We have a third party site (different server) that uses Web Services to create new moodle users and assign them to a course. We have that part working fine and are happy with that.
We now want that user to be able to click on a link to go directly to that course without having to log in. We are having difficulty with figuring out how to accomplish this.
We actually figured out how to use curl to make PHP (on the third party site) to log in and go directly to the course. To the user they were seeing the course. But of course as soon as they clicked on anything they were logged out. That made sense because the cookie resided on the third-party site's server, not the user's browser. So that is likely not going to work.
We now want that user to be able to click on a link to go directly to that course without having to log in. We are having difficulty with figuring out how to accomplish this.
We actually figured out how to use curl to make PHP (on the third party site) to log in and go directly to the course. To the user they were seeing the course. But of course as soon as they clicked on anything they were logged out. That made sense because the cookie resided on the third-party site's server, not the user's browser. So that is likely not going to work.
started to look at installing LDAP and Shibboleth on the same server as the moodle server, but with each it seems like we
would then need to create some type of web-facing tool that would allow them to add the user into LDAP/Shibboleth. This doesn't sound right to us.
What should we be doing? Are we going to need to create a custom authentication module? How would we do something like that that won't simply pass along the course to go to and a token/id that could be copied/pasted by a user?