Fix serverAuthenticationToken being required for configuration via CasC

[Smasherr]

This fix avoids the following error message

io.jenkins.plugins.casc.ConfiguratorException: serverAuthenticationToken is required to configure class hudson.plugins.sonar.SonarInstallation

when using a YAML configuration without serverAuthenticationToken

[henryju]

LGTM

[oleg-nenashev]

CC jenkinsci/configuration-as-code-plugin#809

[oleg-nenashev]

It is up to plugin maintainers, but from what I see it breaks binary compatibility while it could be avoided

[Smasherr]

Should be fixed in CasC jenkinsci/configuration-as-code-plugin#1025

[thorin]

@Smasherr jenkinsci/configuration-as-code-plugin#1025 has been merged.

But now @Nullable should be replaced with @CheckForNull on SonarInstallation to fix the configuration via CasC.

Any reason to prefer @Nullable over @CheckForNull ?

[Smasherr]

@oleg-nenashev Please review the latest state of this PR. Would you also be so kind to answer this?

Any reason to prefer @Nullable over @CheckForNull?

[Smasherr]

Bump: any feedback?

[timja]

@oleg-nenashev Please review the latest state of this PR. Would you also be so kind to answer this?

Any reason to prefer @Nullable over @CheckForNull?

CheckForNull is normally preferred as it has better integration into static code analysis frameworks like spotbugs AFAIK

[timja]

LGTM @henryju?

[timja]

The build is failing because it's untrusted I assume:
/home/travis/.local/bin/install: line 19: ARTIFACTORY_URL: unbound variable

[henryju]

@dbmeneses can you please take over this PR?

[Smasherr]

Bump: merge it please

[timja]

@Smasherr can you please resolve the conflicts?

[timja]

Would be cool to have this merged first: #130

probably no harm in cherry-picking that into this PR as well

[timja]

@henryju / @dbmeneses could we get this reviewed / merged please? We have users asking about this often

[wouter-admiraal-sonarsource]

Hi @Smasherr and @timja ,

Sorry this is taking a bit long. Let me do a final check. In the meantime, I added 2 small nitpicks about the code format.

[wouter-admiraal-sonarsource]

I see we forgot to link to our contribution guidelines for this project. Sorry about that.

Could you please reformat this code so it follows our code style (config for Eclipse and IntelliJ available here)? From the looks of it, I think only the indentation should be corrected.

[timja]

I see we forgot to link to our contribution guidelines for this project. Sorry about that.

Could you please reformat this code so it follows our code style (config for Eclipse and IntelliJ available here)? From the looks of it, I think only the indentation should be corrected.

Checkstyle? 🙂

[henryju]

I looked again and seems fine to me. I'm just concerned about the use of @CheckForNull. In SonarSource we tend to use @Nullable. Is the meaning the same for CasC?

[timja]

Nullable

See the discussion here, about CheckForNull and Nullable.
jenkinsci/configuration-as-code-plugin#1053 (comment)

The jenkins project tends to prefer CheckForNull as it has better integration with spotbugs. i.e. you must check a value for null if it could be null

[henryju]

We are not using Spotbugs but SonarQube ;) From CasC point of view, does it make a difference if we switch to @Nullable?

[timja]

We are not using Spotbugs but SonarQube ;) From CasC point of view, does it make a difference if we switch to @Nullable?

Needs a code change in JCasC and a release, Oleg didn't seem terribly keen on Nullable but probably no big deal..

[Smasherr]

Hey guys, nice to see finally some actions here. I've been on vacation and can do the requested changes to this PR tomorrow.

[Smasherr]

@wouter-admiraal-sonarsource Hi, does it look better to you now?

[wouter-admiraal-sonarsource]

@wouter-admiraal-sonarsource Hi, does it look better to you now?

Perfect, thanks. I'll run the QA one more time from #132, and we'll finally merge. Thank you for your patience and contribution 👍 !

[Smasherr]

@wouter-admiraal-sonarsource You're welcome! Would you be so kind and to do a release with this change anytime soon?

[Smasherr]

Status?

[nettworks-tooling]

Any news on this topic? Would be very cool if this would be merged soon as we spot issues at this point on our automated Jenkins master setup.

[wouter-admiraal-sonarsource]

This was merged in #132. Thank you all for your help 👍

[Smasherr]

@wouter-admiraal-sonarsource good news, thanks! Now it would be great to have this in a release any time soon :-)

[Wurden]

I would like to add that it not only fails when serverAuthenticationToken is missing, it fails if any possible config parameter is missing, so for a working JCasC you need to include everything even though values are empty. Most other plugins have defaults and do not fail when config parameters are empty.
Just for reference, see below for working configurations. Hope this fix gets released soon.

sonarGlobalConfiguration:
  installations:
    - name: "my-sonarqube"
      serverUrl: "https://url-to-sonarqube.com/"
      serverAuthenticationToken: "" # Although we don't need any of below parameters, the Sonar plugin requires them to be present
      credentialsId: ""
      webhookSecretId: ""
      mojoVersion: ""
      additionalProperties: ""
      additionalAnalysisProperties: ""
      triggers:
        envVar: ""
        skipScmCause: false
        skipUpstreamCause: false

The same is the case for the sonarRunnerInstallation config, you also need to include everything there, even if empty.

tool:
  sonarRunnerInstallation:
    installations:
    - name: "my-sonarqube"
      home: "" # Sonar plugin requires home to be present as well
      properties:
      - installSource:
          installers:
          - sonarRunnerInstaller:
              id: "4.2.0.1873"

[Smasherr]

@Wurden The result of this change is that only 3 parameters remain required: name, serverUrl and triggers. The latter became optional in #137, so now only name and serverUrl are mandatory.