jenkins:集成sonar代码扫描+发送邮件

前提:

Jenkins

JDK

目录:

1、安装sonar插件:SonarQube Scanner for Jenkins

2、安装SonarQube

3、安装sonar-scanner

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

1.安装sonar插件:SonarQube Scanner for Jenkins

2、安装SonarQube,并配置mysql数据库

2.1 下载

下载地址:https://www.sonarqube.org/downloads/

  2.2 解压

下载后放在/usr/local目录下,并解压

  1. unzip sonarqube7.4.zip

 2.3 配置环境变量

  1. vi /etc/profile

里面写如下

  1. #set sonarqube
  2. export SONAR_HOME=/usr/local/sonarqube7.4
  3. PATH=$PATH:$SONAR_HOME/bin

使配置生效

  1. source /etc/profile

 2.4 启动并测试

进入到启动目录

  1. /usr/local/sonarqube7.4/bin/linuxx8664

执行启动命令

  1. ./sonar.sh start

启动时要查看es.log和sonar.log日志,还有web.log,关于数据库配置的错误会在此处显示

  1. tail f /usr/local/sonarqube6.7.6/logs/es.log
  1. tail f /usr/local/sonarqube6.7.6/logs/sonar.log
  1. tail f /usr/local/sonarqube6.7./logs/web.log

用root启动会报错,请参考我的另一篇文章:https://www.cnblogs.com/gcgc/p/10239590.html

所有问题解决完后启动,并测试,访问ip+port,OK了

如果默认的9000端口被占用了,则修改默认端口 vi /usr/local/sonarqube-7.4/conf/sonar.properties

注意sonar中还集成了elastic search默认端口为9001,所以要查看9001否也被占用lsof -i:9001,如果被占用,也是修改上面的文件

  2.5 sonar配置mysql数据库

sonar自带测试数据库,但是具体应用还是的换其他数据,这里我们使用mysql,

创建sonar数据库

  1. DROP DATABASE sonar;
  2.  
  3. CREATE DATABASE sonar CHARACTER SET utf8 COLLATE utf8_general_ci;
  4.  
  5. CREATE USER ‘sonar’ IDENTIFIED BY ‘sonar’;
  6.  
  7. GRANT ALL ON sonar.* TO ‘sonar’@‘%’ IDENTIFIED BY ‘sonar’;
  8.  
  9. GRANT ALL ON sonar.* TO ‘sonar’@‘localhost’ IDENTIFIED BY ‘sonar’;
  10.  
  11. FLUSH PRIVILEGES;

2.6 修改配置文件

修改vi /usr/local/sonarqube-7.4/conf/sonar.properties文件,如下的蓝色加粗字体

  1. # Property values can:
  2. # – reference an environment variable, for example sonar.jdbc.url= ${env:SONAR_JDBC_URL}
  3. # – be encrypted. See https://redirect.sonarsource.com/doc/settings-encryption.html
  4.  
  5. #————————————————————————————————–
  6. # DATABASE
  7. #
  8. # IMPORTANT:
  9. # – The embedded H2 database is used by default. It is recommended for tests but not for
  10. # production use. Supported databases are MySQL, Oracle, PostgreSQL and Microsoft SQLServer.
  11. # – Changes to database connection URL (sonar.jdbc.url) can affect SonarSource licensed products.
  12.  
  13. # User credentials.
  14. # Permissions to create tables, indices and triggers must be granted to JDBC user.
  15. # The schema must be created first.
  16. #sonar.jdbc.username=
  17. #sonar.jdbc.password=
  19. sonar.jdbc.username=sonar
  20. sonar.jdbc.password=sonar
  22. sonar.sorceEncoding=UTF8
  23. sonar.login=admin
  24. sonar.password=admin
  25.  
  26. #—– Embedded Database (default)
  27. # H2 embedded database server listening port, defaults to
  28. #sonar.embeddedDatabase.port=
  29.  
  30. #—– DEPRECATED
  31. #—– MySQL >=5.6 && <8.0
  32. # Support of MySQL is dropped in Data Center Editions and deprecated in all other editions
  33. # Only InnoDB storage engine is supported (not myISAM).
  34. # Only the bundled driver is supported. It can not be changed.
  35. sonar.jdbc.url=jdbc:mysql://192.168.207.160:3306/sonar?useUnicode=true&characterEncoding=utf8&rewriteBatchedStatements=true&useConfigs=maxPerformance&useSSL=false
  36.  
  37. #—– Oracle 11g/12c
  38. # The Oracle JDBC driver must be copied into the directory extensions/jdbc-driver/oracle/.
  39. # Only the thin client is supported, and only the versions 11.2.x or 12.2.x must be used. See
  40. # https://jira.sonarsource.com/browse/SONAR-9758 for more details.
  41. # If you need to set the schema, please refer to http://jira.sonarsource.com/browse/SONAR-5000
  42. #sonar.jdbc.url=jdbc:oracle:thin:@localhost:/XE
  43.  
  44. #—– PostgreSQL 9.3 or greater
  45. # By default the schema named “public” is used. It can be overridden with the parameter “currentSchema”.
  46. #sonar.jdbc.url=jdbc:postgresql://localhost/sonarqube?currentSchema=my_schema
  47.  
  48. #—– Microsoft SQLServer / and SQL Azure
  49. # A database named sonar must exist and its collation must be case-sensitive (CS) and accent-sensitive (AS)
  50. # Use the following connection string if you want to use integrated security with Microsoft Sql Server
  51. # Do not set sonar.jdbc.username or sonar.jdbc.password property if you are using Integrated Security
  52. # For Integrated Security to work, you have to download the Microsoft SQL JDBC driver package from
  53. # https://www.microsoft.com/en-us/download/details.aspx?id=55539
  54. # and copy sqljdbc_auth.dll to your path. You have to copy the bit or bit version of the dll
  55. # depending upon the architecture of your server machine.
  56. #sonar.jdbc.url=jdbc:sqlserver://localhost;databaseName=sonar;integratedSecurity=true
  57.  
  58. # Use the following connection string if you want to use SQL Auth while connecting to MS Sql Server.
  59. # Set the sonar.jdbc.username and sonar.jdbc.password appropriately.
  60. #sonar.jdbc.url=jdbc:sqlserver://localhost;databaseName=sonar
  61.  
  62. #—– Connection pool settings
  63. # The maximum number of active connections that can be allocated
  64. # at the same time, or negative for no limit.
  65. # The recommended value is 1.2 * max sizes of HTTP pools. For example if HTTP ports are
  66. # enabled with default sizes (, see property sonar.web.http.maxThreads)
  67. # then sonar.jdbc.maxActive should be 1.2 * = .
  68. #sonar.jdbc.maxActive=
  69.  
  70. # The maximum number of connections that can remain idle in the
  71. # pool, without extra ones being released, or negative for no limit.
  72. #sonar.jdbc.maxIdle=
  73.  
  74. # The minimum number of connections that can remain idle in the pool,
  75. # without extra ones being created, or zero to create none.
  76. #sonar.jdbc.minIdle=
  77.  
  78. # The maximum number of milliseconds that the pool will wait (when there
  79. # are no available connections) for a connection to be returned before
  80. # throwing an exception, or <= to wait indefinitely.
  81. #sonar.jdbc.maxWait=
  82.  
  83. #sonar.jdbc.minEvictableIdleTimeMillis=
  84. #sonar.jdbc.timeBetweenEvictionRunsMillis=
  85.  
  86. #————————————————————————————————–
  87. # WEB SERVER
  88. # Web server is executed in a dedicated Java process. By default heap size is 512Mb.
  89. # Use the following property to customize JVM options.
  90. # Recommendations:
  91. #
  92. # The HotSpot Server VM is recommended. The property -server should be added if server mode
  93. # is not enabled by default on your environment:
  94. # http://docs.oracle.com/javase/8/docs/technotes/guides/vm/server-class.html
  95. #
  96. # Startup can be long if entropy source is short of entropy. Adding
  97. # -Djava.security.egd=file:/dev/./urandom is an option to resolve the problem.
  98. # See https://wiki.apache.org/tomcat/HowTo/FasterStartUp#Entropy_Source
  99. #
  100. #sonar.web.javaOpts=-Xmx512m -Xms128m -XX:+HeapDumpOnOutOfMemoryError
  101.  
  102. # Same as previous property, but allows to not repeat all other settings like -Xmx
  103. #sonar.web.javaAdditionalOpts=
  104.  
  105. # Binding IP address. For servers with more than one IP address, this property specifies which
  106. # address will be used for listening on the specified ports.
  107. # By default, ports will be used on all IP addresses associated with the server.
  108. #sonar.web.host=0.0.0.0
  109.  
  110. # Web context. When set, it must start with forward slash (for example /sonarqube).
  111. # The default value is root context (empty value).
  112. #sonar.web.context=
  113. # TCP port for incoming HTTP connections. Default value is .
  114. sonar.web.port=9000
  115.  
  116. # The maximum number of connections that the server will accept and process at any given time.
  117. # When this number has been reached, the server will not accept any more connections until
  118. # the number of connections falls below this value. The operating system may still accept connections
  119. # based on the sonar.web.connections.acceptCount property. The default value is .
  120. #sonar.web.http.maxThreads=
  121.  
  122. # The minimum number of threads always kept running. The default value is .
  123. #sonar.web.http.minThreads=
  124.  
  125. # The maximum queue length for incoming connection requests when all possible request processing
  126. # threads are in use. Any requests received when the queue is full will be refused.
  127. # The default value is .
  128. #sonar.web.http.acceptCount=
  129.  
  130. # By default users are logged out and sessions closed when server is restarted.
  131. # If you prefer keeping user sessions open, a secret should be defined. Value is
  132. # HS256 key encoded with base64. It must be unique for each installation of SonarQube.
  133. # Example of command-line:
  134. # echo -n “type_what_you_want” | openssl dgst -sha256 -hmac “key” -binary | base64
  135. #sonar.auth.jwtBase64Hs256Secret=
  136.  
  137. # The inactivity timeout duration of user sessions, in minutes. After the configured
  138. # period of time, the user is logged out.
  139. # The default value is set to days ( minutes)
  140. # and cannot be greater than months. Value must be strictly positive.
  141. #sonar.web.sessionTimeoutInMinutes=
  142.  
  143. # A passcode can be defined to access some web services from monitoring
  144. # tools without having to use the credentials of a system administrator.
  145. # Check the Web API documentation to know which web services are supporting this authentication mode.
  146. # The passcode should be provided in HTTP requests with the header “X-Sonar-Passcode”.
  147. # By default feature is disabled.
  148. #sonar.web.systemPasscode=
  149.  
  150. #————————————————————————————————–
  151. # SSO AUTHENTICATION
  152.  
  153. # Enable authentication using HTTP headers
  154. #sonar.web.sso.enable=false
  155.  
  156. # Name of the header to get the user login.
  157. # Only alphanumeric, ‘.’ and ‘@’ characters are allowed
  158. #sonar.web.sso.loginHeader=X-Forwarded-Login
  159.  
  160. # Name of the header to get the user name
  161. #sonar.web.sso.nameHeader=X-Forwarded-Name
  162.  
  163. # Name of the header to get the user email (optional)
  164. #sonar.web.sso.emailHeader=X-Forwarded-Email
  165.  
  166. # Name of the header to get the list of user groups, separated by comma (optional).
  167. # If the sonar.sso.groupsHeader is set, the user will belong to those groups if groups exist in SonarQube.
  168. # If none of the provided groups exists in SonarQube, the user will only belong to the default group.
  169. # Note that the default group will always be set.
  170. #sonar.web.sso.groupsHeader=X-Forwarded-Groups
  171.  
  172. # Interval used to know when to refresh name, email and groups.
  173. # During this interval, if for instance the name of the user is changed in the header, it will only be updated after X minutes.
  174. #sonar.web.sso.refreshIntervalInMinutes=
  175.  
  176. #————————————————————————————————–
  177. # LDAP CONFIGURATION
  178.  
  179. # Enable the LDAP feature
  180. # sonar.security.realm=LDAP
  181.  
  182. # Set to true when connecting to a LDAP server using a case-insensitive setup.
  183. # sonar.authenticator.downcase=true
  184.  
  185. # URL of the LDAP server. Note that if you are using ldaps, then you should install the server certificate into the Java truststore.
  186. # ldap.url=ldap://localhost:10389
  187.  
  188. # Bind DN is the username of an LDAP user to connect (or bind) with. Leave this blank for anonymous access to the LDAP directory (optional)
  189. # ldap.bindDn=cn=sonar,ou=users,o=mycompany
  190.  
  191. # Bind Password is the password of the user to connect with. Leave this blank for anonymous access to the LDAP directory (optional)
  192. # ldap.bindPassword=secret
  193.  
  194. # Possible values: simple | CRAM-MD5 | DIGEST-MD5 | GSSAPI See http://java.sun.com/products/jndi/tutorial/ldap/security/auth.html (default: simple)
  195. # ldap.authentication=simple
  196.  
  197. # See :
  198. # * http://java.sun.com/products/jndi/tutorial/ldap/security/digest.html
  199. # * http://java.sun.com/products/jndi/tutorial/ldap/security/crammd5.html
  200. # (optional)
  201. # ldap.realm=example.org
  202.  
  203. # Context factory class (optional)
  204. # ldap.contextFactoryClass=com.sun.jndi.ldap.LdapCtxFactory
  205.  
  206. # Enable usage of StartTLS (default : false)
  207. # ldap.StartTLS=true
