Buzz: Questions & Answers

Buzz "Next" Issues with SSO

Follow
Answered
Heather Boyd

We've launched our courses in the new version of Buzz (next.agilixbuzz). When we log in to the new version via our SSO, we get a blank screen where the dashboard should appear (see image provided). The "Shield" appears in the left-hand side of the address bar and "unsafe scripts" must be allowed to launch the dashboard. I do have us pointed at the http website in an attempt to circumvent the problem, but it's automatically redirecting us to the https site. Is anyone experiencing similar issues? What can be done to resolve this? 

 

Comments (8)

Sort by
Brad Marshall
  • Agilix team member

Hey Heather:

I think I know how you solve this. If you go to the admin app in Buzz "Next," open up the domain settings, and select the Integrations tab, you will see a new option to "open (the SSO) in a new window" [see image below]. I think that this will address your current issue.

However, I would highly recommend and encourage you to work with your SSO provider to get this authentication service to support HTTPS.

0 Comment actions Permalink
Heather Boyd

Thank you so much! That did correct the problem with the dashboard not loading. 

 

We were told that the UI would support HTTP and HTTPS. Do you know when that HTTP site would be available? The reason I ask is because some content we access via LTI always has this same "shield" error happen. If I could point that one domain to the HTTP site, that would be ideal. I'm providing an image below of what happens with this content.

0 Comment actions Permalink
Brad Marshall
  • Agilix team member

I am not aware of the new UI in Buzz supporting HTTP. I know that the plans were for it to only be HTTPS.

I just went in and reviewed your course and found why this is occurring. Here are my notes.

  • Your courses are already configured to be able to support HTTPS from the LTI provider (Learning Odyssey).
  • When you navigate to a secured content (HTTPS) from the LTI provider, the LTI provider redirects the content to the insecure HTTP.

I am not sure why they redirect it to HTTP because (I have confirmed) they also support HTTPS for the exact same content. Would it be possible to reach out to your LTI provider and ask them to not redirect it for your account?

0 Comment actions Permalink
Heather Boyd

Hi Brad,

I just wanted to provide an update. I was able to speak with the Learning Odyssey. They indicated that we were being pointed at HTTPS, but since the content is being displayed within Buzz, Google Chrome is seeing it as "mixed content" and is sending the "shield."

Thanks for all your help!

Heather

0 Comment actions Permalink
Brad Marshall
  • Agilix team member

I'm surprised they are saying that. Maybe part of their content is secure but, apparently, an important part of it is not being loaded over HTTPS. Here are some more details that you may want to share with them.

Both images (A and B) show that Buzz is secure. However, if you look at image B, it clearly states that some content from Learning Odyssey's website was not loaded over HTTP. Specifically:

Mixed Content: The page at 'https://villagevirtual.next.agilixbuzz.com/student/65963871/activity/BasicLTI12812' was loaded over HTTPS, but requested an insecure resource 'http://www.thelearningodyssey.com/pip/pip_lashow.aspx?LA=0&LACode=MA5111&LAS=0&LAScreenNumber=0&AffiliateCd=cu&BoolCMPIP=true&UserID=0&LastPage=No&MarkPIP=No&ThisPage=PIP_LASHOW&screenheight=1024'. This request has been blocked; the content must be served over HTTPS.

The users in Buzz are accessing this content via https://www.thelearningodyssey.com/lti/resources/learningactivity/MA5111.

I think once the Learning Odyssey saw this, they would be able to identify that their content is improperly being redirected to insecure content.

Thank you!

0 Comment actions Permalink
Heather Boyd

I just forwarded this information along to them and spoke on the phone with their tech support. They indicate that the only way around it is to launch the content externally as opposed to inside Buzz. This is not ideal for us at all. Are you under the impression that it should load within the i-frame?

Thanks so much!

0 Comment actions Permalink
Brad Marshall
  • Agilix team member

Yes, it should load inside of Buzz. Did they indicate why their content was trying to launch insecurely even though they do have options for secure content?

0 Comment actions Permalink
Heather Boyd

Thanks, Brad. When could you join me on a call? I'd like to get them and you on the phone at the same time. Thanks again!

0 Comment actions Permalink
Please sign in to leave a comment.