Sign in with IdP

[sebinemeth]

Hi, My university is using an external IdP (Shibboleth) for the sign-in process. Do you think it would be possible to redirect to the moodle page to sign in and then callback with the token instead of providing the username and password inside nextcloud? Thanks in advance Sebi

[julien-nc]

As far as I know there is no "OAuth web flow" authentication provided by Moodle (or I didn't find it...). I'm interested if you find information about that.

Thanks for the feedback.

[sebinemeth]

Hi, I found no official documentation about it, but I found this platform which seems to use some kind of web flow (not sure if its OAuth) Edlink - Sign In With Moodle. I am not really an expert in this, sorry if its a complete different thing.

[Dagefoerde]

Edlink is a proprietary solution that will add single-sign-on facilities to Moodle (and other LMSes / software). So the thing that is shown there is not native to Moodle.

@sebinemeth are you also using the Moodle mobile app? How does signing in via Shibboleth work there? Maybe there is some other kind of flow that this app could use.

[flyinva]

Some french schools are using Moodle with SSO (FranceConnect). It seems to used SAML, with this kind of plugin ? https://moodle.org/plugins/auth_saml2

[Dagefoerde]

ah, so that takes username and password in the regular Moodle UI as well. So there is no (straightforward) way to derive some token flow from that, sorry

[sebinemeth]

@Dagefoerde Yes, i am using the moodle app as well, apparently it opens up the school login page in a webview...

[nnhien]

Is there any update on this? My university also uses Shibboleth for IdP and I'd really like to use the Moodle integration with my Nextcloud instance. I was able to find this page in the Moodle docs that details how it integrates with Shibboleth, but I haven't gotten the chance to read it yet.

Edit: The documentation says to read this file

[julien-nc]

A Moodle developer told me the mobile authentication system can't be implemented in our context. So it's really not possible to connect to Moodle with an "external" account (LDAP, SAML, OIDC etc...). Sorry about that. I can't do much more.