Merge pull request #101 from diegopereiraeng/main

Add support for SonarQube configuration file and customizable quality gate exit code

Author: diegopereiraeng

.drone.yml

@@ -19,15 +19,15 @@ steps:
     when:
       ref:
         - "refs/pull/**" # Only run for pull requests
-  - name: publish-2.4.1
+  - name: publish-2.4.2
     image: plugins/docker:20
     settings:
       # auto_tag: true
       # auto_tag_suffix: v2.0.2-java17
       tags:
-        - v2.4.1
-        # - latest
-        # - stable-java17
+        - v2.4.2
+        - latest
+        - stable-java17
       daemon_off: false
       dockerfile: Dockerfile
       password:
@@ -39,6 +39,26 @@ steps:
       ref:
         - refs/heads/main
         - refs/tags/**
+  - name: publish-2.4.2-java11
+    image: plugins/docker:20
+    settings:
+      # auto_tag: true
+      # auto_tag_suffix: v2.0.2-java17
+      tags:
+        - v2.4.2
+        - latest-java11
+        - stable-java11
+      daemon_off: false
+      dockerfile: Dockerfile_Deprecated
+      password:
+        from_secret: docker_password
+      repo: plugins/sonarqube-scanner
+      username:
+        from_secret: docker_username
+    when:
+      ref:
+        - refs/heads/main
+        - refs/tags/**
 trigger:
   ref:
     - refs/heads/main

DOCS.md

@@ -25,25 +25,55 @@ steps:
 
 Customized parameters could be specified:
 
