Jenkins With SonarQube

Introduction

• In this section, we will try to integrate SonarQube into Jenkins pipeline for checking the quality of Spring Boot project when there are new commits.
• If you have not known about Jenkins, SonarQube or how to integrate your Spring Boot project with SonarQube. I will recommend read posts below:
  • Docker With Jenkins
  • Docker With SonarQube
  • Spring Boot With SonarQube
  • Jenkins For Building SpringBoot

SonarQube Configuration

• Firstly, you should access Sonarqube server. Then go to Administration --> Security --> Permission Template and check the checkbox for Execute Analysis for your Sonarqube account that you will use on Jenkins.
• So for this configuration, the user will have permission to execute sonar analysis when we use this user on Jenkins Server.

• Next you go to My Account --> Security and generate a Token as below. So this Token will be used for accessing SonarQube Server instead of using username/password.

• You can try this token by replacing the username/password in pom.xml of your Spring Boot project.

.....

<profiles>
        <profile>
                <id>dev</id>
                <properties>
                        <activeatedProperties>dev</activeatedProperties>
                        <sonar.host.url>http://localhost:9000</sonar.host.url>
                        <sonar.login>9da54180b98f2667d0858dd18ccdb79014bfd79f</sonar.login>
                </properties>
                <activation>
                        <activeByDefault>true</activeByDefault>
                </activation>
        </profile>
</profiles>

• Next, you should go to Administration -> Configuration -> WebHooks and click Create button. Then add some information as Name and URL.
• Note: the URL has format like {JENKINS SERVER}/sonarqube-webhook/. For exmaple: your Jenkins Server is running at http://192.168.1.18:8081 so the URL should be http://192.168.1.18:8081/sonarqube-webhook/.
• Note: On Jenkins Server we have to add plugin Sonarqube Scanner which will do in the Step JENKINS CONFIGURATION below, then the URL above will be available.

Jenkins Configuration

• First, let’s go to Manage Jenkins -> Manage Plugins -> Then choose tag Available and find SonarQube Scanner -> then click Install

• Next, go to the Manage Jenkins -> Global Tool Configuration -> scroll down to tag SonarQube Scanner and fill some information as below:

• Next, go to Manage Jenkins -> Configure System -> scroll down to tag SonarQube servers and fill some information as Name, URL of sonarqube server.

• Then at step Server authentication token, let's choose button Add to add the SonarQube Token

• Let's choose Secret Text, put your SonarQube Token, add a description and click add button.

• Now, at step Server authentication token you can choose your SonarQube Token as the image below.

• Finally, let's create/update your Jenkinsfile in your project as below.

pipeline {
    agent any
    tools {
        maven 'Maven 3.8.6'
        jdk 'JDK8'
    }
    stages {
        stage('Build') {
            steps {
                sh 'printenv'
                sh 'ls -la'
                sh 'mvn clean install -DskipTests'
            }
        }
        stage("Run Test") {
            steps {
              sh 'mvn test'
            }
        }
        stage("SonarQube Analysis") {
            steps {
              withSonarQubeEnv('SonarQube-Scanner') {
                sh 'mvn clean package sonar:sonar'
              }
            }
        }
        stage("Quality Gate") {
            steps {
              timeout(time: 1, unit: 'HOURS') {
                waitForQualityGate abortPipeline: true
              }
            }
        }
    }
}

Testing

• Finally, commit and push the Jenkinfile in your repository then go to Jenkins server to check the build result.

• So, that’s it. Thanks and Good luck!

See Also

• Docker With Jenkins
• Docker With SonarQube
• Spring Boot With SonarQube
• Jenkins For Building SpringBoot