  208.  
  209. # Follow or not referrals. See http://docs.oracle.com/javase/jndi/tutorial/ldap/referral/jndi.html (default: true)
  210. # ldap.followReferrals=false
  211.  
  212. # USER MAPPING
  213.  
  214. # Distinguished Name (DN) of the root node in LDAP from which to search for users (mandatory)
  215. # ldap.user.baseDn=cn=users,dc=example,dc=org
  216.  
  217. # LDAP user request. (default: (&(objectClass=inetOrgPerson)(uid={login})) )
  218. # ldap.user.request=(&(objectClass=user)(sAMAccountName={login}))
  219.  
  220. # Attribute in LDAP defining the user’s real name. (default: cn)
  221. # ldap.user.realNameAttribute=name
  222.  
  223. # Attribute in LDAP defining the user’s email. (default: mail)
  224. # ldap.user.emailAttribute=email
  225.  
  226. # GROUP MAPPING
  227.  
  228. # Distinguished Name (DN) of the root node in LDAP from which to search for groups. (optional, default: empty)
  229. # ldap.group.baseDn=cn=groups,dc=example,dc=org
  230.  
  231. # LDAP group request (default: (&(objectClass=groupOfUniqueNames)(uniqueMember={dn})) )
  232. # ldap.group.request=(&(objectClass=group)(member={dn}))
  233.  
  234. # Property used to specifiy the attribute to be used for returning the list of user groups in the compatibility mode. (default: cn)
  235. # ldap.group.idAttribute=sAMAccountName
  236.  
  237. #————————————————————————————————–
  238. # COMPUTE ENGINE
  239. # The Compute Engine is responsible for processing background tasks.
  240. # Compute Engine is executed in a dedicated Java process. Default heap size is 512Mb.
  241. # Use the following property to customize JVM options.
  242. # Recommendations:
  243. #
  244. # The HotSpot Server VM is recommended. The property -server should be added if server mode
  245. # is not enabled by default on your environment:
  246. # http://docs.oracle.com/javase/8/docs/technotes/guides/vm/server-class.html
  247. #
  248. #sonar.ce.javaOpts=-Xmx512m -Xms128m -XX:+HeapDumpOnOutOfMemoryError
  249.  
  250. # Same as previous property, but allows to not repeat all other settings like -Xmx
  251. #sonar.ce.javaAdditionalOpts=
  252.  
  253. #————————————————————————————————–
  254. # ELASTICSEARCH
  255. # Elasticsearch is used to facilitate fast and accurate information retrieval.
  256. # It is executed in a dedicated Java process. Default heap size is 512Mb.
  257. #
  258. # ————————————————–
  259. # Word of caution for Linux users on 64bits systems
  260. # ————————————————–
  261. # Please ensure Virtual Memory on your system is correctly configured for Elasticsearch to run properly
  262. # (see https://www.elastic.co/guide/en/elasticsearch/reference/5.5/vm-max-map-count.html for details).
  263. #
  264. # When SonarQube runs standalone, a warning such as the following may appear in logs/es.log:
  265. # “max virtual memory areas vm.max_map_count [65530] is too low, increase to at least [262144]”
  266. # When SonarQube runs as a cluster, however, Elasticsearch will refuse to start.
  267. #
  268.  
  269. # JVM options of Elasticsearch process
  270. #sonar.search.javaOpts=-Xms512m -Xmx512m -XX:+HeapDumpOnOutOfMemoryError
  271.  
  272. # Same as previous property, but allows to not repeat all other settings like -Xmx
  273. #sonar.search.javaAdditionalOpts=
  274.  
  275. # Elasticsearch port. Default is . Use to get a free port.
  276. # As a security precaution, should be blocked by a firewall and not exposed to the Internet.
  277. sonar.search.port=9002
  278.  
  279. # Elasticsearch host. The search server will bind this address and the search client will connect to it.
  280. # Default is loopback address.
  281. # As a security precaution, should NOT be set to a publicly available address.
  282. #sonar.search.host=
  283.  
  284. #————————————————————————————————–
  285. # UPDATE CENTER
  286.  
  287. # Update Center requires an internet connection to request https://update.sonarsource.org
  288. # It is enabled by default.
  289. #sonar.updatecenter.activate=true
  290.  
  291. # HTTP proxy (default none)
  292. #http.proxyHost=
  293. #http.proxyPort=
  294. # HTTPS proxy (defaults are values of http.proxyHost and http.proxyPort)
  295. #https.proxyHost=
  296. #https.proxyPort=
  297.  
  298. # NT domain name if NTLM proxy is used
  299. #http.auth.ntlm.domain=
  300.  
  301. # SOCKS proxy (default none)
  302. #socksProxyHost=
  303. #socksProxyPort=
  304.  
  305. # Proxy authentication (used for HTTP, HTTPS and SOCKS proxies)
  306. #http.proxyUser=
  307. #http.proxyPassword=
  308.  
  309. #————————————————————————————————–
  310. # LOGGING
  311.  
  312. # SonarQube produces logs in logs files located in the same directory (see property sonar.path.logs below),
  313. # one per process:
  314. # Main process (aka. App) logs in sonar.log
  315. # Web Server (aka. Web) logs in web.log
  316. # Compute Engine (aka. CE) logs in ce.log
  317. # Elasticsearch (aka. ES) logs in es.log
  318. #
  319. # All files follow the same rolling policy (see sonar.log.rollingPolicy and sonar.log.maxFiles) but it applies
  320. # individually (eg. if sonar.log.maxFiles=, there can be at most of each files, ie. files in total).
  321. #
  322. # All files have logs in the same format:
  323. #
  324. # |—————–| |—| |-|——————–||——————————| |——————————————————————————————————————————|
