Overview

This plugin displays a report page and matches user accounts in Moodle with an LDAP directory in the organisation. Various filters can be used to select users. The report may also be exported.

Another functionality of the plugin is that it provides a cli script. This has the same functionality like the report page, but can also be used to automatically suspend, delete accounts or set the emailstop flag for the user.

Use case

The use case for the need of this plugin was that the Moodle authentication is done via Shibboleth (an SSO service). If the user is authenticated via the SSO provider and the identity service of the institution, the user is redirected to Moodle together with some information who he is. He then is logged in or even created. A LDAP directory may work here as the identity provider for Shibboleth but there is no direct connection from/to Moodle.

Whenever a user drops out of the institution the identity provider will not allow to log him in anymore. However, the account in Moodle is still active and emails may be send out to the users email address.

Therefore, there is a need to detect such users and disable or delete them from Moodle once they do not yet exist in the LDAP anymore. The CLI script should automate the process e.g. at each start of a new term.