o365-moodle icon indicating copy to clipboard operation
o365-moodle copied to clipboard

Published 20 hours ago verified publisher icon microsoft

Feature request: System role mapping

Open kkiiskin opened this issue 5 years ago • 5 comments
trafficstars

In LDAP plugin settings there is a possibility to map certain LDAP contexts to system roles like Manager and Course Creator.

Could this be implemented in Azure AD integration too? For example based on O365 groups or user attributes.

kkiiskin avatar Dec 05 '19 07:12 kkiiskin

Any comment or progress on this?

Like I mentioned, it is a standard feature in LDAP authetication, so when transfering from LDAP->OIDC, you lose an important functionality that people are used to.

kkiiskin avatar Sep 29 '20 13:09 kkiiskin

This is a solid request — but why limit it to LDAP databases? It would make sense to map a moodle_role OIDC attribute, regardless of the location of the user database (LDAP, KeyCloak, etc.).

tekhnee avatar Dec 25 '20 16:12 tekhnee

Hi @audrieMSFT

I see you have been assigned to this, do you think there will be progress? :)

kkiiskin avatar Dec 16 '21 09:12 kkiiskin

Hi @kkiiskin,

I can understand how LDAP does it - all manager or course creator users can be put into separate contexts. How do you have it done in your case? Are they put into different groups? In that case, is the request to assign system context roles to users from configured groups?

Regards, Lai

weilai-irl avatar Jan 07 '22 16:01 weilai-irl

Hi @weilai-irl

having managers/course creators in specified M365 group would propably be the most convenient way, yes.

kkiiskin avatar Jan 10 '22 07:01 kkiiskin

1 more vote to this.

Having to assign roles manually is not ideal.

rodrigolangella avatar Mar 14 '23 04:03 rodrigolangella