Grant the necessary privileges for the database with the command: Where password is a strong, unique password.Ĭreate the new sonarqube database with the command: Set a password for the new sonar user with the command:ĪLTER USER sonar WITH ENCRYPTED PASSWORD 'password' Log in to the PostgreSQL console with the command: Switch to the postgres user with the command:Ĭreate a new user for the SonarQube database with the command: You’ll be prompted to type and verify a new password for the database admin user. Set the PostgreSQL password with the command: Start and enable the database service with the commands: Sudo apt install postgresql postgresql-contrib -y Sudo sh -c 'echo "deb `lsb_release -cs`-pgdg main" > /etc/apt//pgdg.list' As PostgreSQL isn’t found in the standard repositories, we must add it.ĭownload and install the GPG key with the command:Ĭreate a new apt repository with the command: Sudo apt-get install openjdk-11-jdk -y How to install and configure PostgreSQLįor the database portion of SonarQube, we’ll use PostgreSQL (as they’ve deprecated support for MySQL). We’ll now install the OpenJDK dependency. Reboot your system so the changes will take effect. Open that file with the command:Īt the end of this file, add the following: Open the nf file for editing with the command:Īdd the following lines to the bottom of that file: The first thing we must do is make a few modifications to a couple of kernel system limits. The only things you’ll need to make this work are:Ī running instance of Ubuntu Server 20.04 SEE: Top cloud providers in 2020: AWS, Microsoft Azure, and Google Cloud, hybrid, SaaS players (TechRepublic) What you’ll need I’m going to walk you through the process of getting the community version of SonarQube up and running on Ubuntu Server 20.04. You can also check out the features for the paid versions of SonarQube from their version matrix. Static code analysis for 15 widely-used languages If you happen to have an on-premise Linux server, or a cloud account with the likes of AWS, Google Cloud, or Azure, handy, you can deploy the community edition of SonarQube for free. This web-based software does an outstanding job of empowering developers to write cleaner, safer code. You could always install a tool like SonarQube. SEE: Managing the multicloud (ZDNet/TechRepublic special feature) | Download the free PDF version (TechRepublic) When you’re constantly cranking out code for the likes of CI/CD, your production levels probably exceed your ability to run manual checks. If you only work on a single, small project, you might be able to get by with doing that the old-fashioned, manual way. If you’re a cloud-native developer (or any developer, for that matter), you might need a tool to analyze your code to help you locate security issues, bugs, vulnerabilities, smells, and general issues. Top 7 multicloud security solution providers for 2023ĮDM Council Survey: Management of Cloud Data Deployment is LackingĬloud platform spotlight: The top three contenders How Generative AI is a Game Changer for Cloud Security Image: iStock/relif Cloud: Must-read coverage Looking for a way to analyze your code to find issues and vulnerabilities? If so, Jack Wallen thinks SonarQube is exactly what you need. How to install the SonarQube code quality analyzer on Ubuntu Server 20.04
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |