Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sonar fails with 401 for non team-member PRs #3369

Open
zhumin8 opened this issue Nov 13, 2024 · 3 comments
Open

Sonar fails with 401 for non team-member PRs #3369

zhumin8 opened this issue Nov 13, 2024 · 3 comments
Labels
priority: p2 Moderately-important priority. Fix may not be included in next release. type: process A process-related concern. May include testing, release, or the like.

Comments

@zhumin8
Copy link
Contributor

zhumin8 commented Nov 13, 2024
edited
Loading

https://github.com/googleapis/sdk-platform-java/actions/runs/11821753764

Error:  Failed to execute goal org.sonarsource.scanner.maven:sonar-maven-plugin:5.0.0.4389:sonar (default-cli) on project gapic-generator-java-root: Error status returned by url [https://api.sonarcloud.io/analysis/jres?os=linux&arch=x86_64]: 401 -> [Help 1]

similar issue saw in GoogleCloudPlatform/spring-cloud-gcp#3376
@zhumin8 zhumin8 added type: process A process-related concern. May include testing, release, or the like. priority: p2 Moderately-important priority. Fix may not be included in next release. labels Nov 13, 2024
@zhumin8
Copy link
Contributor Author

zhumin8 commented Nov 13, 2024

later runs of sonar workflow has no issue:
https://github.com/googleapis/sdk-platform-java/actions/runs/11823259150
Maybe flaky?

@zhumin8 zhumin8 changed the title snoar fails with 401 flaky: sonar fails with 401 Nov 13, 2024
@jinseopkim0
Copy link
Contributor

SonarCloud Build / Build (pull_request) failed for the same reason for all renovate bot PRs for sdk-platform-java.
e.g.
#3285

https://api.sonarcloud.io/analysis/jres?os=linux&arch=x86_64 in the error message links to a page with the following message:
{"Message": "User is not authorized to access this resource with an explicit deny"}

@zhumin8 zhumin8 mentioned this issue Dec 10, 2024
Closed
@zhumin8
Copy link
Contributor Author

zhumin8 commented Jan 7, 2025
edited
Loading

I think these sonar failures may not be flaky, but rather as @jinseopkim0 pointed out is related to access setup.
Observed that all renovate bot PRs fail on 401, also on PRs raised by non team member. e.g. https://github.com/googleapis/sdk-platform-java/actions/runs/12643422744/job/35229377267

Not sure if there are security concerns around this setup.

@zhumin8 zhumin8 changed the title flaky: sonar fails with 401 Sonar fails with 401 for non team-member PRs Jan 7, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
priority: p2 Moderately-important priority. Fix may not be included in next release. type: process A process-related concern. May include testing, release, or the like.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zhumin8 @jinseopkim0