Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-74654

Add role parameter, phase out moderatorPW and attendeePW from create, and password from join

XMLWordPrintable

    • Icon: Improvement Improvement
    • Resolution: Fixed
    • Icon: Minor Minor
    • 4.0.5
    • 4.0.1, 4.0.4
    • BigBlueButton
    • MOODLE_400_STABLE
    • MOODLE_400_STABLE
    • MDL-74654-master
    • Hide
      1. Login as admin
      2. Enable BBB activity module in Site administration->Plugins->Manage activities
      3. Create BBB activity B1
      4. Create and enroll User1 as student in B1
      5. Enter BBB sessionĀ 
      6. On BBB activity page check admin has entered session as Moderator
      7. In a private browser, sign in as User1
      8. Enter BBB session
      9. On BBB activity page check User1 has entered session as Viewer
      Show
      Login as admin Enable BBB activity module in Site administration->Plugins->Manage activities Create BBB activity B1 Create and enroll User1 as student in B1 Enter BBB sessionĀ  On BBB activity page check admin has entered session as Moderator In a private browser, sign in as User1 Enter BBB session On BBB activity page check User1 has entered session as Viewer

      Since version 2.4, BBB can use a parameter that defines the role to be used in the BBB session instead of the so called 'password' with is problematic with modern browsers.

      To give a bit of context, the so called `password` used in the URL in plain text is not a real password, but a token or identifier to be used to define the role a user should have in a meeting.

      The URLs used by BBB are in some way protected by a hash calculated using a shared secret. Therefore, `password` would not (should not and could not) be used for authenticating the user.

      The idea is that

      • create would no longer include modPW nor viewerPW,
      • join will use instead of password the designated role, such as role=moderator|viewer

      See https://github.com/bigbluebutton/bigbluebutton/pull/13589

      We will not be removing the password currently, but only adding the role parameter. Phasing out of password use will most likely take place in BBB v2.6

        1. master_1_MDL-74654.png
          master_1_MDL-74654.png
          14 kB
        2. master_2_MDL-74654.png
          master_2_MDL-74654.png
          16 kB
        3. v400_1_MDL-74654.png
          v400_1_MDL-74654.png
          30 kB
        4. v400_2_MDL-74654.png
          v400_2_MDL-74654.png
          22 kB

            shamiso.jaravaza Shamiso Jaravaza
            jfederico Jesus Federico
            Laurent DAVID Laurent DAVID
            Ilya Tregubov Ilya Tregubov
            John Edward Pedregosa John Edward Pedregosa
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated:
              Resolved:

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 40 minutes
                40m

                  Error rendering 'clockify-timesheets-time-tracking-reports:timer-sidebar'. Please contact your Jira administrators.