mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
30740 Commits
59 Branches
Tree: 7796bdbc52
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '7796bdbc52'
${ noResults }
sonarqube/server/sonar-docs/src/pages/setup/install-server.md

install-server.md 14KB
Raw Normal View History

Port remaining SONAR space docs
5 years ago
SONAR-13691 Update the landing page and move Architecture and Integration info
3 years ago
Port remaining SONAR space docs
5 years ago
DOCS update 2 min guide to Try Out SonarQube
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS Collapse various Database Platforms on Install the Server page
4 years ago
DOCS Update information for SQL Server Integrated Authentication
3 years ago
DOCS Collapse various Database Platforms on Install the Server page
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS update 2 min guide to Try Out SonarQube
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS make "don't run as root" more explicit
5 years ago
Port remaining SONAR space docs
5 years ago
DOCS update 2 min guide to Try Out SonarQube
4 years ago
Port remaining SONAR space docs
5 years ago
Update install-server.md Updated installation documentation to still show an example of a "customized" web host IP without the example being a non-RFC-1918 address to avoid any users accidentally referencing and using that IP address since per best practice security you would never want to be running a server or the service directly on the edge.
3 years ago
Port remaining SONAR space docs
5 years ago
DOCS Fix/Split shell paths on Install the Server Docs
3 years ago
DOCS Remove reference to extra Windows arch
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS Change title of section for adjusting java install
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS Change title of section for adjusting java install
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS Simply Java Configuration Docs
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS update 2 min guide to Try Out SonarQube
4 years ago
SONAR-13091 update docs to officially support Docker
4 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13831 Remove references to languages plugins in the documentation
3 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13892 Add Docker compose yml file to install docs
3 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
Add warning againt the use of bind mounts (#2681) * Add warning againt the use of bind mounts Discuss thread here: https://discuss.sonarsource.com/t/docker-volume-for-the-extension-folder/4476 * Update install-server.md Apply @MikeBirnstiehl suggested simpler and clearer phrasing
4 years ago
SONAR-13892 Add Docker compose yml file to install docs
3 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13901 update Oracle installation docs
4 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13901 update Oracle installation docs
4 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13901 update Oracle installation docs
4 years ago
SONAR-13831 Remove references to languages plugins in the documentation
3 years ago
SONAR-13901 update Oracle installation docs
4 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13901 update Oracle installation docs
4 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13892 Add Docker compose yml file to install docs
3 years ago
DOCS Replace docker image reference with latest
3 years ago
SONAR-13892 Add Docker compose yml file to install docs
3 years ago
SONAR-13091 Update Docker upgrade docs
4 years ago
SONAR-13091 update docs to officially support Docker
4 years ago
Port remaining SONAR space docs
5 years ago
SONAR-13212 Remove JGit version on SCM Docs
4 years ago
Port remaining SONAR space docs
5 years ago
DOCS make "don't run as root" more explicit
5 years ago
[DOCS] documented dns caching policy * documented dns caching policy
3 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341 
  1. ---

  2. title: Install the Server

  3. url: /setup/install-server/

  4. ---

  5. 

  6. ## Overview

  7. 

  8. This section describes a single-node SonarQube instance. For details on clustered setup, see [Install the Server as a Cluster](/setup/install-cluster/).

  9. 

  10. ### Instance components

  11. 

  12. A SonarQube instance comprises three components:

  13. 

  14. ![SonarQube Instance Components](/images/SQ-instance-components.png)

  15. 

  16. 1. The SonarQube server running the following processes:

  17. 	- a web server that serves the SonarQube user interface.

  18. 	- a search server based on Elasticsearch.

  19. 	- the compute engine in charge of processing code analysis reports and saving them in the SonarQube database.

  20. 

  21. 2. The database to store the following:

  22. 	- Metrics and issues for code quality and security generated during code scans.

  23. 	- The SonarQube instance configuration.

  24. 

  25. 3. One or more scanners running on your build or continuous integration servers to analyze projects.

  26. 

  27. ### Hosts and locations

  28. 

  29. For optimal performance, the SonarQube server and database should be installed on separate hosts, and the server host should be dedicated. The server and database hosts should be located in the same network.

  30. 

  31. All hosts must be time-synchronized.

  32. 

  33. ## Installing the database

  34. 

  35. Several [database engines](/requirements/requirements/) are supported. Be sure to follow the requirements listed for your database. They are real requirements not recommendations.

  36. 

  37. Create an empty schema and a `sonarqube` user. Grant this `sonarqube` user permissions to `create`, `update`, and `delete` objects for this schema.

  38. 

  39. [[collapse]]

  40. | ## Microsoft SQL Server

  41. |

  42. |[[warning]]

  43. || Collation **MUST** be case-sensitive (CS) and accent-sensitive (AS).  

  44. || `READ_COMMITED_SNAPSHOT` **MUST** be set on the SonarQube database.

  45. |

  46. |MS SQL database's shared lock strategy may impact SonarQube runtime. Making sure that `is_read_committed_snapshot_on` is set to `true` to prevent SonarQube from facing potential deadlocks under heavy loads. 

  47. |

  48. |Example of query to check `is_read_committed_snapshot_on`:

  49. |```

  50. |SELECT is_read_committed_snapshot_on FROM sys.databases WHERE name='YourSonarQubeDatabase';

  51. |```

  52. |Example of query to update `is_read_committed_snapshot_on`:

  53. |```

  54. |ALTER DATABASE YourSonarQubeDatabase SET READ_COMMITTED_SNAPSHOT ON WITH ROLLBACK IMMEDIATE;

  55. |```

  56. |### Integrated Security

  57. |

  58. |To use integrated security: 

  59. |

  60. |1. Download the [Microsoft SQL JDBC Driver 9.2.0 package](https://docs.microsoft.com/en-us/sql/connect/jdbc/release-notes-for-the-jdbc-driver?view=sql-server-ver15#92) and copy `mssql-jdbc_auth-9.2.0.x64.dll` to any folder in your path. 

  61. |

  62. |2. **If you're running SonarQube as a Windows service,** make sure the Windows account under which the service is running has permission to connect your SQL server. The account should have `db_owner` database role membership. 

  63. |

  64. |	**If you're running the SonarQube server from a command prompt,** the user under which the command prompt is running should have `db_owner` database role membership. 

  65. |

  66. |3. Ensure that `sonar.jdbc.username` or `sonar.jdbc.password` properties are commented out or SonarQube will use SQL authentication.

  67. |

  68. |```

  69. |sonar.jdbc.url=jdbc:sqlserver://localhost;databaseName=sonar;integratedSecurity=true

  70. |```

  71. |

  72. |### SQL Authentication

  73. |

  74. |To use SQL Authentication, use the following connection string. Also ensure that `sonar.jdbc.username` and `sonar.jdbc.password` are set appropriately:

  75. |

  76. |```

  77. |sonar.jdbc.url=jdbc:sqlserver://localhost;databaseName=sonar

  78. |sonar.jdbc.username=sonarqube

  79. |sonar.jdbc.password=mypassword

  80. |```

  81. 

  82. [[collapse]]

  83. | ## Oracle

  84. |

  85. |If there are two SonarQube schemas on the same Oracle instance, especially if they are for two different versions, SonarQube gets confused and picks the first it finds. To avoid this issue:

  86. |

  87. |- Either privileges associated to the SonarQube Oracle user should be decreased

  88. |- Or a trigger should be defined on the Oracle side to automatically alter the SonarQube Oracle user session when establishing a new connection:

  89. |

  90. |[[warning]]

  91. || Oracle JDBC driver versions 12.1.0.1 and 12.1.0.2 have major bugs, and are not recommended for use with the SonarQube ([see more details](https://groups.google.com/forum/#!msg/sonarqube/Ahqt1iarqJg/u0BVRJZnBQAJ)).

  92. 

  93. [[collapse]]

  94. | ## PostgreSQL

  95. |

  96. |If you want to use a custom schema and not the default "public" one, the PostgreSQL `search_path` property must be set:

  97. |

  98. |```

  99. |ALTER USER mySonarUser SET search_path to mySonarQubeSchema

  100. |```

  101. 

  102. ## Installing SonarQube from the ZIP file

  103. 