  325. # 2016.11. :: INFO ce[AVht0dNXFcyiYejytc3m][o.s.s.c.t.CeWorkerCallableImpl] Executed task | project=org.sonarqube:example-java-maven | type=REPORT | id=AVht0dNXFcyiYejytc3m | submitter=admin | time=1699ms
  326. #
  327. # : timestamp. Format is YYYY.MM.DD HH:MM:SS
  328. # YYYY: year on digits
  329. # MM: month on digits
  330. # DD: day on digits
  331. # HH: hour of day on digits in hours format
  332. # MM: minutes on digits
  333. # SS: seconds on digits
  334. # : log level.
  335. # Possible values (in order of descending criticality): ERROR, WARN, INFO, DEBUG and TRACE
  336. # : process identifier. Possible values: app (main), web (Web Server), ce (Compute Engine) and es (Elasticsearch)
  337. # : SQ thread identifier. Can be empty.
  338. # In the Web Server, if present, it will be the HTTP request ID.
  339. # In the Compute Engine, if present, it will be the task ID.
  340. # : logger name. Usually a class canonical name.
  341. # Package names are truncated to keep the whole field to characters max
  342. # : log payload. Content of this field does not follow any specific format, can vary in length and include line returns.
  343. # Some logs, however, will follow the convention to provide data in payload in the format ” | key=value”
  344. # Especially, log of profiled pieces of code will end with ” | time=XXXXms”.
  345.  
  346. # Global level of logs (applies to all processes).
  347. # Supported values are INFO (default), DEBUG and TRACE
  348. #sonar.log.level=INFO
  349.  
  350. # Level of logs of each process can be controlled individually with their respective properties.
  351. # When specified, they overwrite the level defined at global level.
  352. # Supported values are INFO, DEBUG and TRACE
  353. #sonar.log.level.app=INFO
  354. #sonar.log.level.web=INFO
  355. #sonar.log.level.ce=INFO
  356. #sonar.log.level.es=INFO
  357.  
  358. # Path to log files. Can be absolute or relative to installation directory.
  359. # Default is <installation home>/logs
  360. #sonar.path.logs=logs
  361.  
  362. # Rolling policy of log files
  363. # – based on time if value starts with “time:”, for example by day (“time:yyyy-MM-dd”)
  364. # or by month (“time:yyyy-MM”)
  365. # – based on size if value starts with “size:”, for example “size:10MB”
  366. # – disabled if value is “none”. That needs logs to be managed by an external system like logrotate.
  367. #sonar.log.rollingPolicy=time:yyyy-MM-dd
  368.  
  369. # Maximum number of files to keep if a rolling policy is enabled.
  370. # – maximum value is on size rolling policy
  371. # – unlimited on time rolling policy. Set to zero to disable old file purging.
  372. #sonar.log.maxFiles=
  373.  
  374. # Access log is the list of all the HTTP requests received by server. If enabled, it is stored
  375. # in the file {sonar.path.logs}/access.log. This file follows the same rolling policy as other log file
  376. # (see sonar.log.rollingPolicy and sonar.log.maxFiles).
  377. #sonar.web.accessLogs.enable=true
  378.  
  379. # Format of access log. It is ignored if sonar.web.accessLogs.enable=false. Possible values are:
  380. # – “common” is the Common Log Format, shortcut to: %h %l %u %user %date “%r” %s %b
  381. # – “combined” is another format widely recognized, shortcut to: %h %l %u [%t] “%r” %s %b “%i{Referer}” “%i{User-Agent}”
  382. # – else a custom pattern. See http://logback.qos.ch/manual/layouts.html#AccessPatternLayout.
  383. # The login of authenticated user is not implemented with “%u” but with “%reqAttribute{LOGIN}” (since version 6.1).
  384. # The value displayed for anonymous users is “-“.
  385. # The SonarQube’s HTTP request ID can be added to the pattern with “%reqAttribute{ID}” (since version 6.2).
  386. # If SonarQube is behind a reverse proxy, then the following value allows to display the correct remote IP address:
  387. #sonar.web.accessLogs.pattern=%i{X-Forwarded-For} %l %u [%t] “%r” %s %b “%i{Referer}” “%i{User-Agent}” “%reqAttribute{ID}”
  388. # Default value (which was “combined” before version 6.2) is equivalent to “combined + SQ HTTP request ID”:
  389. #sonar.web.accessLogs.pattern=%h %l %u [%t] “%r” %s %b “%i{Referer}” “%i{User-Agent}” “%reqAttribute{ID}”
  390.  
  391. #————————————————————————————————–
  392. # OTHERS
  393.  
  394. # Delay in seconds between processing of notification queue. Default is seconds.
  395. #sonar.notifications.delay=
  396.  
  397. # Paths to persistent data files (embedded database and search index) and temporary files.
  398. # Can be absolute or relative to installation directory.
  399. # Defaults are respectively <installation home>/data and <installation home>/temp
  400. #sonar.path.data=data
  401. #sonar.path.temp=temp
  402.  
  403. # Telemetry – Share anonymous SonarQube statistics
  404. # By sharing anonymous SonarQube statistics, you help us understand how SonarQube is used so we can improve the product to work even better for you.
  405. # We don’t collect source code or IP addresses. And we don’t share the data with anyone else.
  406. # To see an example of the data shared: login as a global administrator, call the WS api/system/info and check the Statistics field.
  407. #sonar.telemetry.enable=true
  408.  
  409. #————————————————————————————————–
  410. # DEVELOPMENT – only for developers
  411. # The following properties MUST NOT be used in production environments.
  412.  
  413. # Elasticsearch HTTP connector
  414. #sonar.search.httpPort=-

重新启动sonar,好了测试一下

3、安装sonar-scanner

3.1 下载

https://docs.sonarqube.org/display/SCAN/Analyzing+with+SonarQube+Scanner

3.2 解压

下载后放在/usr/local目录下,并解压

  1. unzip sonarscannercli3.2.0.1227linux.zip

3.3 配置环境变量

和上面一样修改/etc/profile文件,修改完记得 source /etc/profile

  1. #set sonarqube
  2. export SONAR_HOME=/usr/local/sonarqube7.4
  3. export SONAR_SCANNER_HOME=/usr/local/sonarscanner3.2.0.1227linux
  4. PATH=$PATH:$SONAR_HOME/bin:$SONAR_SCANNER_HOME/bin

修改完记得 source /etc/profile

3.4 测试

进入/usr/local/sonar-scanner-3.2.0.1227-linux/bin执行:

  1. ./sonarscanner h

如果出现如下就说明安装好了

  1. [root@iZbp1bb2egi7w0ueys548qZ bin]# ./sonarscanner h
  2. INFO:
  3. INFO: usage: sonarscanner [options]
  4. INFO:
  5. INFO: Options:
  6. INFO: D,–define <arg> Define property
  7. INFO: h,–help Display help information
  8. INFO: v,–version Display version information
  9. INFO: X,–debug Produce execution debug output

4、在Jenkins中配置sonar

SonarScanner和SonarQube的关系类似于客户端与服务端,由于SonarScanner工具需要把扫描的代码及结果发送到SonarQube服务器上,所以需要配置SonarQube服务地址。

在Jenkins系统配置>>系统设中配置如下:

5、在Jenkins中配置sonar-scanner

全局工具配置中配置如下:

