Openid Connect - Matching System Role

microsoft / o365-moodle

Office 365 and Azure Active Directory plugins for Moodle

GNU General Public License v3.0

184 stars 138 forks source link

Openid Connect - Matching System Role #2063

Open Aldises opened 2 years ago

Aldises commented 2 years ago

Hello,

I was wondering if you were thinking of integrating some other features into the Openid Connect authentication plugin.

We are using it on our platform with a provider other than Azure and everything is working great. We would like to be able to automatically assign system roles (for example: Course Creator) to authentication based on certain criteria.

This functionality is possible in the standard LDAP connector in Moodle.

Do you plan to integrate this feature?

Thanks in advance

weilai-irl commented 2 years ago

Hi @Aldises

Thank you for creating the feature request. I can confirm there's an existing request for the same feature created some time ago at #1174. It's currently not at the top of our list of features to implement, but it does seem to be a useful one for the auth_oidc plugin to have.

We will re-evaluate the list soon so hopefully this will be implemented not too far in the future.

Regards, Lai

Aldises commented 2 years ago

Hi @weilai-irl

Thanks for the re-evaluation of the functionality.

I would like to point out that our system does not use Azure but Keycloack as an identity provider, so it would be more interesting for us to offer this functionality based on the Token settings and note O365 Group.

Regards