Moodle

Moodle uses plugins to manage OpenID Connect authentication.

Download and Install

  • Download the plugin here.

  • To install the plugin, follow instructions in the README.md file in the root folder of the archive.

  • After installation, ensure the plugin files have the correct permissions :

chown -R www-data:www-data oidc/

Configuration

  • To configure the plugin, from the Moodle Administration block, go to “Site Administration > Plugins > Authentication > Manage Authentication”

  • Click the icon to enable the plugin, then visit the settings page to configure the plugin

  • Fill the following fields:

Provider Name : leave empty or set the name of your choice
    Client ID : trustelem.oidc.gvsgcy3e
    Client Secret : PMlrIbFW6goMduZkPdaJj8yv99nbT33W
    Authorization Endpoint : https://mycompany.trustelem.com/app/383693/auth
    Token Endpoint https://mycompany.trustelem.com/app/383693/token
    Resource https://mycompany.trustelem.com/app/383693/userinfo
    Scope : openid profile email
    ```

* We recommend to activate the following option:

    * Force redirect. You can use the "?noredirect=1" URL param if your configuration is not working

* Setup Trustelem with the following parameters: 

    * Your Moodle server URL
    * Login URL: the application's URL starting the OIDC flow. It is used as a target to the application on the Trustelem user's  dashboard.
    The URL may be : https://yourmoodledomain/

#### Optional configuration

* You can add the following code in the setClaims function of the "custom claims" section of trustelem application configuration to use user email instead of his identifier as username in Moodle application. 

```ts
claims["sub"] = user.email