Hi,
Does anyone have an idea on what parameters is the "oauth_signature" generated when a LTI 1.0/1.1 tool is launched and passed to the launch URL?
On the tool launch, I am trying to verify the launch request based on the params received, sign it, and match the generated signature with the one sent in the request. But the signatures are not matching, moodle is sending a lot of parameters with the request, I am not sure based on what all params should I create a base string and then sign it.
Any help would be appreciated, thanks.
Hi Bhavesh,
Firstly, please note that LTI 1.1 has been deprecated for years now and is not recommended by 1EdTech. Tools should be moving to LTI 1.3 and LTI Advantage.
Disclaimer aside, you can find an example of the base string in the LTI 1.1 Implementation Guide. https://www.imsglobal.org/specs/ltiv1p1/implementation-guide.
Cheers,
Firstly, please note that LTI 1.1 has been deprecated for years now and is not recommended by 1EdTech. Tools should be moving to LTI 1.3 and LTI Advantage.
Disclaimer aside, you can find an example of the base string in the LTI 1.1 Implementation Guide. https://www.imsglobal.org/specs/ltiv1p1/implementation-guide.
Cheers,
Hi Jake,
Thanks for your response, I got the same question about the base string used in LTI 1.1 to sign a Deep Linking response. Would you have any clue?
Thanks in advance
Thanks for your response, I got the same question about the base string used in LTI 1.1 to sign a Deep Linking response. Would you have any clue?
Thanks in advance