Moodle plugins directory: OpenID Connect

Is there a way to get the 'email' attribute for the user, when using oidc to create a new account. This would be very crucial for me, since I got some automatic actions based on users email.

Hi,

I am trying to consume this library with existing Identityserver 3 integration.
I am using

$plugin->version = 2016120501;
$plugin->requires = 2016120500;
$plugin->component = 'auth_oidc';
$plugin->maturity = MATURITY_STABLE;
$plugin->release = '3.2.0.1';

and I have one client in Identityserver 3 with
redirect URI
Flow is Authorization code
Logout Uri and almost everything.
I have already tried this client(idsrv3) with another application and it is working fine.

In DashboardSite --> administration -->Plugins -->Authentication -->OpenID Connect

i have configure
Provider name = OpenID Connect
ClientId = same as idsrv3
Authorization endpoint= https://myidentityserver3.com/identity
Token Endpoint= https://myidentityserver3.com/identity/connect/token
Redirect URI = https://localhost/moodle/auth/oidc/
Authentication Method = Authorization Code Flow (recommended)

but it is not showing any link or any changes on my login page.
please suggest me if it works with identityserver3 or not.
if yes then what is I am missing?

Thanks,
ajay kotnala
kotnala.ajayk@gmail.com

We are currently using the OIDC plugin for Office 365 authentication. Would there be any benefit to moving from the OIDC plugin to the built in OAuth2 plugin available in Moodle 3.3 core? It seems to me that OIDC would be the better choice, but I was hoping to get input from those more knowledgeable than me.

Thanks

Can we use the plugin for SSO with confluence and moodle ? We try to find singal sign on plugin for confluence and moodle . Thanks a lot.

What happens if a username (upn) is updated in ADFS? As far as I can see in loginflow/authcode.php/handlelogin it then tries to login with the old username even though this was updated in Moodle as well.

Thanks,
Willem

We have Moodle 2.7. I've installed your plugin. But when I click on the OpenID Connect icon on the login page I get
[12-Mar-2018 21:31:10 UTC] Default exception handler: Error in OpenID Connect. Please check logs for more information. Debug:
Error code: erroroidccall
* line 47 of /auth/oidc/classes/utils.php: moodle_exception thrown
* line 252 of /auth/oidc/classes/oidcclient.php: call to auth_oidc\utils::process_json_response()
* line 177 of /auth/oidc/classes/loginflow/authcode.php: call to auth_oidc\oidcclient->tokenrequest()
* line 84 of /auth/oidc/classes/loginflow/authcode.php: call to auth_oidc\loginflow\authcode->handleauthresponse()
* line 105 of /auth/oidc/auth.php: call to auth_oidc\loginflow\authcode->handleredirect()
* line 29 of /auth/oidc/index.php: call to auth_plugin_oidc->handleredirect()

It looks like in utils.php there is a NULL value. Where do I start debugging this?

How can I add a regular expression to the OpenID Connect User Restrictions field? I have added google.com and @google.com so only those with a google.com email address can use the SSO access. But both times I get an error:

This site has restrictions in place on the users that can log in with OpenID Connect. These restrictions currently prevent you from completing this login attempt.

We are using an Identity Server 4. Should this parameter be established there or can we just do it at the LMS?

I'm facing basically the same problem as @A Guy , only difference being authcode.php seems to have gotten an extra 21 lines on my system. Does anyone have any thoughts, ideas, suggestions?

Hello! We're all good to go with the plugins - when we use the csv method of bulk connecting moodle accounts to office365, all is great.

We're trying to figure out creation of new user accounts. We do not have the auto create account setting turned on (currently set to prevent) because we have some AD users that should not be able to sign into moodle. When we create a new account and tell it to use Open ID connect, the user gets "Invalid login: User not found in Moodle. If this site has the "authpreventaccountcreation" setting enabled, this may mean you need an administrator to create an account for you first." when the attempt to sign in with the Open ID link to Office 365.

Is there a process by which newly created accounts can be automatically connected to Office 365/moodle accounts? The email address & username is the same. In this example, steadstudent1@university.edu is the O365 account, the moodle user is steadstudent1.

Thanks!
-Stead

Hello contributors.

Please can you help to find Microsoft Official Documentation to create similiar AAD authentication plugin like this.

We website where we need to log in in similar conditions like this plugin. What we need is proper documentation link to this.

Thank you for your help.

Rein
EMKTS Seminary

Can we lock user profile fields? As i cant find out where to do this or could we lock them using roles

Hello, can you tell us if the plugin will support version 3.6 of Moodle in a near future ?

What about support for 3.7?

Yes, please 3.7

Hello, we are a big vocational school in Germany and uses LDAP for our pupil to sign into Moodle. Now we used the Office365 Plugins to use OneDrive as a repository.

Now we have the problem if a user connect their account with the office365 account they were connected via the OpenID Connect and we lost them for our LDAP subscription (with the groups etc).

So is there a way to use the Office365 Plugins without OpenID connect, so that our students can use the office 365 integration and stay for our ldap subscription?

Looking forward to hear from you, thanks in advance

best regards

jtuttas