Fix sonar configuration

Author: pascalgrimaud

.github/workflows/github-actions.yml

@@ -32,27 +32,15 @@ jobs:
       - name: 'Prettier: check'
         run: npm run prettier:check
       - name: 'Start local Sonar'
-        run: docker compose -f src/main/docker/sonar.yml up -d
-      - name: 'Wait for SonarQube to be ready'
         run: |
-          echo 'Waiting for SonarQube to start...'
-          for attempt in {1..30}; do
-            if [ "$(curl -s -o /dev/null -w '%{http_code}' http://localhost:9001/api/system/status)" -eq 200 ] && \
-               curl -s http://localhost:9001/api/system/status | jq -e '.status == "UP"' > /dev/null; then
-              echo "SonarQube is UP"
-              break
-            fi
-            echo "Waiting for SonarQube... ($attempt/30)"
-            sleep 10
-          done
-          if [ $attempt -eq 30 ]; then
-            echo 'SonarQube did not become ready in time. Exiting.'
-            exit 1
-          fi
+          docker compose -f src/main/docker/sonar.yml up -d \
+            && docker logs -f sonar-token && SONAR_TOKEN=$(docker logs sonar-token)
+          docker ps -a
       - name: 'Test: run tests'
         run: |
+          SONAR_TOKEN=$(docker logs sonar-token)
           chmod +x mvnw
-          ./mvnw clean verify -Dsonar.qualitygate.wait=true sonar:sonar
+          ./mvnw clean verify -Dsonar.qualitygate.wait=true sonar:sonar -Dsonar.token=$SONAR_TOKEN
       - name: 'Analysis: local Sonar'
         run: |
           chmod +x tests-ci/sonar.sh

src/main/docker/sonar.yml

@@ -1,9 +1,8 @@
 # This configuration is intended for development purpose, it's **your** responsibility to harden it for production
 services:
   sonar:
-    image: sonarqube:10.7.0-community
+    image: sonarqube:25.9.0.112764-community
     container_name: sonar
-    platform: linux/x86_64
     # Authentication is turned off for out of the box experience while trying out SonarQube
     # For real use cases delete sonar.forceAuthentication variable or set sonar.forceAuthentication=true
     environment:
@@ -12,3 +11,12 @@ services:
     # remove the "127.0.0.1:" prefix
     ports:
       - '127.0.0.1:9001:9000'
+  sonar-token:
+    build:
+      context: .
+      dockerfile: sonar/Dockerfile
+    container_name: sonar-token
+    environment:
+      - SEED4J_SONAR_URL=http://sonar:9000
+    depends_on:
+      - sonar

src/main/docker/sonar/Dockerfile

@@ -0,0 +1,16 @@
+FROM ubuntu:24.04
+RUN \
+  apt update && \
+  apt --no-install-recommends install -y curl jq && \
+  groupadd seed4j && \
+  useradd seed4j -s /bin/bash -m -g seed4j -G sudo && \
+  echo 'seed4j:seed4j'|chpasswd && \
+  apt clean
+ENV \
+  SEED4J_SONAR_URL=http://sonar:9000 \
+  SEED4J_SONAR_PASSWORD=Seed4J-1339-Project \
+  SEED4J_SONAR_TOKENNAME=seed4jtoken
+COPY sonar/sonar_generate_token.sh /usr/local/bin/sonar_generate_token
+RUN chmod 755 /usr/local/bin/sonar_generate_token
+USER seed4j
+CMD ["sonar_generate_token"]

src/main/docker/sonar/sonar_generate_token.sh

@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+
+until [ "$(curl -s $SEED4J_SONAR_URL/api/system/status | jq -r .status)" = "UP" ]; do
+  sleep 5
+done
+
+curl -sS -u admin:admin -X POST \
+  "$SEED4J_SONAR_URL/api/users/change_password" \
+  -d "login=admin&previousPassword=admin&password=$SEED4J_SONAR_PASSWORD"
+
+SONAR_TOKEN=$(curl -sS -u admin:$SEED4J_SONAR_PASSWORD -X POST "$SEED4J_SONAR_URL/api/user_tokens/generate" -d "name=$SEED4J_SONAR_TOKENNAME" | jq -r .token)
+echo $SONAR_TOKEN

tests-ci/sonar.sh

@@ -2,8 +2,8 @@
 
 application=$1
 if [[ $application == '' ]]; then
-  echo "using jhliteExtensionSample by default"
-  application='jhliteExtensionSample'
+  echo "using seed4jSampleExtension by default"
+  application='seed4jSampleExtension'
 fi
 
 retry_count=0