Update .gitea/workflows/sonar-scan.yaml

.gitea/workflows/sonar-scan.yaml

@@ -77,10 +77,10 @@ jobs:
       - name: SonarQube analysis
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-          SONAR_HOST_URL: ${{ vars.SONAR_HOST_URL }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
         run: |
           ./mvnw -B sonar:sonar \
-            -Dsonar.projectKey=${{ vars.SONAR_PROJECT_KEY }} \
+            -Dsonar.projectKey=${{ secrets.SONAR_PROJECT_KEY }} \
             -Dsonar.projectName="Spring PetClinic" \
             -Dsonar.host.url="${SONAR_HOST_URL}" \
             -Dsonar.token="${SONAR_TOKEN}" \
@@ -92,14 +92,14 @@ jobs:
       - name: Quality Gate check
         env:
           SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
-          SONAR_HOST_URL: ${{ vars.SONAR_HOST_URL }}
+          SONAR_HOST_URL: ${{ secrets.SONAR_HOST_URL }}
         run: |
           echo "Waiting for SonarQube to process the analysis..."
           STATUS=""
           for i in $(seq 1 24); do   # up to ~2 minutes
             RESPONSE=$(curl -sf \
               -u "${SONAR_TOKEN}:" \
-              "${SONAR_HOST_URL}/api/qualitygates/project_status?projectKey=${{ vars.SONAR_PROJECT_KEY }}" \
+              "${SONAR_HOST_URL}/api/qualitygates/project_status?projectKey=${{ secrets.SONAR_PROJECT_KEY }}" \
               || true)
             STATUS=$(echo "$RESPONSE" | python3 -c \
               "import sys,json; print(json.load(sys.stdin)['projectStatus']['status'])" \
@@ -113,7 +113,7 @@ jobs:
 
           echo "Quality Gate status: $STATUS"
           if [ "$STATUS" = "ERROR" ]; then
-            echo "❌ Quality Gate FAILED — check ${{ vars.SONAR_HOST_URL }}/dashboard?id=${{ vars.SONAR_PROJECT_KEY }}"
+            echo "❌ Quality Gate FAILED — check ${{ secrets.SONAR_HOST_URL }}/dashboard?id=${{ secrets.SONAR_PROJECT_KEY }}"
             exit 1
           elif [ "$STATUS" = "OK" ]; then
             echo "✅ Quality Gate PASSED"