6、增加构建步骤

Analysis properties 内容如下

  1. sonar.projectKey=eauth
  2. sonar.projectName=电商用户服务-auth
  3. sonar.projectVersion=1.0
  4. sonar.sources=./
  5. sonar.language=java
  6. sonar.sourceEncoding=UTF
  7. sonar.java.binaries=./
  8. sonar.login=admin
  9. sonar.password=admin

7、构建一下

8、添加自定义邮件模板

在jenkins所在机器上/root/.jenkins目录下,新建/sonar_script文件夹,里面放如下脚本:sonar.py和table.html

sonar.py内容如下

  1. #!/usr/bin/python
  2. # -*- coding:utf-8 -*-
  3.  
  4. import pymysql,os,sys
  5. from jinja2 import FileSystemLoader,Environment
  6.  
  7. def select_project_uuid(project_name):
  8. db = pymysql.connect(host=“192.168.207.160”, port=3306, user=“sonar”, passwd=“sonar”, db=“sonar”)
  9. cursor = db.cursor()
  10. select_p_uuid=“SELECT project_uuid,kee FROM projects WHERE `name`= ‘%s'” %(project_name)
  11. cursor.execute(select_p_uuid)
  12. result = cursor.fetchone()
  13. p_uuid = result[0]
  14. projectKey = result[1]
  15. db.close()
  16. return(p_uuid, projectKey)
  17.  
  18. def select_total_info(p_uuid):
  19. total_info=[]
  20. # 使用cursor()方法获取操作游标
  21. db = pymysql.connect(host=“192.168.207.160”, port=3306, user=“sonar”, passwd=“sonar”, db=“sonar”)
  22. cursor = db.cursor()
  23.  
  24. select_p_links = “SELECT text_value FROM project_measures WHERE text_value LIKE ‘java=%’ and component_uuid=” + “\'” + p_uuid + “\'”
  25. cursor.execute(select_p_links)
  26. p_links = cursor.fetchone()[0].split(“=”)[1]
  27.  
  28. sql_info = “SELECT count(*) FROM issues WHERE project_uuid=’%s’ and issue_type =%s”
  29. for leak in [2,3,1]:
  30. search_data = sql_info %(p_uuid, leak)
  31. cursor.execute(search_data)
  32. total_info.append(cursor.fetchone()[0])
  33. db.close()
  34. return p_links,total_info
  35.  
  36. def select_bugs(p_uuid):
  37. bugs=[]
  38. db = pymysql.connect(host=“192.168.207.160”, port=3306, user=“sonar”, passwd=“sonar”, db=“sonar”)
  39. cursor = db.cursor()
  40.  
  41. sql_info = “SELECT count(*) FROM issues WHERE project_uuid=’%s’ and issue_type =2 AND severity =’%s'”
  42. for leak in [‘BLOCKER’,‘CRITICAL’,“MAJOR”,‘MINOR’,‘INFO’]:
  43. search_data=sql_info % (p_uuid,leak)
  44. cursor.execute(search_data)
  45. bugs.append(cursor.fetchone()[0])
  46. db.close()
  47. return bugs
  48.  
  49. def select_leaks(p_uuid):
  50. leaks=[]
  51. db = pymysql.connect(host=“192.168.207.160”, port=3306, user=“sonar”, passwd=“sonar”, db=“sonar”)
  52. cursor = db.cursor()
  53.  
  54. sql_info = “SELECT count(*) FROM issues WHERE project_uuid=’%s’ and issue_type =3 AND severity =’%s'”
  55. for leak in [‘BLOCKER’,‘CRITICAL’,“MAJOR”,‘MINOR’,‘INFO’]:
  56. search_data=sql_info % (p_uuid,leak)
  57. cursor.execute(search_data)
  58. leaks.append(cursor.fetchone()[0])
  59. db.close()
  60. return leaks
  61.  
  62. def select_bad_tastes(p_uuid):
  63. tastes=[]
  64. db = pymysql.connect(host=“192.168.207.160”, port=3306, user=“sonar”, passwd=“sonar”, db=“sonar”)
  65. cursor = db.cursor()
  66.  
  67. sql_info=“SELECT count(*) FROM issues WHERE project_uuid=’%s’ and issue_type =1 AND severity =’%s'”
  68. for leak in [‘BLOCKER’,‘CRITICAL’,“MAJOR”,‘MINOR’,‘INFO’]:
  69. search_data=sql_info % (p_uuid,leak)
  70. cursor.execute(search_data)
  71. tastes.append(cursor.fetchone()[0])
  72. return tastes
  73. db.close()
  74.  
  75. curpath = os.getcwd()
  76. table_tem_name=“table.html”
  77. def generate_errmsg_table(s_lines=“”, total_data=[], bugs=[],leaks=[],tastes=[],report_url=“”):
  78. env = Environment(loader=FileSystemLoader(curpath, ‘utf-8’)) # 创建一个包加载器对象
  79. template = env.get_template(table_tem_name)
  80. html_content = (template.render(lins=s_lines,total_data=total_data, bugs=bugs,leaks = leaks,tastes=tastes,report_url=report_url))
  81. fh = open(report_html_path, ‘w’)
  82. fh.write(html_content)
  83. fh.close()
  84.  
  85. project_name = sys.argv[1]
  86. report_html_path=“report\\”+project_name+“.html”
  87. p_uuid, projectKey=select_project_uuid(project_name)
  88. s_lines,total_data=select_total_info(p_uuid)
  89. bugs=select_bugs(p_uuid)
  90. leaks=select_leaks(p_uuid)
  91. tastes=select_bad_tastes(p_uuid)
  92. report_url=“http://192.168.207.140:9000/dashboard?id=%s” %(projectKey)
  93. generate_errmsg_table(s_lines,total_data,bugs,leaks,tastes,report_url)

