Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

edu.iu.uits.lms:lms-canvas-redirect

Package Overview
Dependencies
Maintainers
1
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

edu.iu.uits.lms:lms-canvas-redirect

LTI tool which allows for a redirection to an external URL

  • 5.0.2
  • Source
  • Maven
  • Socket score

Version published
Maintainers
1
Source

lms-canvas-redirect

LTI tool which allows for a redirection to an external URL

Building with custom variable replacement service

The default implementation does basic variable replacements with information gathered from LTI launch details. Anything beyond that needs to be done with a custom implementation.
Build the tool, while enabling a custom variable replacement service:

mvn clean install -P var-repl-ser -Dvariable-replacement-service.groupId=edu.iu.uits.lms -Dvariable-replacement-service.artifactId=lms-iu-variable-replacement-service -Dvariable-replacement-service.version=5.0.2

Running standalone

Add env vars or system properties as desired.

ENV PropertySystem PropertyDefault ValueDescription
APP_FULLFILEPATHapp.fullFilePath/usr/src/app/configDirectory for configuration files
APP_OVERRIDESFILENAMEapp.overridesFileNameoverrides.propertiesCustomizable filename for additional configurations. Would be located in the above directory.
SPRING_PROFILES_ACTIVEspring.profiles.activeSupply spring profiles to activate. See configuration details below for potential values.
APP_ENVapp.envdevEnvironment designator. Free-form and can be used for your own purposes. Shows up in the application footer.
LTI_CLIENTREGISTRATION_DEFAULTCLIENTlti.clientregistration.defaultClientcanvasSpecify the launching configuration to expect (canvas/saltire)
APP_CUSTOMSERVICEPACKAGEapp.customServicePackageSpecify the package where the variable replacement service config is located

Setup Database

After compiling, see target/generated-resources/sql/ddl/auto/postgresql9.sql for appropriate ddl. Insert a record into the LTI_13_AUTHZ table with your tool's registration_id (lms_lti_redirect_XXX, where XXX distinguishes it from other redirect tools), along with the client_id and secret from Canvas's Developer Key. An env designator is also required here, and allows a database to support multiple environments simultaneously (dev and reg, for example).

Test a local launch

Startup the application with the LTI_CLIENTREGISTRATION_DEFAULTCLIENT value set to saltire. Use an LTI tool consumer launcher, like https://saltire.lti.app/platform. Default values are fine, with the below exceptions...

In the Message section, set the following:

PropertyValue
Custom parameters
canvas_course_id=123456
canvas_user_login_id=johnsmith
instructure_membership_roles=http://purl.imsglobal.org/vocab/lis/v2/membership#Instructor
redirect_url=http://google.com/search?q=${CANVAS_COURSE_ID}

Use an appropriate canvas_user_login_id.

From the Security Model section, set the following:

PropertyValue
LTI version1.3.0
Message URLhttp://localhost:8080/app/redirect
Client IDdev (or whatever is appropriate based on the record inserted in the database table from above)
Initiate login URLhttp://localhost:8080/lti/login_initiation/lms_lti_redirect_XXX (where `XXX` distinguishes it from other redirect tools)
Redirection URI(s)http://localhost:8080/lti/login

Canvas JSON

Example json for the tool can be found in the examples directory.

Configuration

If choosing to use properties files for the configuration values, the default location is /usr/src/app/config, but that can be overridden by setting the APP_FULLFILEPATH value via system property or environment variable. You may use security.properties, overrides.properties, or set the APP_OVERRIDESFILENAME value with your desired file name.

Canvas Configuration

The following properties need to be set to configure the communication with Canvas and Canvas Catalog. They can be set in a properties file, or overridden as environment variables.

PropertyDefault ValueDescription
canvas.hostHostname of the Canvas instance
canvas.sso.hostHostname of the Canvas OIDC auth domain
canvas.baseUrlhttps://${canvas.host}Base URL of the Canvas instance
canvas.baseApiUrl${canvas.baseUrl}/api/v1Base URL for the Canvas API
canvas.tokenToken for access to Canvas instance
canvas.accountIdYour institution's root accountId in your Canvas instance
catalog.baseUrlBase URL of the Canvas Catalog instance
catalog.baseApiUrl${catalog.baseUrl}/api/v1Base URL for the Canvas Catalog API
catalog.tokenToken for access to the Canvas Catalog instance

Database Configuration

The following properties need to be set to configure the communication with a database. They can be set in a properties file, or overridden as environment variables.

PropertyDescription
lms.db.userUsername used to access the database
lms.db.urlJDBC URL of the database. Will have the form jdbc:<dbtype>://<host>:<port>/<database>
lms.db.passwordPassword for the user accessing the database
lms.db.poolTypeFully qualified name of the connection pool implementation to use. By default, it is auto-detected from the classpath.

Configure support contact information

The following properties need to be set to configure the contact information on the global error page. They can be set in a security.properties file, or overridden as environment variables.

PropertyDescription
lti.errorcontact.nameDisplay name for your support organization
lti.errorcontact.linkContact mechanism - URL or mailto:email (e.g. http://support.school.edu or mailto:support@school.edu)

Redis Configuration (optional)

If you would like to use Redis for session storage, you will need to enable it by including the value redis-session into the SPRING_PROFILES_ACTIVE environment variable. Be aware that if the tool requires multiple values, that there could be more than one profile value in there.

Additionally, the following properties need to be set to configure the communication with Redis. Then can be set in a properties file, or overridden as environment variables.

PropertyDescription
spring.redis.hostRedis server host.
spring.redis.portRedis server port.
spring.redis.databaseDatabase index used by the connection factory.
spring.redis.passwordLogin password of the redis server.

Vault Configuration (optional)

If you would like to use HasiCorp's Vault for secure property storage, you will need to enable it by including the value vault into the SPRING_PROFILES_ACTIVE environment variable. Be aware that if the tool requires multiple values, that there could be more than one profile value in there. Include any spring.cloud.vault.* properties that your environment requires in a properties file, or override as environment variables.

Exposing the LTI authz REST endpoints

If you would like to expose the LTI authz endpoints in this tool (for CRUD operations on the LTI authorizations), you will need to enable it by including the value ltirest into the SPRING_PROFILES_ACTIVE environment variable. Be aware that if the tool requires multiple values, that there could be more than one profile value in there.

Enabling swagger-ui for the LTI authz REST endpoints

:warning: Experimental :warning:

If you would like to enable the swagger-ui for interacting with the endpoints, include the value swagger into the SPRING_PROFILES_ACTIVE environment variable. Once enabled, the ui will be available at /api/lti/swagger-ui.html. There are some additional OAuth2 considerations that need to be accounted for while using this setup.

This is marked as experimental due to the fact that we aren't running with this option at IU. We are running into CORS issues when trying to talk to our OAuth2 service via swagger, so we can't verify if it really works or not!

Using variables in the URL

Variables can be used in the redirect_url which the system will replace with appropriate values.
Supported variables in the default implementation:

  • ${USER_ID}
  • ${USER_EID}
  • ${USER_FIRST_NAME}
  • ${USER_LAST_NAME}
  • ${USER_ROLE}
  • ${CANVAS_COURSE_ID}

Variables requiring a custom implementation:

  • ${SIS_COURSE_ID}
  • ${CLASS_NBR}
  • ${SIS_TERM_ID}
  • ${SIS_CAMPUS}

FAQs

Package last updated on 27 Jul 2023

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc