Hi,
We have a client that is looking to use a Moodle instance with the Moodle Mobile local plugin, and the Moodle Mobile app. They need to use the SSO option of the local plugin, as they use CAS, as well as SAML as their authentication mechanisms for Moodle.
Unfortunately the authentication doesn't work as intended. What happens is typically something like this:
- Open the Moodle Mobile app
- Enter the instance URL
- Be redirected to Moodle authentication form (in a browser window)
- Enter credentials into the CAS authentication form
- Be redirected back to the Moodle Mobile app
- Access a course
- Attempt to access an assignment
- Be redirected to the Moodle CAS authentication form (in an embedded browser window)
- Enter credentials into the CAS authentication form
- Tapping the 'login' button doesn't work
- Tap the 'Done' button in the bottom left hand corner of the embedded browser window
- See the Moodle Mobile app
- Try attempting to access the same assignment
- Be redirected to the Moodle SAML authentication form (in an embedded browser window)
- Enter credentials into the SAML authentication form
- Access the assignment in the embedded browser window
As you can see, accessing content that cannot be rendered in the Moodle Mobile app, such as an assignment, results in being prompted for the same authentication information twice. Once by the CAS authentication form, which appears to error as tapping the login button doesn't work. Followed by the SAML authentication plugin.
Does anyone have any experience in debugging authentication issues like this? There are no errors reported in the server logs, and because I'm testing on the device I don't see any browser warnings or JavaScript related errors.
I've also tried using the Moodle Mobile simulator, but nothing jumps out at me as being an issue. There certainly isn't anything printed to the console.
Looking at the HTTP / HTTPS traffic between the device and Moodle instance also doesn't highlight any issues.
Any thoughts on approaches to debugging this issue are very welcome.
-Corey