External services and authorised users.

External services and authorised users.

by Juan Leyva -
Number of replies: 1
Picture of Core developers Picture of Moodle HQ Picture of Particularly helpful Moodlers Picture of Plugin developers Picture of Testers

I have a question about how Moodle handle this:

1 - I have created a external service for all users

2 - I have login into Moodle with a user with capabilities for creating tokens for external services

3 - I have created a token for this user for the external service created at point 1

4 - I have edit the external service and changed permissions to allow only authorised users. At this moment, there are no authorised users

5 - User mentioned at point 3 can see his token for the service despite the fact is not in the authorised user list

Will this use be able to use this token despite is not in the list of authorised users?

PD: I'm using the demo site for testing thinks like this because is the most updated Moodle I have access

Regards

Average of ratings: -
In reply to Juan Leyva

Re: External services and authorised users.

by Jérôme Mouneyrac -

Hi Juan,

if the user is not authorised, the token will fail to allow access to the service.

We have an issue for the fact that the token is displayed: MDL-28670. It should be marked as invalid.

Average of ratings: -