Sonar- Grant and revoke project-level permissions for mentioned projects - sonarqube

I have Sonar installed in my machine and integrated with Jenkins.There are around 30 projects and to view detail info of each project I use same admin credentials.I am looking for steps which can help me in below.
1- How can I create a user credentials so that the user can see few projects out of 30 under sonar.
2- I have created a new user like below.
Created Different Users
Under each project I have assigned Users and Groups

Related

How can I easily add others to update my G Suite App listing?

I've looked all over the admin console, but can't find where to add other users so that they can edit our listing. Can you please provide a URL/link to where I should navigate?
You may want to check this support page. You can:
assign pre-built roles for performing common business tasks
assign custom roles you create for your organization
assign more than one role to a user to grant all privileges in those roles
Be noted that you must be signed in as a super administrator for this task.
The user typically gets their new privileges within a few minutes. However, it can take up to 24 hours. When they sign in to their account, they arrive at the Admin console dashboard. Here they see the controls allowed by their privileges.
Hope this helps!
I think you want to navigate to this URL while logged in as the app project owner:
https://console.cloud.google.com/iam-admin/iam/project?project=(add your project ID)
And assign roles to different users or groups.
you can use group publishing on the gsuite marketplace:
Set up Group Publishing
You can share ownership of your items in Google Chrome Web Store with other developers by setting up group publishing. With group publishing, you can add developers to a Google Group, who can then act on your behalf. They'll have access to all the items you own and can make any changes to them that you can make.
https://developer.chrome.com/webstore/publish#set-up-group-publishing
(each member of the group should pay the 5$ developer fee though.)
You can configure the group from your webstore dashboard.
https://chrome.google.com/webstore/developer/dashboard

Create users with only view privilege in TeamCity

I am the administartor of TeamCity 9.0 which is my continuous integration server. I have added many users for different projects. They have the permission to manually trigger the build, but they cannot edit the configurations.
Now , I need to add a user so that the user can view the Web UI and get the logs etc ; but he must not be able to trigger the build. In short, the run button in the Web UI should not work for that user or should be invisible. How can I achieve that? Please help me out.
In the default installation, the All Users group only has the Project viewer role associated with it, which only has the View project and all parent projects permission. You'll see the Project developer role by default has the Run build and Stop build permissions, and many more.
What does your permission set up look like, i.e. what group is the user assigned to and what roles are associated with that group.
You can get a sort of "effective permissions" overview for a user on the "Roles" tab of a user, this shows how the user is getting permission for which projects via the groups they are in.
TeamCity provides a built-in role, Project Viewer, that grants users read-only access to projects. You can also create your own roles with permissions tailored for your team. See Administration > User Management > Roles.
Click on Administration on top right corner. Under User Management on left side of the UI, click on Users. Click on the user you want. Under Roles tab select Assign Role. In the pop up select what privilege you want to give to that user for what project.
Check this link https://confluence.jetbrains.com/display/TCD9/Role+and+Permission for knowing about different types of users in TeamCity.

Sonarqube 4.5 provisioning / authorization

We are using Sonhrqube 4.5 that is integrated into Google's oAuth sign-on. There are no issues with logging in (Authentication). Certain users have been provisioned with sonar-administrators role. But for some reason, the admin role keeps dropping for some users (leaves the user with sonar-users role). We have tried granting them admin access again, but it keeps happening. Also tried creating a brand new group and assigning that group to the user, but still same thing happens. Any thoughts? If you need any other information, let me know.
Just additional info, not sure if it matters - We are using the sonar-oauth-plugin from JCERTIFLab for integration with Google's signon/oauth. This plugin automatically creates users with default role - sonar-users.
Thanks in advance!
It turned out to be an issue with the Sonar plugin used for integration with google's Oauth. Every time a user is authenticated, permissions get overwritten. To overcome the problem temporarily, we predefined a list of users with admin access in the properties file.

reg: Manage Dashboards link in Sonar

In Sonar version 3.4.1 a Manage Dashboards link is used for creating global and project dashboards from an admin ID. As a part of the security config setup, we can create new users. Manage dashboard link, however, is visible for new users we've just created.
So, I request your advice on is there are any options to hide the link from anyone except for the admin.
The "Manage dashboard" link that you see must remain always available: it allows a user to create a dashboard that willbe available only for him.

How to configure user for worklist application and human workflow?

I am new in SOA Suite and we are using SOA suite 11g. Please let me know how to configure user for human work flow and work-list application. I created simple users in weblogic realm. but how to set which user can be administrator or which user will be end user.
please refer some documents also.
Hi, thanks for suggesting, but I am so much confused. when creating a task in BPEL application we need to provider user information in assiginment tab. so here only those users listed they are in weblogic realm. but while creating user in weblogic I am not getting any option for making this user as administrator or end user. right now i have created user in weblogic and when I am creating task its getting in inbox of particular user also. but I need to verify this user can perform only end user roles. after this i want to create one more user say "ABC" as administrator. – Abhishek 6 hours ago
//adding comments
I am looking for, but when I am creating user in weblogic then only users are listing while creating Human task in my BPEL process. will you please tell me how to create users for worklist application. and the main problem is if I will create user in worklist and then how those user will be listed when creating Human Task.
just want to create two user , I will use them to login in work-list application, one for administration and one as a end user. All users what I am creating is showing administrative task tab. too much confused.
Thanks
Have you read this chapter of the developer guide :
http://download.oracle.com/docs/cd/E15523_01/integration.1111/e10224/bp_worklist.htm#BHADHGCF
Have a look at this section "28.8.1 How To Manage Other Users' or Groups' Rules (as an Administrator)" : http://download.oracle.com/docs/cd/E15523_01/integration.1111/e10224/bp_worklist.htm#insertedID8
Edit :
Here the real solution :
Just follow this : http://download.oracle.com/docs/cd/E15523_01/integration.1111/e10226/hwf_config.htm#insertedID7.
From the weblogic console, go to securityRealms | myRealms | users& group
Create a group , create your users, manage the users's group membership.
If I only set my new user in the new group, no administrative task tab is visible, but if I had the membership to the group labsupervisor, the tab is visible.
I know this is a bit old but i faced similar issue. Go to your domains config directory and add the ldap provider in the default jps context in jps-config.xml and it will work like charm :-)
<jpsContext name="default">
<serviceInstanceRef ref="credstore"/>
<serviceInstanceRef ref="keystore"/>
<serviceInstanceRef ref="policystore.xml"/>
<serviceInstanceRef ref="audit"/>
**<serviceInstanceRef ref="idstore.ldap"/>**
</jpsContext>
The properties for setting Managers can't be edited in the web console.
You need a LDAP client to connect the Weblogic's LDAP. There you will see the property "manager" for each user. Just add the DN of the user you want to be the manager for the selected user.
You can follow this tutorial:
http://jvzoggel.wordpress.com/2011/06/22/weblogic-embedded-ldap-with-an-external-ldap-client/

Resources