Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-29583

The Shibboleth authentication plugin should be accessible via the login/token.php file

    XMLWordPrintable

    Details

    • Testing Instructions:
      Hide
      Prerequisite.
      1. The shibboleth authentication module enabled.
      2. A user successfully authenticated with shibboleth.
      Test 1
      1. Go to 'Site administration' > 'Plugins' > 'Web services' > 'Manage tokens'.
      2. Click 'Add'.
      3. Select the user that was authenticated via Shibboleth.
      4. Select the 'Moodle mobile web service' as the 'Service'.
      5. Visit 'Site administration' > 'Plugins' > 'Shibboleth'.
      6. Enable the 'Attempt to log into Shibboleth in the background' setting and save.
      7. Try curl "<yoursite>/login/token.php?username=myself&password=myself&service=moodle_mobile_app". Note - change the URL, username and password to match your set-up.
      8. Confirm you get the token back for the Shibboleth user.
      Show
      Prerequisite. The shibboleth authentication module enabled. A user successfully authenticated with shibboleth. Test 1 Go to 'Site administration' > 'Plugins' > 'Web services' > 'Manage tokens'. Click 'Add'. Select the user that was authenticated via Shibboleth. Select the 'Moodle mobile web service' as the 'Service'. Visit 'Site administration' > 'Plugins' > 'Shibboleth'. Enable the 'Attempt to log into Shibboleth in the background' setting and save. Try curl "<yoursite>/login/token.php?username=myself&password=myself&service=moodle_mobile_app" . Note - change the URL, username and password to match your set-up. Confirm you get the token back for the Shibboleth user.
    • Affected Branches:
      MOODLE_21_STABLE, MOODLE_33_STABLE, MOODLE_34_STABLE
    • Pull Master Branch:
      MDL-29583_shibboleth

      Description

      Token.php doesn't support CAS/LDAP/...

      I guess the solution should be generic to any authentication plugins. Some authentication plugin that doesn't support login/password connection (like oauth2, webservice,...) would return false and fail. All other authentication plugins should try to authenticate against their own method.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                6 Vote for this issue
                Watchers:
                14 Start watching this issue

                Dates

                • Created:
                  Updated: