Marcus Goluch Posted October 8, 2020 Posted October 8, 2020 Hi Frog Team, I have a suggestion for something that could prove very beneficial to frog. In fact during this time of remote teaching this could be a slight game changer. At Broadway we are trying to do as much as we can though frog, unfortunately when it comes to remote teaching zoom is the answer. I'm not going to debate zoom vs teams here but frankly I wish we where able to use teams. The reason we do not use teams is because the kids would have to sign in to both frog and 365 to access there class. Where as with zoom we can generate a link ahead of time and post it on frog, no zoom login required. So, this got me thinking. Now I have recently been doing a lot of work in my personal life with oAuth for various platforms, so when it hit me i felt it was just supper obvious. Right now you can log into frog using an active directory account, What if we could log into frog using our active directory account but instead of going via AD we went via oAuth2 on 365? This could be an additional option. The benefit of this is now that, instead of logging into frog they now log into 365 and frog (via AD) at the same time. So, now I can embed a MS streams video, a MS teams link, an outlook calendar, (etc)... But instead of having to sign into 365, I am all ready signed in from when i logged into the platform and now I am directly taken to the link my teacher has posted. The benefit here on top, is that you can grab each users access and refresh tokens store them and use them to do even cooler things, but in theory you don's even need to keep these tokens unless you wish to use the MS 365 API's.
Graham Quince Posted October 8, 2020 Posted October 8, 2020 Hi @Chris Goluch From reading your post (and thank you btw), it sounds like you don't know about the ADFS authentication we offer. This does everything you've described above. It's not OAuth, but achieves the same thing you're after. Graham
Marcus Goluch Posted October 8, 2020 Author Posted October 8, 2020 I was unaware of this, will look into it. Thank you 1
Marcus Goluch Posted October 9, 2020 Author Posted October 9, 2020 @Graham Quince I appreciate the adfs system does this, but adfs is something Microsoft are phasing out with there push for Azure. Come next year my school will be moving to azure, but we are already thinking of removing the adfs server because 365 no longer requires you to handle logins this way. On top of that we have found that when dealing with multiple aliases, staff and students just get utterly confused when asked to sign in via adfs, meaning this is not a solution that we as a school would ever be allowed to implement. I would highly recommend looking into moving to adding a 365 oAuth solution. If it where possible to write login logic with plugins I would attempt to write something up myself. Thanks
Graham Quince Posted October 9, 2020 Posted October 9, 2020 Hi @Chris Goluch I (personally) was not aware that ADFS was being phased out. But I bet the development team know. I'll mention it just in case. The user experience when a school has ADFS enabled is that they either: log into their network computer, open their browser (usually set with Frog as the homepage) and they are logged in straight away visit Frog via their school's website, enter their username, at which point Frog redirects them to an ADFS login portal, which they then enter their password for and are sent back to Frog, all logged in. There wouldn't need to be different login details. I will mention your suggestion, but it is also worth using the Ideas Portal to log it and flag it up to the Product team too.
Marcus Goluch Posted October 9, 2020 Author Posted October 9, 2020 Hi @Graham Quince thanks for responding. I would love to go post this over on the ideas portal, but unfortunately that website has never worked for me. I am still unable to figure out how to register as the register button seemingly does nothing. Thank you
Graham Quince Posted October 9, 2020 Posted October 9, 2020 This link: https://www.frogeducation.com/community/product-updates/ideas-portal I've filled out the form with your email address.
Marcus Goluch Posted October 9, 2020 Author Posted October 9, 2020 Says my email address is not registered still, I have submitted my email on the registration form how ever and submitted.