 table.html内容:

  1. <!DOCTYPE html>
  2. <html lang=“en”>
  3. <head>
  4. <meta charset=“GBK”>
  5. <body>
  6. <p style=fontweight:bold;>一、总体情况:</p>
  7. <ul>
  8. <li style=fontweight:bold;>整体运行情况:扫描代码行数:<span style=color:blue>{{lins}}</span>, bugs:<span style=color:red>{{total_data[0]}}</span>, 漏洞:<span style=color:red>{{total_data[1]}}</span>, 坏味道:<span style=color:red>{{total_data[2]}}</span></li>
  9. <li style=fontweight:bold;>URL地址:<a style=fontweight:bold; href={{report_url}} >{{report_url}}</a></li>
  10. </ul>
  11. <p style=fontweight:bold;>二、错误信息详情:</p>
  12. <table border=“1” cellpadding=“10” width=“540” height=“120”>
  13. <tr ><th></th><th>阻断</th><th>严重</th><th>主要</th><th>次要</th><th>提示</th><th>总数</th></tr>
  14. <tr bgcolor=#ECFFFF><td>bugs</td><td align=“center”>{{bugs[0]}}</td><td align=“center”>{{bugs[1]}}</td><td align=“center”>{{bugs[2]}}</td><td align=“center”>{{bugs[3]}}</td><td align=“center”>{{bugs[4]}}</td><td align=“center” style=color:red>{{total_data[0]}}</td></tr>
  15. <tr bgcolor=#D2E9FF><td>漏洞</td><td align=“center”>{{leaks[0]}}</td><td align=“center”>{{leaks[1]}}</td><td align=“center”>{{leaks[2]}}</td><td align=“center”>{{leaks[3]}}</td><td align=“center”>{{leaks[4]}}</td><td align=“center” style=color:red>{{total_data[1]}}</td></tr>
  16. <tr bgcolor=#ECFFFF><td>坏味道</td><td align=“center”>{{tastes[0]}}</td><td align=“center”>{{tastes[1]}}</td><td align=“center”>{{tastes[2]}}</td><td align=“center”>{{tastes[3]}}</td><td align=“center”>{{tastes[4]}}</td><td align=“center” style=color:red>{{total_data[2]}}</td></tr>
  17. </table>
  18. <br></br>
  19. </body>
  20. </html>

9、添加执行自定义生成邮件模板步骤

前提:由于要执行sonar.py脚本,所以jenkins所在机器要有python3环境,且安装了pymysql、jinja2,

     centos安装python3:

进入到sonar.py所在目录,执行命令:python3 sonar.py 项目名

执行完成后会在/root/.jenkins/sonar_script目录下生成html文件,

10、配置发送邮件

10.1 安装插件:Email Extension

10.2 在系统管理》》系统设置中设置

11、发送邮件

在job中添加步骤

内容选择HTML,打开高级选项

增加触发器,并打开高级选项

输入发送邮箱列表,以英文逗号分隔,和邮件内容,html就是上面步骤生成的

最终的邮件如下图:

Tags:

Share
26/02/2021 by devops linux 0

You may also like...

发表评论

分类

友情链接

独立开发者社区 极客兔兔