Protection of static resources

[Hartmut Trüe]

Hello,

we use Opencast with Moodle and CAS for Single sign on. We need to protect the static resources and that seems to be a problem with the moodle plugins.

mod_opencast does not pass the CAS ticket to opencast, the protection by the static resources servlet must be switched off. The recommendation is to use URL signing. So far that is working.

But with URL signing the embedding in Text-/Multimedia fields no longer works, because the signature is included in the link and expires after a time.

Does anyone have a similar configuration and an idea how to solve this?

Regards,

Hartmut