Sonarqube💣
Overview💣
Sonarqube is an open-source platform for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities.
Big Bang Touch Points💣
graph TB
  subgraph "Ingress"
    ingressgateway
  end
  subgraph "Sonarqube"
    ingressgateway --> sonarqube
  end
  subgraph "Metrics"
    sonarqube --> prometheus
  end
  subgraph "Database"
    sonarqube --- postgres
  endStorage💣
Persistent storage can be enabled by setting the following values in the bigbang chart:
addons:
  sonarqube:
    values:
      persistence:
        enabled: true
        annotations: {}
        storageClass:
        accessMode: ReadWriteOnce
        size: 10Gi
Database💣
Sonarqube needs a postgres database to function. If one is not specified in the bigbang chart Sonarqube will deploy one internally within the namespace it is deployed to.
addons:
  sonarqube:
    database:
      host: ""
      port: 5432
      database: ""
      username: ""
      password: ""
Istio Configuration💣
Istio is disabled in the sonarqube chart by default and can be enabled by setting the following values in the bigbang chart:
hostname: bigbang.dev
istio:
  enabled: true
These values get passed into the sonarqube chart here. This creates the virtual service and maps to the istio gateway.
High Availability💣
This can be accomplished by increasing the number of replicas in the deployment.
addons:
  sonarqube:
    values:
      replicaCount: 2
Single Sign on (SSO)💣
SSO integration can be configured by modifying the following settings in the bigbang chart.
sso:
  oidc:
    host: login.dso.mil
    realm: baby-yoda
addons:
  sonarqube:
    enabled: true
    sso:
      enabled: true
      client_id: ""
      label: ""
      certificate: ""
      login: login
      name: name
      email: email
flowchart LR
S --> K[(Keycloak)]
subgraph external
K
end
ingress --> IP
subgraph "Sonarqube namespace"
    subgraph "Sonarqube pod"
        S["sonarqube"]
        IP["istio proxy"] --> K
        IP --> S
    end
endLicencing💣
Sonarqube is released under the Lesser GNU General Public License. The Bigbang chart utilizes the community edition of Sonarqube, but there are are also paid supported versions. Upgrades from community edition to enterprise or developer editions are possible via the upgrade path. Here is a link to their Feature Comparison