LTI Launch with Authentication to Web Client

Description
We are an Idaho State Agency created to help support schools in online learning. We are looking for Zoom with LTI Pro to launch through our LMS directly to the Web Client as student Chromebooks have limited ability to load apps.

The current launch will authenticate to a client but will not authenticate to the web client or pass user credentials through to the web client.

Is there a way to launch the web client by default through the LTI launch, or to authenticate a web client launch?

Hey @ryan.gravette,

If the students are already signed into zoom.us, they should not have login again when joining a meeting through the Web Client:

Thanks,
Tommy

What if we have enabled SAML, will it push the auth and then push to the correct meeting?

newLogo2.jpg

Hey @ryan.gravette,

Yes it should, you can confirm with suppot.zoom.us. :slight_smile:

Thanks,
Tommy

Tommy,

It turns out that the WebClient always asks for a screen name even if the ability to edit the screen name is disabled in the security settings.

Any way we can get the web client to adhere to that security setting?

newLogo2.jpg

Hey @ryan.gravette,

Since the Web Client is not apart of the API Platform, your best bet is to reach out to our product team at support.zoom.us so they can further assist. :slight_smile:

Thanks,
Tommy

Ok, thanks Tommy.

How about this angle…

Why does the LTI Pro launch behave so differently when using the client vs selecting the web client?

newLogo2.jpg

My understanding is that the current LTI Pro implementation doesn’t log users into zoom per se, but uses the credentials of the user who sets up the LTI to generate the page, which uses APIs to generate login tokens embedded in the zoom meeting links that will log in the user via the desktop client. The important bit is page is generated without the user being logged in, so if you open the LTI Pro frame in a new window you’ll see the url is https://applications.zoom.us/lti/rich and not https://[instance].zoom.us/meeting#/upcoming.

I believe options to actually log users into a zoom instance via the LTI and/or SSO (if the LMS and zoom instance share the same SSO IDP?) are on the roadmap.

1 Like

Interesting, so when the user instead selects the web client then the web client isn’t accepting the tokens embedded in the meeting links because it is pushing them off to a new URL. It seems like that page where the launch is initiated could be modified to also include and pass on the token to the webclient for launch.

Does the web client even support token based launches?

newLogo2.jpg

Hey @ryan.gravette,

Can you please write up your desired functionality here: #feature-requests and we will add it to our backlog to develop. :slight_smile:

Also appreciate your input @hanleybrand!

Thanks,
Tommy

Done, thanks!

https://devforum.zoom.us/t/lti-launch-for-web-client/30927

newLogo2.jpg

Thanks @ryan.gravette! :slight_smile: This is now in our backlog. I will keep yo updated on its development. (ZOOM-199956)

-Tommy