search

SonarQube Server Integration

The Oobeya–Sonar Integration connects SonarQube Server and SonarQube Cloud with Oobeya’s Engineering Intelligence Platform, turning code quality and security data into actionable insights.

Delivering high-quality software requires continuous attention to code reliability, security, and maintainability. By integrating SonarQube Serverarrow-up-right with Oobeyaarrow-up-right, your teams gain end-to-end visibility into code quality, technical debt, and maintainability trends — all in one place.

hashtag
1. Generate a SonarQube Server User Token

A User Token allows Oobeya to connect to your SonarQube Server instance and retrieve project data securely.

circle-info

The token creation process has been updated. For the official reference, see: Generating and Using Tokensarrow-up-right

hashtag
Steps:

  1. Log in to your SonarQube Server account.

  2. Click your user avatar (top-right corner) → select My Account → open the Security tab.

  3. Under Generate Tokens, enter a token name (e.g., oobeya-integration).

  4. Select "User Token" as token type.

  5. Click Generate.

  6. Copy and store the token securely — it’s shown only once.

circle-info

The token should belong to a user with at least Browse access to all relevant projects. For organization-wide visibility, use a user account with Admin permissions.

Generating a new user token

hashtag
2. Install the SonarQube Add-on in Oobeya

  1. Log in to Oobeya with an Administrator account.

  2. Navigate to Integrations.

  3. Locate SonarQube and click Install.

Sonarqube Integration

Once installed, the SonarQube connector becomes available in your Data Sources list.

hashtag
3. Add a SonarQube Data Source

  1. Go to Data Sources → SonarQube.

  2. Click New Data Source.

  3. Fill out the form:

    • Name: (e.g., SonarQube – Production)

    • Base URL: Your SonarQube server address (e.g., https://sonar.company.com)

    • User Token: Paste the token you generated earlier

  4. Click Test Connection to verify access.

Adding a new Sonarqube data source

hashtag
4. Explore Your Code Quality Insights

After integration, Oobeya continuously imports your SonarQube metrics, including:

  • Code Quality Issues (Bugs, Vulnerabilities, Code Smells)

  • Quality Gate Status

  • Technical Debt

  • Maintainability, Reliability, and Security Ratings

You can explore this data in:

  • Dashboards — for overall visibility

Improved visibility and ownership for better code quality and security

  • Organizational, Team, and Individual Scorecards — to track trends and KPIs

Sonarqube metrics in Team Scorecards

  • Engineering Insights / Symptoms — to proactively detect unhealthy code practices - learn more here.

Code Quality Insights: Auto-detected Symptoms
Leveraging gamification to improve code quality

hashtag
5. Troubleshooting

If your connection test fails or data is missing, review the following checks:

Issue
Possible Cause
Solution

401 Unauthorized

Invalid or expired token

Regenerate a valid User Token and update the Data Source.

Connection Timeout

Firewall or proxy blocking requests

Ensure outbound access to your SonarQube server from Oobeya’s network.

No Projects Found

Token lacks permissions

Verify the token user has project “Browse” or “Admin” permissions.

SSL Error

Invalid SSL certificate

Use a valid SSL certificate or enable trusted certificate configuration.

Data Outdated

Sync delay or rate limit

Trigger a manual re-sync or check your SonarQube server performance.

💬 Still need help? Contact Oobeya Support or reach out to your Customer Success Manager.

hashtag
Summary: Connect in 5 Steps

Step
Action
Result

1

Generate a User Token in SonarQube

Secure authentication

2

Install the SonarQube Add-on in Oobeya

Enable integration

3

Add a Data Source

Connect Oobeya to your SonarQube server

4

View Dashboards and Scorecards

Monitor real-time code quality

PreviousQuality & SecurityNextSonarQube Cloud Integration

Last updated