42

I have installed Sonar 3.5.1 and want to disable anonymous users access to the web console. I went to Security page and deleted Anyone from users and codeviewers roles. However, when I visit the web console without authentication I am still able to see "Welcome to Sonar Dashboard" page, whereas I expected to be redirected to the login page.

Is it possible to completely disallow unauthenticated users to see any content except the login page?

Roman Kh
  • 2,708
  • 2
  • 18
  • 16

1 Answers1

77

You can set the "sonar.forceAuthentication" to "true" in the web admin interface:

Administration > Configuration > General Settings > Security

See http://docs.sonarqube.org/display/SONAR/Authentication for more details.

user11153
  • 8,536
  • 5
  • 47
  • 50
Fabrice - SonarSource Team
  • 26,535
  • 3
  • 62
  • 58