Koha and Google’s OAuth 2.0 API to authenticate. How to setup Google Authentication in Koha 19.11?

-
To setup the Google Authentication with Koha LMS, first you have to go to Google Developer’s Console to obtain OAuth 2.0 credentials for your application (in our case is Koha LMS)

Create a new project and name it (Give a logical name - Cannot be edited)


Next search for Identity and Access Management (IAM) API  and enable it.


Next, set the consent screen values:

Application type: Internal 
Application Name : Koha - LMS  (This name is what users will see)
Application Logo : Upload your logo (Max. size 1MB)
Support email : youremail address (shown to users)
Authorized domains : jnec.edu.bt    (press Enter to add it)

Save it.

Next create the credentials. Click on Create credentials and select OAuth client ID from the dropdown.



Set the following parameters :
Application type : Web application
Name : Koha (Any name)
Authorized JavaScript origins : https://yourkohasite (press Enter to add it)
Authorized redirect URIs : https://yourkohasite/cgi-bin/koha/svc/auth/googleopenidconnect (press Enter to add it)

Click on Create to create the credentials. Now your client ID and client secret will be generated.


Next, open your Koha site ang go to Global System Preference -> OPAC  and under 
GoogleOAuth2ClientID :Google OAuth2 Client ID
GoogleOAuth2ClientSecret : Google OAuth2 Client Secret
GoogleOpenIDConnect : Yes
GoogleOpenIDConnectDomain : your domain (to restrict users from other domains to login)

Save it and check the authentication.





Comments

Post a Comment

Popular posts from this blog

(Solved) (Fixed )MariaDB Unmet Dependencies on Ubuntu 20.04.

-
Error or Issue : Unmet Dependencies:  # sudo apt install mariadb-server Reading package lists... Done Building dependency tree        Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies:  mariadb-server : Depends: mariadb-server-10.3 (>= 1:10.3.25-0ubuntu0.20.04.1) but it is not going to be installed E: Unable to correct problems, you have held broken packages. Solution or Fix : Remove the different version of MySQL/MariaDB. To check the version run the following command. #  dpkg -l | grep -E 'mysql|mariadb' output:  ii  libdatetime-format-mysql-perl          0.06-1                            all          module to parse and format MySQL dates and times i
Read more

Solution to Moodle Error: Coding error detected, it must be fixed by a programmer: Failed to unserialise data from file. Either failed to read, or failed to write.

-
Image
Did you ever come across the following error when you try to access Moodle, "Coding error detected, it must be fixed by a programmer: Failed to unserialise data from file. Either failed to read, or failed to write." This usually happens when cache files are corrupted, one probable cause can be improper shutdown of Moodle system. Here is the solution to fix the issue. 1. Go to Moodle root directory     #cd /var/www/html/moodle   2. Run the command      #php admin/cli/purge_caches.php 3. Go to moodledata/cache directory   #cd /var/moodledata/cache    4. Remove the cache store directory, DO NOT remove of change the core_component.php file    # rm -rf cachestore_file/ 5. Refresh the Moodle Page. Its should work.
Read more

ACTION_FAILED:OU_INVALID: Solution for GoogleApps bulk user upload issue, username@domainname.com:ACTION_FAILED:OU_INVALID. This error is because you have not specified the Org Unit Path properly.

-
To upload bulk users to GoogleApps, you will require a following required fileds, other fields are optional:-               First Name               Last Name               Email Address               Password               Org Unit Path What is 'Org Unit Path'? This field was not their earlier. This is the path to place users in an organizational unit. For example if your domain has different organization unit like , staff, students, guest etc.. then the Org Unit Path would be just :  /
Read more