-
Bug
-
Resolution: Done
-
Blocker
-
4.3.0
-
-
MOODLE_403_STABLE
-
MOODLE_404_STABLE
-
Moodle Apps - 2024 i2.1, Moodle Apps - 2024 i2.2
This needs to be solved in LMS but meanwhile we need to at least try to handle some of the most typical use cases.
This affects any embedded media in the app that doesn't use core-external-content, like the site logo. These are the places that I detected that embed resources that can be online and we don't use core-external-content:
- mod_url configured to embed an image, audio or video. Using core-external-content means that the file will be downloaded.
- Grades: in grades we can display image (row.image / grade.image).
- Site logo in several places: user menu, credentials page, reconnect page, site finder (next to the site in the results).
- Login providers logos (OAuth), we display the icon in the OAuth button.
Decisions taken:
- For mod_url, we'll fix the URL if needed to use tokenpluginfile or webservice/pluginfile. It won't be downloaded.
- For grades, we will use external-content to download the images like we do with mod icons.
- For site logo, if the user is already authenticated we'll use core-external-content to download the logo. When user isn't authenticated, we'll fetch/download the logo and display it locally (either from a local URL or from a data URL, depending what's easier).
- For OAuth logos, we won't do anything because they shouldn't use pluginfile.php endpoint.
- Also, we noticed that the cookie can cause problems when opening InAppBrowser with auto-login, so we decided to clear the session cache when opening an InAppBrowser with auto-login in Android.