  104. First, check the [requirements](/requirements/requirements/). Then download and unzip the [distribution](http://www.sonarqube.org/downloads/) (do not unzip into a directory starting with a digit). 

  105. 

  106. SonarQube cannot be run as `root` on Unix-based systems, so create a dedicated user account for SonarQube if necessary.

  107. 

  108. _$SONARQUBE-HOME_ (below) refers to the path to the directory where the SonarQube distribution has been unzipped.

  109. 

  110. ### Setting the Access to the Database

  111. 

  112. Edit _$SONARQUBE-HOME/conf/sonar.properties_ to configure the database settings. Templates are available for every supported database. Just uncomment and configure the template you need and comment out the lines dedicated to H2:

  113. 

  114. ```

  115. Example for PostgreSQL

  116. sonar.jdbc.username=sonarqube

  117. sonar.jdbc.password=mypassword

  118. sonar.jdbc.url=jdbc:postgresql://localhost/sonarqube

  119. ```

  120. 

  121. ### Adding the JDBC Driver

  122. 

  123. Drivers for the supported databases (except Oracle) are already provided. Do not replace the provided drivers; they are the only ones supported.

  124. 

  125. For Oracle, copy the JDBC driver into _$SONARQUBE-HOME/extensions/jdbc-driver/oracle_.

  126. 

  127. ### Configuring the Elasticsearch storage path

  128. 

  129. By default, Elasticsearch data is stored in _$SONARQUBE-HOME/data_, but this is not recommended for production instances. Instead, you should store this data elsewhere, ideally in a dedicated volume with fast I/O. Beyond maintaining acceptable performance, doing so will also ease the upgrade of SonarQube.

  130. 

  131. Edit _$SONARQUBE-HOME/conf/sonar.properties_ to configure the following settings:

  132. 

  133. ```

  134. sonar.path.data=/var/sonarqube/data

  135. sonar.path.temp=/var/sonarqube/temp

  136. ```

  137. 

  138. The user used to launch SonarQube must have read and write access to those directories.

  139. 

  140. ### Starting the Web Server

  141. 

  142. The default port is "9000" and the context path is "/". These values can be changed in _$SONARQUBE-HOME/conf/sonar.properties_:

  143. 

  144. ```

  145. sonar.web.host=192.168.0.1

  146. sonar.web.port=80

  147. sonar.web.context=/sonarqube

  148. ```

  149. 

  150. Execute the following script to start the server:

  151. 

  152. - On Linux: bin/linux-x86-64/sonar.sh start

  153. - On macOS: bin/macosx-universal-64/sonar.sh start

  154. - On Windows: bin/windows-x86-64/StartSonar.bat

  155. 

  156. You can now browse SonarQube at _http://localhost:9000_ (the default System administrator credentials are `admin`/`admin`).

  157. 

  158. ### Adjusting the Java Installation

  159. 

  160. If there are multiple versions of Java installed on your server, you may need to explicitly define which version of Java is used.

  161. 

  162. To change the Java JVM used by SonarQube, edit _$SONARQUBE-HOME/conf/wrapper.conf_ and update the following line:

  163. 

  164. ```

  165. wrapper.java.command=/path/to/my/jdk/bin/java

  166. ```

  167. 

  168. ### Advanced Installation Features

  169. 

  170. - Running SonarQube as a Service on [Windows](/setup/operate-server/) or [Linux](/setup/operate-server/)

  171. - Running SonarQube [behind a Proxy](/setup/operate-server/)

  172. - Monitoring and adjusting [Java Process Memory](/instance-administration/monitoring/)

  173. 

  174. ## Installing SonarQube from the Docker Image

  175. 

  176. See your SonarQube version below for instructions on installing the server from a Docker image.

  177. 

  178. ### SonarQube 8.2+

  179. 

  180. Follow these steps for your first installation:

  181. 

  182. 1.	Creating the following volumes helps prevent the loss of information when updating to a new version or upgrading to a higher edition:

  183. 	- `sonarqube_data` – contains data files, such as the embedded H2 database and Elasticsearch indexes

  184. 	- `sonarqube_logs` – contains SonarQube logs about access, web process, CE process, and Elasticsearch

  185. 	- `sonarqube_extensions` – will contain any plugins you install and the Oracle JDBC driver if necessary.

  186. 	

  187. 	Create the volumes with the following commands:

  188. 	```bash

  189. 	$> docker volume create --name sonarqube_data

  190. 	$> docker volume create --name sonarqube_logs

  191. 	$> docker volume create --name sonarqube_extensions

  192. 	``` 

  193. 	[[warning]]

  194.     | Make sure you're using [volumes](https://docs.docker.com/storage/volumes/) as shown with the above commands, and not [bind mounts](https://docs.docker.com/storage/bind-mounts/). Using bind mounts prevents plugins from populating correctly.

  195. 

  196. 2. Drivers for supported databases (except Oracle) are already provided. If you're using an Oracle database, you need to add the JDBC driver to the `sonar_extensions` volume. To do this:

  197. 

  198. 	a. Start the SonarQube container with the embedded H2 database:

  199.    

  200.     ```

  201. 	$ docker run --rm \

  202. 		-p 9000:9000 \

  203. 		-v sonarqube_extensions:/opt/sonarqube/extensions \

  204. 		<image_name>

  205. 	```

  206. 	

  207. 	b. Exit once SonarQube has started properly. 

  208.    

  209. 	c. Copy the Oracle JDBC driver into `sonarqube_extensions/jdbc-driver/oracle`.

  210.    

  211. 3. Run the image with your database properties defined using the -e environment variable flag:

  212. 

  213. 	```bash

  214. 	$> docker run -d --name sonarqube \

  215. 		-p 9000:9000 \

  216. 		-e SONAR_JDBC_URL=... \

  217. 		-e SONAR_JDBC_USERNAME=... \

  218. 		-e SONAR_JDBC_PASSWORD=... \

  219. 		-v sonarqube_data:/opt/sonarqube/data \

  220. 		-v sonarqube_extensions:/opt/sonarqube/extensions \

  221. 		-v sonarqube_logs:/opt/sonarqube/logs \

  222. 		<image_name>

  223. 	```

  224. 	

  225. 	For more configuration environment variables, see the [Docker Environment Variables](/setup/environment-variables/).

  226. 	

  227. 	[[warning]]

  228.     | Use of the environment variables `SONARQUBE_JDBC_USERNAME`, `SONARQUBE_JDBC_PASSWORD`, and `SONARQUBE_JDBC_URL` is deprecated and will stop working in future releases.

  229. 

  230. ####**Example Docker Compose configuration**

  231. If you're using [Docker Compose](https://docs.docker.com/compose/), use the following example as a reference when configuring your `.yml` file. Click the heading below to expand the `.yml` file.

  232. 

  233. [[collapse]]

  234. | ## Docker Compose .yml file example

  235. |

  236. | ```

  237. | version: "3"

  238. | 

  239. | services:

  240. |   sonarqube:

  241. |     image: sonarqube:community

  242. |     depends_on:

  243. |       - db

  244. |     environment:

  245. |       SONAR_JDBC_URL: jdbc:postgresql://db:5432/sonar

  246. |       SONAR_JDBC_USERNAME: sonar

  247. |       SONAR_JDBC_PASSWORD: sonar

  248. |     volumes:

  249. |       - sonarqube_data:/opt/sonarqube/data

  250. |       - sonarqube_extensions:/opt/sonarqube/extensions

  251. |       - sonarqube_logs:/opt/sonarqube/logs

  252. |     ports:

  253. |       - "9000:9000"

  254. |   db:

  255. |     image: postgres:12

  256. |     environment:

  257. |       POSTGRES_USER: sonar

  258. |       POSTGRES_PASSWORD: sonar

  259. |     volumes:

  260. |       - postgresql:/var/lib/postgresql

  261. |       - postgresql_data:/var/lib/postgresql/data

  262. | 

  263. | volumes:

  264. |   sonarqube_data:

  265. |   sonarqube_extensions:

  266. |   sonarqube_logs:

  267. |   postgresql:

  268. |   postgresql_data:

  269. | ```

  270. 

  271. ### SonarQube 7.9.x LTS

  272. 

  273.  Follow these steps for your first installation:

  274. 