Graham Quince Posted October 12, 2020 Posted October 12, 2020 On 09/10/2020 at 12:35, Chris Goluch said: @Graham Quince I appreciate the adfs system does this, but adfs is something Microsoft are phasing out with there push for Azure. Come next year my school will be moving to azure, but we are already thinking of removing the adfs server because 365 no longer requires you to handle logins this way. On top of that we have found that when dealing with multiple aliases, staff and students just get utterly confused when asked to sign in via adfs, meaning this is not a solution that we as a school would ever be allowed to implement. I would highly recommend looking into moving to adding a 365 oAuth solution. If it where possible to write login logic with plugins I would attempt to write something up myself. Thanks Hi @Chris Goluch I've spoken with some of our senior developers. Microsoft are not phasing out ADFS. As far as we all know, there have been no statements made to that effect. There is a growing sentiment among IT bloggers that ADFS should come to an end, but that is not the same. Having said that, we also offer Azure simple-sign-on. This authentication method does require you to sign into Frog, but once signed in, you can open any other systems without having to sign in again. (provided these have been configured to use Azure). Graham
Marcus Goluch Posted October 12, 2020 Author Posted October 12, 2020 Azure SSO sounds like it will do exactly what I am sugesting. Thank you
mhamilton Posted January 12, 2021 Posted January 12, 2021 On 12/10/2020 at 08:48, Graham Quince said: Hi @Chris Goluch I've spoken with some of our senior developers. Microsoft are not phasing out ADFS. As far as we all know, there have been no statements made to that effect. There is a growing sentiment among IT bloggers that ADFS should come to an end, but that is not the same. Having said that, we also offer Azure simple-sign-on. This authentication method does require you to sign into Frog, but once signed in, you can open any other systems without having to sign in again. (provided these have been configured to use Azure). Graham Thanks Graham, can you direct us to more information with Azure SSO? With this active will it allow for better integration of the Teams environment? As you know one of your competitors is heavily pushing the integration with Teams - something our school is looking for. We have not heard much from Frog on this topic unless I missed a news update. We would love to see the collaborative side of Teams integrated into Frog allowing Teams chat, Teams Meetings and Teams breakout rooms. Any update on this. Much appreciated.
Marcus Goluch Posted January 12, 2021 Author Posted January 12, 2021 @mhamilton I am working on something with ADFS that I recently showed Graham. It would allow seamless teams and streams integration. It could easily be adapted for Azure SSO. If you like, I can throw you a copy of the documentation I wrote, get some feedback from another frog admin. 1
mhamilton Posted January 12, 2021 Posted January 12, 2021 That would be great Chris. We have ADFS active so would love to see your implementation with Teams. Many thanks!
Graham Quince Posted January 12, 2021 Posted January 12, 2021 16 minutes ago, mhamilton said: Thanks Graham, can you direct us to more information with Azure SSO? With this active will it allow for better integration of the Teams environment? As you know one of your competitors is heavily pushing the integration with Teams - something our school is looking for. We have not heard much from Frog on this topic unless I missed a news update. We would love to see the collaborative side of Teams integrated into Frog allowing Teams chat, Teams Meetings and Teams breakout rooms. Any update on this. Much appreciated. Hi @mhamilton, Our Azure documentation is a bit outdated apparently (MS keeps making changes to the process). If you would like to set this up, I can create a ticket for you and one of our systems team will walk you through the process.
Marcus Goluch Posted January 12, 2021 Author Posted January 12, 2021 I have forwarded you a little something.
mhamilton Posted January 12, 2021 Posted January 12, 2021 (edited) 3 hours ago, Chris Goluch said: I have forwarded you a little something. By email? m****@******k.bm Thanks! Edited January 12, 2021 by Graham Quince Just removed your email address, to avoid you getting spammed.
mhamilton Posted January 12, 2021 Posted January 12, 2021 5 minutes ago, Graham Quince said: Hi @mhamilton, Our Azure documentation is a bit outdated apparently (MS keeps making changes to the process). If you would like to set this up, I can create a ticket for you and one of our systems team will walk you through the process. Yes please.
Marcus Goluch Posted January 12, 2021 Author Posted January 12, 2021 I sent it via the Forums direct message system.
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now