Restrict site access after gaining access through LTI?

Restrict site access after gaining access through LTI?

Hans B0s -
回帖数:3

Hi All,

I've published an LTI test.
With it the name and mailadres of the new LTI user becomes available in the LTI-publishing site.
But. With it this user can also login to the LTI site and gains full user access?
What strategy to use to limit access.

Thanks,

Hans

平均分: -
回复Hans B0s

Re: Restrict site access after gaining access through LTI?

Jake Dallimore -
Core developers的头像 Moodle HQ的头像 Particularly helpful Moodlers的头像 Peer reviewers的头像 Plugin developers的头像 Testers的头像
Hi Hans,

When you consume the published tool resource (the assignment or course or whatever), you should be able to decide whether to send PII such as names and emails. If this data is omitted during a launch, the Moodle tool provider won't have access to this and will create the user account using other information from the launch. The Moodle consumer, for example, contains checkboxes allowing the teacher to control whether this information is sent during launches or not.

With regard to your query about site access: No, the users won't be able to log in to the site directly. The account is created for use with LTI launches only and, as such, must access the tool provider site via a resource link launch in the consumer/platform site.

Hope that helps.
Jake
平均分: -
回复Jake Dallimore

Re: Restrict site access after gaining access through LTI?

Rodolfo Monterroso -
Jake,

I am a publisher and I am trying to grant access to my course/textbooks materials to moodle users (for example in a different moodle deployment) as an external tool (publishing the course as LTI) , but I only want to give access to such material to those students who can validate that they purchased the book (for example via a unique code printed in the textbooks or actually, any other validation method would work, but the goal is to not grant free access to the external course to all people enrolled in the school's course, but rather to validate from my end that they made a purchase)... have you heard of a similar case or can you provide any ideas on what can be done? Maybe I need to develop something but what would be the direction of this development? (maybe it's not even possible, and maybe it would be better to use my own LMS as the source of the LTI access point so I can control who is actually validated, but then again, I hope the first scenario is possible)

Thanks,

Rodolfo
平均分: -
回复Rodolfo Monterroso

Re: Restrict site access after gaining access through LTI?

Jake Dallimore -
Core developers的头像 Moodle HQ的头像 Particularly helpful Moodlers的头像 Peer reviewers的头像 Plugin developers的头像 Testers的头像
Hi Rodolfo,

I believe the original LTI provider plugin did in fact have this feature but it was dropped when moving the code into core Moodle. My understanding of the way this feature was built is as follows:
1) It allowed you to configure whether or not the launching user (student or teacher), would be enrolled in the course on launch. This was called automatic enrollment.
2) If automatic enrollment was deselected (a checkbox), it would redirect to the course enrolment page, where the user could then enrol via some other (perhaps paid) means. (See the old language string here)

There's also MDL-64762, which references this feature.

So, this isn't something we have in core Moodle, no. Perhaps others will have some ideas on how to best achieve what you're looking for.

Cheers,
平均分: -