Was this page helpful?
HTTP header
You can delegate user authentication to third-party systems (proxies/servers) using HTTP header authentication.
When this feature is activated, SonarQube expects that the authentication is handled prior to any query reaching the server. The tool that handles the authentication should:
- Intercept calls to the SonarQube server.
- Take care of the authentication.
- Update the HTTP request header with the relevant SonarQube user information.
- Re-route the request to SonarQube with the appropriate header information.
![](https://assets-eu-01.kc-usercontent.com:443/8521c997-5d3d-0101-b13b-9bd363344984/9faf202b-9cfd-4fc8-ad59-2c737a59686d/http-header-authentication.png?w=633&h=197&auto=format&fit=crop)
All the parameters required to activate and configure this feature are available in the SonarQube server configuration file. See the SSO AUTHENTICATION
section in <sonarqubeHome>/conf/sonar.properties
.
Using HTTP header authentication is an easy way to integrate your SonarQube deployment with an in-house SSO implementation.