UPDATE ......From Tuesday 8 April 2025 we have changed the way that Single Sign-on works on this wiki. Please see here for more information:
Update
...
- Tokens that have not been used for more than 12 months will be automatically revoked without prior notice.
- Users are responsible for managing their personal tokens, i.e. they should check them regularly and remove the ones that are no longer in use.
- When a project is discontinued or it does not need SonarQube anymore, the associated token should be removed immediately to prevent unauthorized access.
User Deletion Policy
The Geant SonarQube instance implements a user retention policy to ensure security and efficient account management. To prevent the accumulation of inactive accounts:
Users who have not logged in for more than 2 years can be deleted without prior notice.
It is the responsibility of users to maintain active access if they wish to retain their account.
When a user account is deleted, all associated personal tokens and project permissions will be permanently removed.
If a deleted user needs access again, they can re-register via sing in with their federated account by SSO and they need to request the necessary permissions from an administrator.
Project owners should ensure that critical project permissions are not solely assigned to inactive users to prevent disruptions.