Adding to this BIAF ('blog in a forum') ....
Seems the agenda and items to discuss/cuss as well as who has tested what and reporting on those test, is kinda out the window every WebEx meeting ... anyhoo ... the only way I can see anything with this CustomOauth2 setup is from the Moodle end.
One of the features that is interesting is linkedlogin:
https://docs.moodle.org/33/en/Linked_logins
I can confirm that appears to work ... only way I can confirm is to look at web server logs and DB tables. And that's what this is about .... what's in those tables ....
select * from `mdl_auth_oauth2_linked_login
does show accounts that have been linked.
But in looking at mdl_user table for the same users, their auth has not changed ... still manual.
They do have to confirm ... apparently they have 30 minutes to do so. Dunno how that confirmation is done ... I imagine EMail (which has been turned off on this sandbox server). Four users so far are in that table. One user in the table hasn't confirmed.
For that info to show up in tables, those 4 had to click the button for logging into the IDM server ... which, BTW, appears to be behind CloudFlare *and* on Amazon (guess they have big plans for it). 2 of those users show in mdl_user as oauth2 ... 2 of those users in mdl_user show manual still.
Since the mdl_user table hasn't changed and still shows auth is 'manual' ... not oauth2 ... am wondering now IF that means users could still use the 'standard' login as before ... the manual dialog boxes username/password. Those users could login either way.
Since customoauth2 new in 3.3 and 3.4 am wondering if behavior such as described above will change one day in an update or upgrade (kinda like how Google Docs did in Repos in version 2 of Moodle).
Now I know that's a crystal ball question ... but ....
Anyhoo ... not that the suspense will peak anyone's interest ... but I'll report back to this BIAF when/if any new discovery is made. Just hope, for the entities sake, they haven't gone down a road with customoauth2 that one day causes major disruption.
'spirit of sharing', Ken