  275.  1.	Create volumes `sonarqube_conf`, `sonarqube_data`, `sonarqube_logs`, and `sonarqube_extensions` and start the image with the following command. This will populate all the volumes (copying default plugins, create the Elasticsearch data folder, create the sonar.properties configuration file). Watch the logs, and, once the container is properly started, you can force-exit (ctrl+c) and proceed to the next step.

  276. 

  277. 	```console

  278. 	$ docker run --rm \

  279. 	    -p 9000:9000 \

  280. 	    -v sonarqube_conf:/opt/sonarqube/conf \

  281. 	    -v sonarqube_extensions:/opt/sonarqube/extensions \

  282. 	    -v sonarqube_logs:/opt/sonarqube/logs \

  283. 	    -v sonarqube_data:/opt/sonarqube/data \

  284. 	    <image_name>

  285. 	```

  286. 

  287. 2.	Configure sonar.properties if needed. Please note that due to [SONAR-12501](https://jira.sonarsource.com/browse/SONAR-12501), providing `sonar.jdbc.url`, `sonar.jdbc.username`, `sonar.jdbc.password` and `sonar.web.javaAdditionalOpts` in `sonar.properties` is not working, and you will need to explicitly define theses values in the docker run command with the `-e` flag.

  288. 

  289. 	```plain

  290. 	#Example for PostgreSQL

  291. 	-e sonar.jdbc.url=jdbc:postgresql://localhost/sonarqube

  292. 	```

  293. 

  294. [[info]]

  295. | Drivers for supported databases (except Oracle) are already provided. Do not replace the provided drivers; they are the only ones supported. For Oracle, you need to copy the JDBC driver into `$SONARQUBE_HOME/extensions/jdbc-driver/oracle`.

  296. 

  297. 3.	Run the image with your JDBC username and password :

  298. 

  299. 	```console

  300. 	$ docker run -d --name sonarqube \

  301. 	    -p 9000:9000 \

  302. 		-e sonar.jdbc.url=... \

  303. 	    -e sonar.jdbc.username=... \

  304. 	    -e sonar.jdbc.password=... \

  305. 	    -v sonarqube_conf:/opt/sonarqube/conf \

  306. 	    -v sonarqube_extensions:/opt/sonarqube/extensions \

  307. 	    -v sonarqube_logs:/opt/sonarqube/logs \

  308. 	    -v sonarqube_data:/opt/sonarqube/data \

  309. 	    <image_name>

  310. 	```

  311. 

  312. ## Next Steps

  313. 

  314. Once your server is installed and running, you may also want to [Install Plugins](/setup/install-plugin/). Then you're ready to begin [Analyzing Source Code](/analysis/overview/).

  315. 

  316. ## Troubleshooting/FAQ

  317. 

  318. ### Failed to connect to the Marketplace via proxy

  319. 

  320. Double check that settings for proxy are correctly set in `$SONARQUBE_HOME/conf/sonar.properties`.

  321. Note that if your proxy username contains a backslash, then it should be escaped - for example username "domain\user" in file should look like:

  322. 

  323. ```

  324. http.proxyUser=domain\\user

  325. ```

  326. 

  327. For some proxies, the exception "java.net.ProtocolException: Server redirected too many times" might mean an incorrect username or password has been configured.

  328. 

  329. ### Exception java.lang.RuntimeException: can not run elasticsearch as root

  330. 

  331. SonarQube starts an Elasticsearch process, and the same account that is running SonarQube itself will be used for the Elasticsearch process. Since Elasticsearch cannot be run as `root`, that means SonarQube can't be either. You must choose some other, non-`root` account with which to run SonarQube, preferably an account dedicated to the purpose.

  332. 

  333. ### Sonarqube fails to decorate merge requests when DNS entry to ALM changes

  334. 

  335. If you run SonarQube in an environment with a lot of DNS friction, you should define a DNS cache time to live policy as, by default, SonarQube will hold the DNS cache until it is restarted. You can set this policy to five seconds by doing the following: 

  336. 

  337. ```bash

  338. echo "networkaddress.cache.ttl=5" >> "${JAVA_HOME}/conf/security/java.security" 

  339. ```

  340. 

  341. Please be aware that this increases the risk of DNS spoofing attacks.