Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Single Sign On in Moodle with external login form

Tags:

authentication

php

single-sign-on

moodle

I'm developing a moodle site where I have to use an external service for authenticating users. This SSO service should be the only form of authentication.

The provider of the external service requires me to do use their login form on their server so I have to disable the moodle login form.

I have looked at the various authentication plugins but none of them seems to do exactly what I need them to do.

Thus far I think this is what I'm going to do:

  1. Change the login/index.php file so it does nothing but redirect the user to the external login form.
  2. The SSO service heads back to a new page on my Moodle server that confirms the credentials supplied.
  3. All relevant user data is collected from a SOAP webservice connected to the SSO service.
  4. If the (unique) username provided by the SSO service exists in the mdl_users table the row is updated with the relevant user data.
  5. If the username does not exist a new user is generated automatically The user is then logged in to the Moodle site and headed to their front page.

This is my first time working with Moodle so I have a few questions:

  1. How can I create a new user automatically? Is it enough just to add a new entry to mdl_users?
  2. How do I sign a user in?
  3. Can I make this sort of functionality as an authentication plugin or do I need to make a hack in the login/index.php file?
  4. How do I disable the no longer needed parts of Moodle's own user management (i.e. password reset, user info fields that are collected from the SOAP service etc.)?

I really hope you can help me :)

like image 781
Regicollis Avatar asked Oct 06 '14 12:10

Regicollis

People also ask

How do I log into Moodle without a password?

You can reset your password by entering EITHER your username OR your email address below, then clicking the Search button. If your account can be found, an email will be sent to your email address with a link to reset your password.

What is the procedure to manage authentication in Moodle?

Setting the authentication method(s) Go to Administration > Site administration > Plugins > Authentication > Manage authentication. Click the eye icon to enable selected authentication plugins (closed eye = disabled, open eye = enabled) Click the settings link opposite the authentication plugin(s) you have chosen.

What is login with single sign on?

Single sign-on (SSO) is a session and user authentication service that permits a user to use one set of login credentials -- for example, a name and password -- to access multiple applications.

Video Answer

1 Answers

  1. Call create_user_record() (line 4008 of lib/moodlelib.php in master branch). This does the insert into mdl_user but also performs a bunch of checks and calls other functions to take care of dependencies, event triggers and so on. This function is called automatically by authenticate_user_login() (see below) if the user being authenticated doesn't already exist.
  2. This involves calling authenticate_user_login() (line 4378 of lib/moodlelib.php) followed by complete_user_login() (line 4577 of lib/moodlelib.php).
  3. This can all be achieved by creating an authentication plugin, and you should be able to find everything you need to know at https://docs.moodle.org/dev/Authentication_plugins, including links to example code and a suggested template.
  4. You can lock user profile fields via your auth plugin and you can actually set a custom/external password reset page via the admin interface at /admin/settings.php?section=manageauths.

Hope this helps.

like image 162
Tony Avatar answered Oct 19 '22 09:10

Tony
Sign in to Comment

Related questions

How to enable PHP5 module using Puppet Apache2 module [closed]
Will the PHP 5.5 opcache be shared across processes with FastCGI (mod_fcgi)?
Google Drive PHP API empty uploaded file
json_encode returns false when dealing with multibyte substring
Data Mapper pattern, exceptions, and handling user-provided data
Why the filter does not work when the back button of the browser is pressed in laravel?
Canonical: How to save HTML form data into MySQL database
Imagemagick unable to read the file (MAMP )
How to resolve "Illegal double ... value found during parsing" on a mysql insert?
esc_url() and Wordpress Security?
The best way to play videos on website
Apply validation before Data Transform
Set Cache-Control on Google Cloud Storage bucket
Singleton class and mysqli transaction
xampp,php-java-bridge show notice: Undefined property: java_Client::$cancelProxyCreationTag
Insert BIT value in MySQL using PDO Prepared Statement
How to add external <script> to <head> section for all mediawiki pages?
Error "Detecting Library Folders" in Zend Studio
Symfony: Multiple firewall contexts - User being forwarded to the wrong context
randomly pick from 4 tables

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!