select the Manually Enter option and set:

    • ACS URL (Assertion Consumer Service): Must be in the format: <sqServerBaseUrl>/oauth2/callback/saml

Example: https://my-sonarqube.com/oauth2/callback/saml

    • Entity ID: Identifier of the application for SonarQube Community Build in PingOne Example: sonarqube

7. Select Save.

Step 2: Configure the application

1. Go to the Attribute mappings tab of the application for SonarQube Community Build you created in step 1 (To retrieve the application, go to Applications > Applications and open the application details page.).

2. Select the pencil icon and the +Add button to add an attribute mapping: select a PingOne user attribute and map it to an attribute in the application. See the example below.

SAML attribute mapping example
SAML attribute in the application
PingOne user attribute
Description

saml_subject

User ID

login

Family Name

A unique name to identify the user in SonarQube Community Build.

name

Given Name

User name.

email

Email Address

User email address.

group_names

Group Names

Required only if you use the group synchronization feature with Just-in-Time provisioning. See Just-in-Time provisioning > Group synchronization in Overview of authentication and provisioning.

3. Select Save.

4. Go to the Configuration tab and select the Download Metadata button to download the SAML metadata containing your X.509 certificate.

Step 3: Enable the application

  1. In PingOne, retrieve the application: go to Applications > Applications and open the application details page.

  2. In the top right corner of the application, select the toggle button.

Step 4: Assign users and groups to the application

  1. To create users, go to Identities > Users and select + Add User.

  2. To create a group:

    • Go to Identities > Groups.

    • Select + to create and save a group.

    • On the page of the new group, open the Users tab, and add users to the group.

Last updated

Was this helpful?