Background: I'm setting up a SonarQube instance for code inspection and I've enabled GitHub Authentication via OAuth. In the spirit of reducing attack vectors, I'd like to remove the username/password login text boxes and functionality. This will force users to only login with GitHub accounts tied to pre-approved organizations.
Is there a property I can set in the sonar.properties file to disable the traditional login form but keep the "Log in with GitHub" button?
It's not possible to disable the login/password form because we want you to be able to authenticate with a "local" user (for instance admin) if something go wrong with GitHub and you still want to authenticate an update settings or thinks like that.