Add a course selection step in content item selection for LTI 1.3.

drgrice1 · drgrice1 · commit cb7ebbc4fd41 · 2026-06-07T05:38:45.000-05:00
If the new `$LTI{v1p3}{allowCourseSelection}` option is set to 1 and an
instructor attempts to sign in via LTI 1.3 authentication from an LMS
course that is not in the LTI course map for the site, then a list of
webwork courses will be compiled that have matching LTI 1.3 parameters,
that have a user that works for the LMS user with email_address set that
matches the email address sent from the LMS, and such that the user has
the access_instructor_tools and modify_problem_sets permissions. So it
is important that the email_address be set in the webwork courses for
the user. Also note that the LTI user id selection parameters
(`preferred_source_of_username`, `fallback_source_of_username`,
strip_domain_from_email`, and `lowercase_username`) have to be the same
for all matching courses (effectively the settings from the first course
found are used).

Then the user will be presented a list of courses to choose from (or if
only one matching course is found that course will be used). When the
user selects a course (or only on course matches), it will be
automatically added to the LTI course map, and then content selection
will continue as usual with that course.

For this to work, the user is authenticated into the first matching
course. Then if the user chooses a different course, that authentication
is transfered to the selected course. Authentication should work in any
of them since all of the matching courses have the same LTI 1.3
parameters and the user in each course has the same user id, email
address, and permissions.

If no matching courses are found or if the `$LTI{v1p3}{allowCourseSelection}`
option is set to 0, then the context id is shown as before.

Note that the `$LTI{v1p3}{allowCourseSelection}` is necessarily a site
wide option that cannot be configured per course.
diff --git a/conf/authen_LTI_1_3.conf.dist b/conf/authen_LTI_1_3.conf.dist
@@ -261,4 +261,21 @@ $LTI{v1p3}{ignoreMissingSourcedID} = 0;
 
 $LTI{v1p3}{autoSyncSetDatesToLMS} = 0;
 
+# If this is set and an instructor attempts to use content selection from an LMS course that is
+# that is not in the LTI course map, then the instructor will be offered a list of WeBWorK
+# courses to choose from.  The WeBWorK courses that will be listed for the instructor are
+# courses that
+#
+# 1. have LTI 1.3 authentication parameters that match those sent by the LMS,
+# 2. have a user for the instructor, that
+#    - has the email address set that matches the email address sent from the LMS, and
+#    - has access_instructor_tools and modify_problem_sets permissions.
+#
+# Note that if only one course is found that satisfies the above conditions, then it will
+# be used automatically.
+#
+# This is a site wide setting only, and cannot be configured per course
+# (in the course.conf file of a course).
+$LTI{v1p3}{allowCourseSelection} = 0;
+
 1;    # final line of the file to reassure perl that it was read properly.
diff --git a/lib/WeBWorK/ContentGenerator/LTIAdvantage.pm b/lib/WeBWorK/ContentGenerator/LTIAdvantage.pm
@@ -61,16 +61,19 @@ sub initializeRoute ($c, $routeCaptures) {
 			{
 				$c->stash->{isContentSelection} = 1;
 
+				my $siteEnvironment = WeBWorK::CourseEnvironment->new;
+
 				# The database object used here is not associated to any course,
 				# and so the only has access to non-native tables.
-				my @matchingCourses = WeBWorK::DB->new(WeBWorK::CourseEnvironment->new)->getLTICourseMapsWhere({
+				my $nonNativeDB     = WeBWorK::DB->new($siteEnvironment);
+				my @matchingCourses = $nonNativeDB->getLTICourseMapsWhere({
 					lms_context_id =>
 						$c->stash->{lti_jwt_claims}{'https://purl.imsglobal.org/spec/lti/claim/context'}{id}
 				});
 
 				if (@matchingCourses == 1) {
 					$c->stash->{courseID} = $matchingCourses[0]->course_id;
-				} else {
+				} elsif ($siteEnvironment->{LTI}{v1p3}{allowCourseSelection}) {
 					for (@matchingCourses) {
 						my $ce = eval { WeBWorK::CourseEnvironment->new({ courseName => $_->course_id }) };
 						if ($@) { warn "Failed to initialize course environment for $_: $@\n"; next; }
@@ -86,6 +89,98 @@ sub initializeRoute ($c, $routeCaptures) {
 							last;
 						}
 					}
+
+					# If a matching course was not found in the LTI course map and the site is configured to allow
+					# course selection, then construct a list of all courses for which the LTI 1.3 authentication
+					# parameters match and that have a user that has the email address set that matches the email
+					# address sent from the LMS, and that has access_instructor_tools and modify_problem_sets
+					# permissions.
+					unless (defined $c->stash->{courseID}) {
+						my @userCourses;
+
+						my $claims        = $c->stash->{lti_jwt_claims};
+						my $extract_claim = sub ($key) {
+							my $value = $claims;
+							for (split '#', $key) {
+								if (defined $value->{$_}) {
+									$value = $value->{$_};
+								} else {
+									return;
+								}
+							}
+							return $value;
+						};
+
+						my %mappedCourses = map { $_->course_id => 1 } $nonNativeDB->getLTICourseMapsWhere;
+
+						my $firstFoundUserId;
+
+						for (listCourses(WeBWorK::CourseEnvironment->new)) {
+							next if $mappedCourses{$_};
+
+							my $ce = eval { WeBWorK::CourseEnvironment->new({ courseName => $_ }) };
+							if ($@) { $c->log->error("Failed to initialize course environment for $_: $@"); next; }
+
+							if (($ce->{LTIVersion} // '') eq 'v1p3'
+								&& $ce->{LTI}{v1p3}{PlatformID}
+								&& $ce->{LTI}{v1p3}{PlatformID} eq $c->stash->{LTILaunchData}->data->{PlatformID}
+								&& $ce->{LTI}{v1p3}{ClientID}
+								&& $ce->{LTI}{v1p3}{ClientID} eq $c->stash->{LTILaunchData}->data->{ClientID}
+								&& $ce->{LTI}{v1p3}{DeploymentID}
+								&& $ce->{LTI}{v1p3}{DeploymentID} eq
+								$c->stash->{LTILaunchData}->data->{DeploymentID}
+								&& $ce->{LTI}{v1p3}{preferred_source_of_username})
+							{
+								my $userIdSource = '';
+								my $userId       = $extract_claim->($ce->{LTI}{v1p3}{preferred_source_of_username});
+								$userIdSource = $ce->{LTI}{v1p3}{preferred_source_of_username} if $userId;
+								if (!defined $userId && $ce->{LTI}{v1p3}{fallback_source_of_username}) {
+									$userId       = $extract_claim->($ce->{LTI}{v1p3}{fallback_source_of_username});
+									$userIdSource = $ce->{LTI}{v1p3}{fallback_source_of_username} if $userId;
+								}
+								next unless defined $userId;
+								$userId =~ s/@.*$//
+									if $userIdSource eq 'email' && $ce->{LTI}{v1p3}{strip_domain_from_email};
+								$userId = lc($userId) if $ce->{LTI}{v1p3}{lowercase_username};
+
+								# Assert that the user id for the user is the same in all courses offered for selection.
+								# Otherwise things will fall apart when the content_selection method attempts to sign
+								# the user out of the intial guess course and into a different selected course.
+								$firstFoundUserId = $userId unless defined $firstFoundUserId;
+								next                        unless $userId eq $firstFoundUserId;
+
+								my $db   = WeBWorK::DB->new($ce);
+								my $user = $db->getUser($userId);
+
+								# Only allow courses for which the user has the email address set, and the email address
+								# matches the email address sent from the LMS. This means that if one course has the LTI
+								# user selection parameters set differently than another, then not all courses for the
+								# user will actually be listed. This should be considered a configuration error, and the
+								# system administrator should not set courses up this way.
+								next unless $user && $user->email_address && $claims->{email} eq $user->email_address;
+
+								# Only allow courses for which the user has the access_instructor_tools and
+								# modify_problem_sets permissions.  The WeBWorK::Authz object for this request has not
+								# yet been constructed, so the permissions check has to be performed manually.
+								my $permission = $db->getPermissionLevel($userId);
+								next
+									unless $permission
+									&& $permission->permission >=
+									$ce->{userRoles}{ $ce->{permissionLevels}{access_instructor_tools} }
+									&& $permission->permission >=
+									$ce->{userRoles}{ $ce->{permissionLevels}{modify_problem_sets} };
+
+								push(@userCourses, $_);
+							}
+						}
+						if (@userCourses) {
+							# Use the first matching course for initial authentication. All matching courses have the
+							# same LTI 1.3 authentication parameters, and so presumably authentication will work an any
+							# of them.
+							$c->stash->{courseID}      = $userCourses[0];
+							$c->stash->{courseChoices} = \@userCourses;
+						}
+					}
 				}
 			} else {
 				$c->stash->{courseID} = $c->stash->{LTILaunchData}->data->{courseID}
@@ -183,6 +278,13 @@ sub launch ($c) {
 			? (
 				courseID        => $c->stash->{courseID},
 				initial_request => 1,
+				$c->stash->{courseChoices}
+				? (
+					course_choices => $c->stash->{courseChoices},
+					lms_context_id =>
+						$c->stash->{lti_jwt_claims}{'https://purl.imsglobal.org/spec/lti/claim/context'}{id}
+					)
+				: (),
 				accept_multiple =>
 					$c->stash->{lti_jwt_claims}{'https://purl.imsglobal.org/spec/lti-dl/claim/deep_linking_settings'}
 					{accept_multiple},
@@ -210,6 +312,61 @@ sub content_selection ($c) {
 		unless $c->authz->hasPermissions($c->authen->{user_id}, 'modify_problem_sets');
 
