Reliability of Log-In-As
Due to a security vulnerability identified in April 2019, the Log in as functionality no longer matches the complete user view.
The security patch hides specific tools / functionality from the log-in-as view, though they continue working perfectly fine for students/staff in their normal view. This includes:
- Services inserted into a Moodle course via embed code (also known as iframe)
- Example of services that support embed codes include theBox, H5P and Youtube
- Stack Quiz Questions
- GeSHi Filter
Services like theBox and H5P are already accessible in Moodle through existing integrations. For example, theBox is available as a repository through the HTML editor, while H5P has its own activities. If these methods are used instead of embed codes, the issue does not occur.
Settings, Navigation and Dashboard
Instructors logging in as a student will not have access to the student's other courses and some private pages/blocks:
-
Settings block
-
Navigation block
-
Dashboard page
To view a student's gradebook, instructors can click the user name on the top right and select 'Grades'. The course name can be selected within the grades page to the course grades.
