Skip to content

LdesignMedia/moodle-auth_cfour

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits

classes

classes

 
 

lang/en

lang/en

 
 

pix

pix

 
 

README.md

README.md

 
 

auth.php

auth.php

 
 

login.php

login.php

 
 

settings.php

settings.php

 
 

version.php

version.php

 
 

Repository files navigation

a Moodle link based authentication plugin

MFreak.nl

  • Author: Luuk Verhoeven, MFreak.nl
  • Min. required: Moodle 3.6.x
  • Supports PHP: 7.0 | 7.1 | 7.2

Moodle36 PHP7.0

List of features

  • Shared key encryption.
  • Authenticate a user with a direct link.
  • Redirect after login to a redirect url.
  • Allow locking userfields.

Installation

  1. Copy this plugin to the auth\cfour folder on the server
  2. Login as administrator
  3. Go to Site Administrator > Notification
  4. Install the plugin
  5. Add the correct AUTHENTICATION key to the settings /admin/settings.php?section=authsettingcfour.
  6. Enable the authentication module /admin/category.php?category=authsettings.

Usage

  1. A user should already be created in Moodle. You can add a new user with the API, make sure auth property must have the value cfour for security reasons.
  2. Build a link on a external system, see the example below.
<?php
#External system, samplecode
define('SHARED_AUTHENTICION_KEY' , 'LONG_KEY_HERE');

/**
 * Get a authentication code
 * 
 * @param int $userid
 * @param string $username
 * @return string
 */
function get_code(int $userid , string $username ){
    return hash('sha256', SHARED_AUTHENTICION_KEY . '|' . $userid . '|' . $username);
}

// Building the link.
$domain = 'https://moodle.test.domain.com/';
$plugin = 'auth/cfour/login.php?';

// The user that exists in Moodle and has `cfour` auth property in there account.
$moodleusername = 'student1';
$moodleuserid = 2;

$params = [
    'sso_username' => $moodleusername,
    'sso_code' => get_code($moodleuserid , $moodleusername),
    'wantsurl' => '/course/view.php?id=2'
];

// Make sure all params get urlencoded!
$url = $domain . $plugin . http_build_query($params);

// https://moodle.test.domain.com/auth/cfour/login.php?sso_username=student1&sso_code=&wantsurl=%2Fcourse%2Fview.php%3Fid%3D2
header('Location: ' . $url);
die;
  1. Use the link where you want. Keep in mind there is no expiry date implemented.

Security

If you discover any security related issues, please email luuk@MFreak.nl instead of using the issue tracker.

License

The GNU GENERAL PUBLIC LICENSE. Please see License File for more information.

Changelog

See version control for the complete history. Major changes in this version will be listed below.

About

a Moodle link based authentication plugin

Topics

moodle moodle-plugin moodle-authentication

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages