OpenID Connect

Authentication ::: auth_oidc
Maintained by Enovation Dev Team, James McQuillan, Zion Brewer, Nima Mojgani
The OpenID Connect plugin provides single-sign-on functionality using configurable identity providers.
Latest release:
8065 sites
3k downloads
90 fans
Current versions available: 6

OpenID Connect Authentication Plugin

The OpenID Connect plugin provides single-sign-on functionality using configurable identity providers, including Azure Active Directory. It is used as part of the Microsoft 365 suite of plugins to connect to Azure Active Directory, but can be configured to provide SSO integration between Moodle and other OpenID Connect providers as well.

This is part of the suite of Microsoft 365 plugins for Moodle.

To follow active development on GitHub, or to find historical versions, click here.

This plugin is updated with stable Moodle releasesThis means as of October 2022:

  • The versions for Moodle 3.11 and 4.0 gets full support. Any new features are guaranteed to be added to these two versions.
  • The version for Moodle 3.9 gets security support. New features are not to be added to this version, but some bug fixes may be added.
  • All other versions, included the one for Moodle 3.10, are out of support.

Questions and issue reporting

Github should be used for reporting issues found when configuring or using the plugin, and to ask questions. The comments area on this page is not actively monitored.

Contributing

Before we can accept your pull request, you'll need to electronically complete Microsoft's Contributor License Agreement. If you've done this for other Microsoft projects, then you're already covered.

Why a CLA? (from the FSF)

Copyright

(c) Microsoft, Inc.

Code for this plugin is licensed under the GPLv3 license.

Any Microsoft trademarks and logos included in these plugins are property of Microsoft and should not be reused, redistributed, modified, repurposed, or otherwise altered or used outside of this plugin.

Sets

This plugin is part of set Microsoft 365.

Screenshots

Screenshot #0
Screenshot #1
Screenshot #2

Contributors

Enovation Dev Team (Lead maintainer)
Vinayak (Vin) Bhalerao
Akinsaya Delamarre
Please login to view contributors details and/or to contact them

Comments RSS

Show comments
  • jeffrey yuan
    Wed, Dec 22, 2021, 2:49 AM
    Hi, I have an issue that when a Microsoft user logs in with the "OpenID Connect" button, it will direct the user to the user's profile of Moodle. After the user edits the first and last name and registered Azure user email, he/she can't go to the dashboard or anywhere in the Moodle rather than stay on the profile page. It looks like the user redirects to the profile page whenever clicking any other link of the dashboard, site home, or others. Is this something that can be fixed? My Moodle is running on the newest edition. Thank you.
  • Lai Wei
    Wed, Dec 22, 2021, 5:44 PM
    Hi @Jeffrey Yuan, please report issues or ask questions in github at https://github.com/microsoft/o365-moodle/issues. For your particular question, please check the profile field locking settings and ensure users have permissions to update their profile fields. The force redirect happens if the account doesn't have a "complete" profile, which by default contains first name, last name and email fields. If no field mapping is set up in auth_oidc, these fields would be empty in Moodle user profile, therefore triggering the redirect. If the fields are set to be locked, users won't be able to edit them, effectively creating a deadlock. Please check if it's the case.

    Regards,
    Lai
  • Philippe Matabiau
    Sat, Feb 5, 2022, 1:28 AM
    Hi,
    in french translation, I have found a mistake in cfg_field_mapping_desc (< /a> with space between < and /). This break all the bloc "Data mapping".
    I have fixed it with language customisation Moodle tool, but I don't know where to report this error. "cfg_field_mapping_desc" isn't in lang/fr/auth_oidc.php file.
  • Lai Wei
    Sat, Feb 5, 2022, 5:18 AM
    Hi @Philppe Matabiau, please report issues or ask questions in github at https://github.com/microsoft/o365-moodle/issues. For your particular issue, could you clarify the plugin version you are using please.

