OpenID Connect

Authentication ::: auth_oidc
Maintained by Enovation Dev Team, Lai Wei
Part of set Microsoft 365.
The OpenID Connect plugin provides single-sign-on functionality using configurable identity providers.
Latest release:
7939 sites
3k downloads
92 fans
Current versions available: 7

OpenID Connect Authentication Plugin

The OpenID Connect plugin provides single-sign-on functionality using configurable identity providers, including Azure Active Directory. It is used as part of the Microsoft 365 suite of plugins to connect to Azure Active Directory, but can be configured to provide SSO integration between Moodle and other OpenID Connect providers as well.

This is part of the suite of Microsoft 365 plugins for Moodle.

To follow active development on GitHub, or to find historical versions, click here.

The supported Moodle versions of this plugin is in line with core Moodle version support.

Questions and issue reporting

Github should be used for reporting issues found when configuring or using the plugin, and to ask questions. The comments area on this page is not actively monitored.

Contributing

Before we can accept your pull request, you'll need to electronically complete Microsoft's Contributor License Agreement. If you've done this for other Microsoft projects, then you're already covered.

Why a CLA? (from the FSF)

Copyright

(c) Microsoft, Inc.

Code for this plugin is licensed under the GPLv3 license.

Any Microsoft trademarks and logos included in these plugins are property of Microsoft and should not be reused, redistributed, modified, repurposed, or otherwise altered or used outside of this plugin.

Screenshots

Screenshot #0
Screenshot #1
Screenshot #2

Contributors

Enovation Dev Team (Lead maintainer)
Vinayak (Vin) Bhalerao
Please login to view contributors details and/or to contact them

Comments RSS

Prikaži komentare
  • Philippe Matabiau
    sub, 5. feb 2022., 01:28
    Hi,
    in french translation, I have found a mistake in cfg_field_mapping_desc (< /a> with space between < and /). This break all the bloc "Data mapping".
    I have fixed it with language customisation Moodle tool, but I don't know where to report this error. "cfg_field_mapping_desc" isn't in lang/fr/auth_oidc.php file.
  • Lai Wei
    sub, 5. feb 2022., 05:18
    Hi @Philppe Matabiau, please report issues or ask questions in github at https://github.com/microsoft/o365-moodle/issues. For your particular issue, could you clarify the plugin version you are using please.

    Regards,
    Lai
  • Philippe Matabiau
    uto, 8. feb 2022., 22:45
    ho yes @Lai Wei, sorry.
    We use the 3.9.8 now. But it's since at least the 3.9.7.
  • Lai Wei
    uto, 8. feb 2022., 22:54
    Hi Philippe, you are right that the string with identifier "cfg_field_mapping_desc" doesn't exist in the French language file. Most recent language file changes were applied to English only. We have plan to update language string files for a few languages that we have capability, but this has yet been scheduled. I checked the English language string file and the default string doesn't contain the error, i.e. the tag was closed correctly. So in standard installation without customisation, I suppose this should work. Please let me know if you see different.

    Lai
  • Alexis Boza
    čet, 23. jun 2022., 07:59
    The update of 3.11, was the worst update by far... Mapped Fields simply does not work at all....
  • Papeace Ndiaye
    sri, 29. jun 2022., 05:19
    Hello I,m new user of oidc iwant to set email from the token as the oidcuniqid
  • Pedro Crispim
    uto, 11. okt 2022., 19:59
    I have major issues installing the latest version of the plugin with Moodle 4.0.4.
    Check here: https://moodle.org/mod/forum/discuss.php?d=439218
  • Viviana Carnemolla
    čet, 20. okt 2022., 19:24
    If I have an existing user in Moodle, created for example with manual registration and then this same user uses his email to log in with my SSO, a duplicate user is created in Moodle. How can I prevent this? How can I associate the new user created via SSO with the existing user in Moodle?
  • Oswaldo Rojas
    čet, 20. okt 2022., 19:39
    Hi, please report your issues to Github so we can get back to you individually in an organised way: https://github.com/microsoft/o365-moodle/issues. Viviana, Site administration - Plugins - Manage authentication -> Enable the option authpreventaccountcreation and it will stop any authentication methods from creating new accounts first time login.
  • Friedhelm
    sri, 26. okt 2022., 21:53
    Hi!

    With the update to plugin version 3.11.5 from October 12, 2022, the login button for the authentication request disappeared. Our learners can no longer log in. The settings in Moodle have all remained the same.

    Is this a problem in the plugin or can we install the plugin version for Moodle 4 for Moodle 3.11.10 and will that solve the problem?

    Many greetings
    Friedhelm
  • Kateryna Martynenko
    uto, 31. jan 2023., 06:16
    Hey,

    I wonder if the plugin could be used for Clever SSO integration into Moodle?

    Kateryna
  • Tom Tom
    pet, 14. apr 2023., 07:47
    I see the OpenID Connect login along side manual uid/pwd login. I click the OpenID Connect login. I get redirected to the Windows server and authenticate. I get redirected back to Moodle. But I see this: "Error in OpenID Connect: Wrong authentication method used. MUST use 'client_secret_basic'" It appears that the Windows server is posting the response. Why does this plugin not handle it? Is there a setting I'm missing to set up installation? Thanks
  • cristian bodda
    sri, 15. nov 2023., 02:47
    Good morning everyone, I have a problem that I can't solve with Open Id connect, could you help me? I'm trying to make open Id connect work in our school, in a Moodle 3.2 platform with the old version 4.0.1
    2022041905 of open id connect everything works perfectly.
    With the new version of Moodle 4.2 and the specific open id connect plugin for Moodle 4.2 nothing works anymore. The version of the Opne Id connect Plugin that does not work is this: 4.2.2 ; 2023042410

    Activity ID: 55b79301-a33f-43fa-0646-0080010000ad
    Relying party: test.formazione-polizia.ti.ch
    Error details: MSIS9223: Received invalid OAuth authorization request. The received 'client_id' is invalid as no registered client was found with this client identifier. Make sure that the client is registered. Received client_id: 'https://test.formazione-polizia.ti.ch/auth/oidc/'.
    Node name: f7ab8949-9558-457d-8280-11bf8f605f8d
    Error time: Tue, 14 Nov 2023 18:45:35 GMT
    Cookie: enabled
    User agent string: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/119.0

    Can anyone help me? Thank you
  • Eurecat Academy
    uto, 12. dec 2023., 23:38
    Hello,

    Thank you for the plugin!

    We attempted to connect Keycloak with Moodle 4.2.2+ (Build: 20230822) using this plugin.

    We have taken the following steps:

    1- We created the client in Keycloak.
    2- We set the redirect URI (provided by the plugin) in Keycloak.
    3- In the plugin settings, we configured the authorization endpoint, token endpoint, resource, identity provider (IdP) type: other, and client secret.
    4- We tested logging in. We were able to log in using OpenID, which directed us to Keycloak. However, when it attempted to redirect to Moodle, we encountered the following error:
    403 Forbidden
    You don't have permission to access this resource.
    Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.

    Could you please help us?
  • Syusan Jun
    čet, 11. jan 2024., 14:05
    When using "Microsoft identity platform (v2.0)" IdP type, use v2.0 endpoint, e.g.

    When using "Microsoft identity platform (v2.0)" IdP type, use v2.0 endpoint, e.g.
    https://login.microsoftonline.com/common/oauth2/v2.0/authorize
1 2 3 4 5 6 7
Please login to post comments