help logoLON-CAPA Help


The Link protection panel is used to manage Learning Tool Interoperability (LTI) credentials used when the availability of specific resource(s) or folder(s) in a LON-CAPA course needs to be restricted to deep-link-only access, via launch from another learning system. A use case would be where another learning system supports an online proctoring environment which students must use when accessing an exam folder in a LON-CAPA course.

Although configuration primarily uses the deeplink parameter available via the Parameter Manager for a specific resource or enclosing map/folder, the options available when setting a value for that parameter can include the ID of an LTI launcher created using the course settings configuration menu reached via: Settings > Course Settings > Display ("Link protection" checked).

LTI launchers created in a course will be numbered incrementally (starting at 1), and each one will be listed in a drop-down list shown in the "Link protection" box for the deeplink parameter itself, available when editing the deeplink parameter, if the currently checked radio button is: "course LTI launch".

For each LTI launcher configured in a LON-CAPA course, the following need to be specified:

The Launcher Name is used to identify an option shown in the "course LTI launch" drop-down list when setting a value for the deeplink parameter in the Parameter Manager. Its value can be changed without impacting the behavior of the link, as LON-CAPA internally stores the launcher item associated with a deep-link using the unique numeric identifier assigned to the launcher item when it was first created.

The LTI Version will be 1.1. It is expected that newer versions will also be supported in the future.

A short Nonce lifetime can inhibit use of replay methods to circumvent link protection provided by LTI. There should not be a need to set the value to other than the default of 300s.

The Key and Secret should be kept secure, and will be needed when configuring the "External Tool" item in the other system which is linking to LON-CAPA. There may be restrictions in place in the domain which specify a minimum or maximum length for a Secret, and also rules for its composition in terms of upper case, lower case, numbers, and/or special characters. If requirements are not met, an alert will be displayed indicating what is needed when "Save Changes" is pushed. Once a Secret has been saved for a particular launcher, LON-CAPA will not display it again, so it is recommended to make a note of it, so it can be used in the other system. To change an existing Secret check the "Yes" for "Change?" to make a textbox available for entering the new Secret. Note: the Key and Secret can only be submitted from a session on the course's home server, so if your session is on a different LON-CAPA server, a link to switch server will be shown in place of the textboxes for those two items.

A domain coordinator may have also configured LTI launchers for use in deep-linking, and if so, those will be available from a separate drop-down list displayed when setting the deeplink parameter when the currently checked radio button is: "domain LTI launch".

The sole difference between the LTI launchers for deep-linking defined in a domain and those defined in a course is that for the former, a Course Coordinator must obtain the key and secret from a Domain Coordinator, whereas for the latter a Course Coordinator will set the key and secret. Note: the key and secret will be needed when configuring the LTI launch (in the other system) which is deep-linking to a specific folder or resource in the LON-CAPA course. Although the details of the configuration on the launcher side will be specific to the particular system, the general approach is that an "External Tool" will be added in a course container on the other system, with an endpoint URL specified, along with the key and secret used to encrypt the payload sent with the request to the LON-CAPA endpoint URL.

If the domain has been configured to allow a username to be accepted from the signed payload, then for each LTI launcher there will also be a Yes/No option: Use identity?. If 'Yes' is selected then two (optional) settings can be specified:

Deciding what to select as the source of the username requires knowing what the other learning system sends in the LTI Request. Ideally, the other system will provide a preview feature for instructors to use to display items included in a launch request, and values set for them (for the previewer). In LON-CAPA, selecting "User ID" for the username source indicates the username will be whatever was assigned to the "lis_person_sourcedid" parameter, whereas selecting "Email address" means the username will be whatever was assigned to the "lis_person_contact_email_primary" parameter by the launch system. If neither of those are appropriate then "Other" can be selected, and the appropriate parameter name in the LTI Request can be entered in the textbox.

A username will only be accepted from the launch data for session creation in LON-CAPA if the corresponding user has already been assigned a student role, and no privileged role(s) in the target course in LON-CAPA. What will happen if that condition is not met can either be to stop the launch, or to display the LON-CAPA login page, and allow a user to authenticate. The second of those is the same behavior as seen if "No" had originally been selected for "Use identity?'.

Unlike LON-CAPA, other learning systems do not typically support multiple domains. As a result when creating a user session based on a username included in the launch payload, the implicit assumption is made that the user's domain in LON-CAPA is the same as the course's domain.

In the case where usernames are not accepted from the launch payload, then each user will need to authenticate using the standard LON-CAPA username and password after the signed payload has been verified. After authentication the user's LON-CAPA session will still be recorded as having been launched from the deep-link target URL, as long as the access control setting for the deeplink parameter for the corresponding resource, or enclosing map/folder, is configured to support launch from the external system which provided the signed payload.

The endpoint LON-CAPA URL specified in the "External Tool" item in the other system will be composed of the following components: protocol or scheme (i.e., http or https), ://, hostname, /adm/launch, and the "tiny URL' path to the target resource or folder. If the LON-CAPA domain expects all access via a single server (i.e., a LON-CAPA load-balancer/portal node), then the hostname used should be the one assigned to the load-balancer.

As the key and secret used for launch items (either in a course or a domain) will be unavailable to LON-CAPA nodes belonging to a different LON-CAPA domain, if LTI link protection is to be used for deep-linked items, it is requirement that the endpoint URL include the hostname of a LON-CAPA server in the course's domain.

Following the hostname, the remainder of the URL will have the format:

/adm/launch/tiny/$domain/uniqueID

where /tiny/$domain/uniqueID is a shortened URL, unique to the particular folder or resource in the specific course.

Course Coordinators can generate shortened URLs for items in a course by using: Course Editor > Content Utilities > "Display/Set Shortened URLs for Deep-linking"; see: Short URLs section Help