9.8 | Instance administration | Authentication | HTTP header

HTTP header

You can delegate user authentication to third-party systems (proxies/servers) using HTTP header authentication.

When this feature is activated, SonarQube expects that the authentication is handled prior to any query reaching the server. The tool that handles the authentication should:

  • Intercept calls to the SonarQube server.
  • Take care of the authentication.
  • Update the HTTP request header with the relevant SonarQube user information.
  • Re-route the request to SonarQube with the appropriate header information.

All the parameters required to activate and configure this feature are available in the SonarQube server configuration file. See the SSO AUTHENTICATION section in <SONARQUBE_HOME>/conf/sonar.properties.

Using HTTP header authentication is an easy way to integrate your SonarQube deployment with an in-house SSO implementation.

© 2008-2023, SonarSource S.A, Switzerland. Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution-NonCommercial 3.0 United States License. SONARQUBE is a trademark of SonarSource SA. All other trademarks and copyrights are the property of their respective owners.

Creative Commons License