-```diff
-  steps:
-  - name: code-analysis
-    image: drone-plugins/sonarqube-scanner
-    settings:
-      sonar_host:
-        from_secret: sonar_host
-      sonar_token:
-        from_secret: sonar_token
-      sonar_name: project-harness
-      sonar_key: project-harness
-+     build_number: 1.0
-+     timeout: 20
-+     sources: .
-+     level: DEBUG
-+     showProfiling: true
-+     exclusions: **/static/**/*,**/dist/**/*.js
-+     usingProperties: false
-+     binaries: .
+```yaml
+steps:
+- name: code-analysis
+  image: drone-plugins/sonarqube-scanner
+  settings:
+    sonar_host:
+      from_secret: sonar_host
+    sonar_token:
+      from_secret: sonar_token
+    sonar_name: project-harness
+    sonar_key: project-harness
+    build_number: 1.0
+    timeout: 20
+    sources: .
+    level: DEBUG
+    showProfiling: true
+    exclusions: **/static/**/*,**/dist/**/*.js
+    usingProperties: false
+    binaries: .
+    sonar_config_file: true
+    sonar_config_file_override: false
+    quality_gate_error_exit_code: 5
+    sonar_qualitygate_timeout: 300
+    branch: master
+    inclusions: "*.go, *.java"
+    sonar_quality_enabled: true
+    artifact_file: artifact.json
+    javascript_icov_reportPath: /path/to/icov/report
+    java_coverage_plugin: jacoco
+    jacoco_report_path: /path/to/jacoco/report
+    ssl_keystore_pwd: your-keystore-password
+    cacerts_location: /path/to/cacerts
+    junit_reportpaths: /path/to/junit/reports
+    source_encoding: UTF-8
+    tests: /path/to/tests
+    java_test: /path/to/java/test
+    pr_key: 123
+    pr_branch: your-pr-branch
+    pr_base: your-pr-base
+    coverage_exclusion: **/test/**/*.*,**/*.test.go
+    java_source: 1.8
+    java_libraries: /path/to/libraries
+    surefire_reportsPath: /path/to/surefire/reports
+    typescript_lcov_reportPaths: /path/to/typescript/lcov/reports
+    verbose: true
+    custom_jvm_params: "-Dsonar.java.source='value_you_want'"
+    taskid: your-task-id
+    skip_scan: true
+    SONAR_SCANNER_OPTS: "--add-opens java.base/sun.nio.ch=ALL-UNNAMED --add-opens java.base/java.io=ALL-UNNAMED"
 ```
 
 # Secret Reference
@@ -52,48 +82,37 @@ Safety first, the host and token are stored in Drone Secrets.
 * `sonar_host`: Host of SonarQube with schema(http/https).
 * `sonar_token`: User token used to post the analysis report to SonarQube Server. Click User -- My Account -- Security -- Generate Tokens.
 
-
 # Parameter Reference
 
-* `sonar_name`: Sonar Project NAme.
+* `sonar_name`: Sonar Project Name.
 * `sonar_key`: Sonar Project Key.
 * `sonar_qualitygate_timeout`: Timeout in seconds for Sonar Scan.
-* `artifact_file`: Timeout in seconds for Sonar Scan.
-* `sonar_quality_enabled`: True to block pipeline if sonar quality gate conditions are not met.
+* `artifact_file`: Path to the artifact file that will be generated by the plugin.
+* `sonar_quality_enabled`: True to block the pipeline if Sonar quality gate conditions are not met.
 * `branch`: Branch for analysis. (-Dsonar.branch.name=)
 * `build_number`: Build Version.
-
 * `build_version`: Code version, Default value `DRONE_BUILD_NUMBER`.
-* `timeout`: Default seconds `60`.
-* `sources`: Comma-separated paths to directories containing source files. 
-* `inclusions`: Comma-delimited list of file path patterns to be included in analysis. When set, only files matching the paths set here will be included in analysis.
+* `timeout`: Timeout in seconds, default `60`.
+* `sources`: Comma-separated paths to directories containing source files.
+* `inclusions`: Comma-delimited list of file path patterns to be included in analysis. Example: `*.go, *.java`.
 * `exclusions`: Comma-delimited list of file path patterns to be excluded from analysis. Example: `**/static/**/*,**/dist/**/*.js`.
-* `level`: Control the quantity / level of logs produced during an analysis. Default value `INFO`. 
-    * DEBUG: Display INFO logs + more details at DEBUG level.
-    * TRACE: Display DEBUG logs + the timings of all ElasticSearch queries and Web API calls executed by the SonarQube Scanner.
+* `level`: Control the quantity/level of logs produced during an analysis. Default value `INFO`. Options are `DEBUG` and `TRACE`.
 * `showProfiling`: Display logs to see where the analyzer spends time. Default value `false` (-Dsonar.showProfiling=)
-* `branchAnalysis`: Pass currently analysed branch to SonarQube. (Must not be active for initial scan!) Default value `false`
-
-
-* `usingProperties`: Using the `sonar-project.properties` file in root directory as sonar parameters. (Not include `sonar_host` and
-`sonar_token`.) Default value `false`
-
-* `sonar_qualitygate_timeout`: Quality gate timeout. (-Dsonar.qualitygate.timeout=)
-
-* `binaries`: app binaries (-Dsonar.java.binaries=)
-
+* `branchAnalysis`: Pass currently analyzed branch to SonarQube. (Must not be active for initial scan!) Default value `false`.
+* `usingProperties`: Use the `sonar-project.properties` file in the root directory as sonar parameters. (Not including `sonar_host` and `sonar_token`.) Default value `false`.
+* `binaries`: Path to application binaries (-Dsonar.java.binaries=).
+* `sonar_config_file`: Use `sonar-project.properties` if available. Default value `false`.
+* `sonar_config_file_override`: Use `sonar-project.properties` if available and override host, login, or project key settings. Default value `false`.
+* `quality_gate_error_exit_code`: Specifies the "exit code" error when the quality gate fails. Default is `5`.
 
 # Javascript Parameters
 
-* `javascript_icov_reportPath`: Path to coverage report (-Dsonar.javascript.lcov.reportPath)
-
+* `javascript_icov_reportPath`: Path to coverage report (-Dsonar.javascript.lcov.reportPath).
 
 # Java Parameters
 
-* `jacoco_report_path`: Path to Jacoco Report (if not default). (-Dsonar.jacoco.reportPath=)
-
-* `java_coverage_plugin`: plugin to use as coverage. ex: jacoco (-Dsonar.java.coveragePlugin=)
-
+* `jacoco_report_path`: Path to Jacoco Report (if not default). (-Dsonar.jacoco.reportPath=).
+* `java_coverage_plugin`: Plugin to use as coverage, e.g., jacoco (-Dsonar.java.coveragePlugin=).
 
 # Notes
 
@@ -102,7 +121,7 @@ Safety first, the host and token are stored in Drone Secrets.
 * You could also add a file named `sonar-project.properties` at the root of your project to specify parameters.
 
 Code repository: [drone-plugins/sonarqube-scanner](https://github.com/drone-plugins/sonarqube-scanner).  
-SonarQube Parameters: [Analysis Parameters](https://docs.sonarqube.org/display/SONAR/Analysis+Parameters)
+SonarQube Parameters: [Analysis Parameters](https://docs.sonarqube.org/display/SONAR/Analysis+Parameters).
 
 # Test your SonarQube Server:
 

Dockerfile_Deprecated

@@ -15,7 +15,7 @@ RUN GOOS=linux GOARCH=amd64 CGO_ENABLED=0 go build -o harness-sonar
 
 FROM openjdk:11.0.16-jre
 
-ARG SONAR_VERSION=5.0.1.3006
+ARG SONAR_VERSION=4.6.2.2472 
 ARG SONAR_SCANNER_CLI=sonar-scanner-cli-${SONAR_VERSION}
 ARG SONAR_SCANNER=sonar-scanner-${SONAR_VERSION}
 

README.md

@@ -1,21 +1,41 @@
-
 # Harness Drone/CIE SonarQube Plugin with Quality Gate
 
-This plugin is designed to run SonarQube scans and handle the results and convert it to JUnit Format. It's written in Go and check the report results for status OK.
+This plugin is designed to run SonarQube scans, handle the results, and convert them to JUnit format. It's written in Go and checks the report results for status OK.
+
+## Main Features - v2.4.2
+
+- **New Parameter: `sonar_config_file`**
+  - **Type**: Boolean
+  - **Description**: If set to true, the plugin will utilize the specified `sonar-project.properties` file for the SonarQube analysis, if it exists.
+  - **Environment Variable**: `PLUGIN_SONAR_CONFIG_FILE`
+  - **Allowed Values**: `"true"`, `"false"`
+
+- **New Parameter: `sonar_config_file_override`**
+  - **Type**: Boolean
+  - **Description**: If set to true, the plugin will use the `sonar-project.properties` file and allow overriding of host, login, and/or project key settings.
+  - **Environment Variable**: `PLUGIN_SONAR_CONFIG_FILE_OVERRIDE`
+  - **Allowed Values**: `"true"`, `"false"`
+
+- **New Parameter: `quality_gate_error_exit_code`**
+  - **Type**: Integer
+  - **Description**: Specifies the "exit code" error when the quality gate fails. Default is `5`.
+  - **Environment Variable**: `PLUGIN_QUALITY_GATE_ERROR_EXIT_CODE`
+  - **Default Value**: `5`
 
 ## Main Features - v2.4.1
 
 - Sonar CLI downgraded from 6.0.0.4432 to 5.0.1.3006
 - Execute SonarQube scans and handle the results
 - Generate JUnit reports based on the scan results
 - Quality Gate status reporting + Metrics
-- Skip Scan and only check for quality Gate Status of a specific analysisId or last analysis
-- Waiting for Analysis and QualityGate nows skip the wait if set to false - thanks @kangguru
-- Added SONAR_SCANNER_OPTS as param, so it transform into this env var during execution for Sonar JVM params - check for the param detail section below
+- Skip Scan and only check for Quality Gate status of a specific `analysisId` or last analysis
+- Waiting for Analysis and QualityGate now skips the wait if set to false - thanks @kangguru
+- Added `SONAR_SCANNER_OPTS` as a parameter, transforming into this env var during execution for Sonar JVM params - check the parameter detail section below
+
+**Note**: Use `branch` and `pr_key` parameters for accurate results matching when skipping the scan.
 
-Obs: USe branch and pr_key params for accuracy results matches when skiping the scan
+![Results](https://github.com/drone-plugins/sonarqube-scanner/blob/main/sonar-result-v2.png)
 
-<img src="https://github.com/drone-plugins/sonarqube-scanner/blob/main/sonar-result-v2.png" alt="Results" width="800"/>
 
 ### Simple Pipeline example
 
@@ -26,7 +46,7 @@ Obs: USe branch and pr_key params for accuracy results matches when skiping the
     identifier: run_sonar
     spec:
         connectorRef: account.DockerHubDiego
-        image: plugins/sonarqube-scanner:v2.4.1
+        image: plugins/sonarqube-scanner:v2.4.2
         reports:
             type: JUnit
             spec:
@@ -48,7 +68,7 @@ Obs: USe branch and pr_key params for accuracy results matches when skiping the
 type: Plugin
 spec:
     connectorRef: <+input>
-    image: plugins/sonarqube-scanner:v2.4.1
+    image: plugins/sonarqube-scanner:v2.4.2
     reports:
         type: JUnit
         spec:
@@ -88,7 +108,7 @@ spec:
     identifier: check_sonar
     spec:
         connectorRef: account.DockerHubDiego
-        image: plugins/sonarqube-scanner:v2.4.1
+        image: plugins/sonarqube-scanner:v2.4.2
         reports:
             type: JUnit
             spec:
@@ -110,7 +130,7 @@ name: default
 
 steps:
 - name: perform-code-analysis
-  image: plugins/sonarqube-scanner:v2.4.1
+  image: plugins/sonarqube-scanner:v2.4.2
   settings:
     sonar_host: http://34.100.11.50
     sonar_token:
@@ -212,8 +232,32 @@ steps:
 - `SONAR_SCANNER_OPTS`: pass any Sonar JVM param as env var during execution.
   - Example: `"SONAR_SCANNER_OPTS": "--add-opens java.base/sun.nio.ch=ALL-UNNAMED --add-opens java.base/java.io=ALL-UNNAMED"`
 
+- **`sonar_config_file`**:
+  - **Type**: Boolean
+  - **Description**: Use `sonar-project.properties` if available.
+  - **Environment Variable**: `PLUGIN_SONAR_CONFIG_FILE`
+  - **Allowed Values**: `"true"`, `"false"`
+
+- **`sonar_config_file_override`**:
+  - **Type**: Boolean
+  - **Description**: Use `sonar-project.properties` if available and allow overriding of host, login, and/or project key settings.
+  - **Environment Variable**: `PLUGIN_SONAR_CONFIG_FILE_OVERRIDE`
+  - **Allowed Values**: `"true"`, `"false"`
+
+- **`quality_gate_error_exit_code`**:
+  - **Type**: Integer
+  - **Description**: Specifies the "exit code" error when the quality gate fails. Default is `5`.
+  - **Environment Variable**: `PLUGIN_QUALITY_GATE_ERROR_EXIT_CODE`
+  - **Default Value**: `5` 
+
 Detail Informations/tutorials Parameteres: [DOCS.md](DOCS.md).
 
+### Sonar Token
+
+Use Global analysis tokens
+
+<img src="https://github.com/drone-plugins/sonarqube-scanner/blob/main/global-analysis-token.png" alt="Plugin Configuration" width="400"/>
+
 ### Build Process
 
 build go binary file: 

global-analysis-token.png

@@ -5,15 +5,15 @@ go 1.18
 require (
 	github.com/joho/godotenv v1.5.1
 	github.com/pelletier/go-toml/v2 v2.0.9
-	github.com/pelletier/go-toml/v2 v2.0.9
 	github.com/sirupsen/logrus v1.9.3
 	github.com/urfave/cli/v2 v2.25.7
-	github.com/urfave/cli/v2 v2.25.7
 )
 
 require (
-	github.com/cpuguy83/go-md2man/v2 v2.0.2 // indirect
+	github.com/cpuguy83/go-md2man/v2 v2.0.4 // indirect
+	github.com/pelletier/go-toml v1.9.5 // indirect
 	github.com/russross/blackfriday/v2 v2.1.0 // indirect
 	github.com/shurcooL/sanitized_anchor_name v1.0.0 // indirect
+	github.com/urfave/cli v1.22.15 // indirect
 	golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8 // indirect
 )

go.mod

@@ -4,6 +4,8 @@ github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d h1:U+s90UTSY
 github.com/cpuguy83/go-md2man/v2 v2.0.0-20190314233015-f79a8a8ca69d/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
 github.com/cpuguy83/go-md2man/v2 v2.0.2 h1:p1EgwI/C7NhT0JmVkwCD2ZBK8j4aeHQX2pMHHBfMQ6w=
 github.com/cpuguy83/go-md2man/v2 v2.0.2/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
+github.com/cpuguy83/go-md2man/v2 v2.0.4 h1:wfIWP927BUkWJb2NmU/kNDYIBTh/ziUX91+lVfRxZq4=
+github.com/cpuguy83/go-md2man/v2 v2.0.4/go.mod h1:tgQtvFlXSQOSOSIRvRPT7W67SCa46tRHOmNcaadrF8o=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -29,16 +31,20 @@ github.com/sirupsen/logrus v1.9.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVs
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw=
 github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo=
+github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA=
 github.com/stretchr/testify v1.2.2 h1:bSDNvY7ZPG5RlJ8otE/7V6gMiyenm9RtJ7IUVIAoJ1w=
 github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU=
 github.com/stretchr/testify v1.8.4/go.mod h1:sz/lmYIOXD/1dqDmKjjqLyZ2RngseejIcXlSw2iwfAo=
+github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/urfave/cli v1.22.9 h1:cv3/KhXGBGjEXLC4bH0sLuJ9BewaAbpk5oyMOveu4pw=
 github.com/urfave/cli v1.22.9/go.mod h1:Gos4lmkARVdJ6EkW0WaNv/tZAAMe9V7XWyB60NtXRu0=
 github.com/urfave/cli v1.22.14 h1:ebbhrRiGK2i4naQJr+1Xj92HXZCrK7MsyTS/ob3HnAk=
 github.com/urfave/cli v1.22.14/go.mod h1:X0eDS6pD6Exaclxm99NJ3FiCDRED7vIHpx2mDOHLvkA=
+github.com/urfave/cli v1.22.15 h1:nuqt+pdC/KqswQKhETJjo7pvn/k4xMUxgW6liI7XpnM=
+github.com/urfave/cli v1.22.15/go.mod h1:wSan1hmo5zeyLGBjRJbzRTNk8gwoYa2B9n4q9dmRIc0=
 github.com/urfave/cli/v2 v2.25.7/go.mod h1:8qnjx1vcq5s2/wpsqoZFndg2CE5tNFyrTvS6SinrnYQ=
 github.com/xrash/smetrics v0.0.0-20201216005158-039620a65673/go.mod h1:N3UwUGtsrSj3ccvlPHLoLsHnpR27oXr4ZE984MbSER8=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037 h1:YyJpGZS1sBuBCzLAR1VEpK193GlqGZbnPFnPV/5Rsb4=