 	if ($c->param('initial_request')) {
+		my @courseChoices = $c->param('course_choices');
+		if (@courseChoices > 1) {
+			return $c->render(
+				'ContentGenerator/LTI/content_item_course_selection',
+				courseChoices => \@courseChoices,
+				forwardParams => {
+					accept_multiple      => $c->param('accept_multiple'),
+					deep_link_return_url => $c->param('deep_link_return_url'),
+					lms_context_id       => $c->param('lms_context_id'),
+					$c->param('data') ? (data => $c->param('data')) : (),
+				}
+			);
+		} elsif (@courseChoices) {
+			# If only one course matched for this user, then just use it.
+			# Add it to the course map and skip course selection.
+			$c->db->setLTICourseMap($courseChoices[0], $c->param('lms_context_id'));
+		}
+
+		my $selectedCourse = $c->param('selected_course');
+		if ($selectedCourse && $selectedCourse ne $c->ce->{courseName}) {
+			# The user has selected a course that is not the initial guess (the first course found that the user fit
+			# into), and the user was authenticated into that inital guess course. So sign the user out of that course,
+			# and sign the user into the selected course.  This does not go through the entire authentication process,
+			# but presumably that would succeed since the authhentication parameters for the two courses match and the
+			# permissions of the user were checked in both courses already.
+			my $key = $c->db->getKey($c->authen->{user_id});
+			$c->db->deleteKey($c->authen->{user_id});
+			$c->signed_cookie(
+				'WeBWorKCourseSession.' . $c->ce->{courseName},
+				'',
+				{
+					domain   => $c->app->sessions->cookie_domain,
+					expires  => time,
+					httponly => 1,
+					path     => $c->app->sessions->cookie_path,
+					samesite => $c->app->sessions->samesite,
+					secure   => $c->app->sessions->secure
+				}
+			);
+
+			$c->stash->{courseID} = $selectedCourse;
+			my $ce = eval { WeBWorK::CourseEnvironment->new({ courseName => $selectedCourse }) };
+			if ($@) {
+				$c->log->error("Failed to initialize course environment for $selectedCourse: $@");
+				return $c->render('ContentGenerator/LTI/content_item_selection_error',
+					errorMessage => $c->maketext('The course [_1] is not correctly configured.', $selectedCourse));
+			}
+			$c->ce($ce);
+			my $db = WeBWorK::DB->new($ce);
+			$c->db($db);
+			$c->setSessionParams;
+
+			$c->db->setLTICourseMap($selectedCourse, $c->param('lms_context_id'));
+		}
+
 		return $c->render(
 			'ContentGenerator/LTI/content_item_selection',
 			visibleSets    => [ $c->db->getGlobalSetsWhere({ visible => 1 }, [qw(due_date set_id)]) ],
diff --git a/templates/ContentGenerator/LTI/content_item_course_selection.html.ep b/templates/ContentGenerator/LTI/content_item_course_selection.html.ep
@@ -0,0 +1,34 @@
+<!DOCTYPE html>
+<html <%== $c->output_course_lang_and_dir %>>
+%
+<head>
+	<meta charset="utf-8">
+	<meta name="viewport" content="width=device-width, initial-scale=1.0">
+	<title><%= maketext('Available Courses') %></title>
+	<%= stylesheet $c->url({ type => 'webwork', name => 'theme', file => 'bootstrap.css' }) =%>
+</head>
+%
+<body class="m-3">
+	<div class="container-fluid">
+		<%= form_for current_route, method => 'POST', begin =%>
+			<%= $c->hidden_authen_fields =%>
+			<%= hidden_field courseID => $courseID =%>
+			<%= hidden_field initial_request => 1 =%>
+			% for (keys %$forwardParams) {
+				<%= hidden_field $_ => $forwardParams->{$_} =%>
+			% }
+			<fieldset class="mb-3">
+				<legend><%= maketext('Available Courses') %></legend>
+				% for (@$courseChoices) {
+					<div class="form-check">
+						<%= radio_button selected_course => $_, id => "${_}_id", class => 'form-check-input' =%>
+						<%= label_for "${_}_id" => $_, class => 'form-check-label' =%>
+					</div>
+				% }
+			</fieldset>
+			<%= submit_button maketext('Submit Choice'), class => 'btn btn-primary' =%>
+		<% end =%>
+	</div>
+</body>
+%
+</html>