    Regards,
    Lai
  • Philippe Matabiau
    Tue, Feb 8, 2022, 10:45 PM
    ho yes @Lai Wei, sorry.
    We use the 3.9.8 now. But it's since at least the 3.9.7.
  • Lai Wei
    Tue, Feb 8, 2022, 10:54 PM
    Hi Philippe, you are right that the string with identifier "cfg_field_mapping_desc" doesn't exist in the French language file. Most recent language file changes were applied to English only. We have plan to update language string files for a few languages that we have capability, but this has yet been scheduled. I checked the English language string file and the default string doesn't contain the error, i.e. the tag was closed correctly. So in standard installation without customisation, I suppose this should work. Please let me know if you see different.

    Lai
  • Alexis Boza
    Thu, Jun 23, 2022, 7:59 AM
    The update of 3.11, was the worst update by far... Mapped Fields simply does not work at all....
  • Papeace Ndiaye
    Wed, Jun 29, 2022, 5:19 AM
    Hello I,m new user of oidc iwant to set email from the token as the oidcuniqid
  • Pedro Crispim
    Tue, Oct 11, 2022, 7:59 PM
    I have major issues installing the latest version of the plugin with Moodle 4.0.4.
    Check here: https://moodle.org/mod/forum/discuss.php?d=439218
  • Viviana Carnemolla
    Thu, Oct 20, 2022, 7:24 PM
    If I have an existing user in Moodle, created for example with manual registration and then this same user uses his email to log in with my SSO, a duplicate user is created in Moodle. How can I prevent this? How can I associate the new user created via SSO with the existing user in Moodle?
  • Oswaldo Rojas
    Thu, Oct 20, 2022, 7:39 PM
    Hi, please report your issues to Github so we can get back to you individually in an organised way: https://github.com/microsoft/o365-moodle/issues. Viviana, Site administration - Plugins - Manage authentication -> Enable the option authpreventaccountcreation and it will stop any authentication methods from creating new accounts first time login.
  • Friedhelm
    Wed, Oct 26, 2022, 9:53 PM
    Hi!

    With the update to plugin version 3.11.5 from October 12, 2022, the login button for the authentication request disappeared. Our learners can no longer log in. The settings in Moodle have all remained the same.

    Is this a problem in the plugin or can we install the plugin version for Moodle 4 for Moodle 3.11.10 and will that solve the problem?

    Many greetings
    Friedhelm
  • Kateryna Martynenko
    Tue, Jan 31, 2023, 6:16 AM
    Hey,

    I wonder if the plugin could be used for Clever SSO integration into Moodle?

    Kateryna
  • Tom Tom
    Fri, Apr 14, 2023, 7:47 AM
    I see the OpenID Connect login along side manual uid/pwd login. I click the OpenID Connect login. I get redirected to the Windows server and authenticate. I get redirected back to Moodle. But I see this: "Error in OpenID Connect: Wrong authentication method used. MUST use 'client_secret_basic'" It appears that the Windows server is posting the response. Why does this plugin not handle it? Is there a setting I'm missing to set up installation? Thanks
  • cristian bodda
    Wed, Nov 15, 2023, 2:47 AM
    Good morning everyone, I have a problem that I can't solve with Open Id connect, could you help me? I'm trying to make open Id connect work in our school, in a Moodle 3.2 platform with the old version 4.0.1
    2022041905 of open id connect everything works perfectly.
    With the new version of Moodle 4.2 and the specific open id connect plugin for Moodle 4.2 nothing works anymore. The version of the Opne Id connect Plugin that does not work is this: 4.2.2 ; 2023042410

    Activity ID: 55b79301-a33f-43fa-0646-0080010000ad
    Relying party: test.formazione-polizia.ti.ch
    Error details: MSIS9223: Received invalid OAuth authorization request. The received 'client_id' is invalid as no registered client was found with this client identifier. Make sure that the client is registered. Received client_id: 'https://test.formazione-polizia.ti.ch/auth/oidc/'.
    Node name: f7ab8949-9558-457d-8280-11bf8f605f8d
    Error time: Tue, 14 Nov 2023 18:45:35 GMT
    Cookie: enabled
    User agent string: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0

    Can anyone help me? Thank you
1 2 3 4 5 6 7
Please login to post comments