Understanding token types in SonarQube Server

Time to complete icon 5 minutes to complete

Overview

This course explains the different types of tokens in SonarQube and how they're used for authentication and automation. You'll learn how these secure, string-based credentials function as digital keys for various SonarQube interactions, including running analyses and using Web API.

Learning objectives

After completing this course, you’ll be able to:

Explain the purpose and appropriate use cases for global analysis, project analysis, and user tokens.
Determine the most secure token for specific tasks, especially within CI/CD pipelines.
Configure tokens by setting characteristics such as expiration dates and permissions.

Key topics

Definition and function of SonarQube tokens
Security best practices for tokens

Target audience

Administrator
DevOps engineer
Developer
Engineering leader
Analyst

Prerequisites

Access to a SonarQube Server instance

By category

SonarQube Cloud

SonarQube Server

Advanced Security

See all

By tag

Azure DevOps

Bitbucket

GitHub