Easygenerator supports launching courses in third-party platforms (such as Learning Management Systems) using the LTI 1.3 (Learning Tools Interoperability) standard.
LTI 1.3 enables secure course delivery with Single Sign-On (SSO), allowing learners to access Easygenerator courses directly from their LMS without requiring a separate login. This ensures a seamless user experience while maintaining modern security standards.
This article outlines both the functional overview and the technical configuration required to implement LTI 1.3 with Easygenerator.
LTI 1.3 is the latest version of the LTI standard and uses modern authentication methods such as OAuth 2.0 and JWT for secure communication between systems.
Overview
LTI 1.3 allows an LMS (LTI Platform) to launch Easygenerator courses (LTI Tool) in a secure and standardized way.
When launched via LTI:
Learners are automatically authenticated
Courses open directly within the LMS
No additional login is required
User data is securely passed from the LMS to Easygenerator
User progress and results can optionally be shared back to the LMS
Basic concepts
The platform that manages users and initiates secure launch requests.
Examples include:
Cornerstone
Moodle
Canvas
Blackboard
SuccessFactors
LTI Tool (Easygenerator)
Easygenerator acts as the LTI Tool, delivering course content when launched from the LMS.
How this works
A learner selects a course in the LMS
The LMS initiates an LTI 1.3 launch request
Easygenerator validates the request and authenticates the learner
The course is displayed within the LMS environment
User progress and results can be shared back with the LMS (if configured)
Architecture diagram:
Set-up Process
LTI 1.3 requires exchanging configuration details between your LMS and Easygenerator, including OAuth and security settings.
Please provide the required configuration details using the following form:
This form collects the required LMS configuration details and provides the Easygenerator endpoints needed for setup. Our team will use this information to configure the integration for your environment.
Technical Details (for LMS / IT Teams)
Authentication Model
Easygenerator’s LTI 1.3 implementation is based on:
OAuth 2.0 (Authorization)
OpenID Connect (OIDC) (Authentication)
JWT (JSON Web Tokens)
The LMS sends a signed ID Token (JWT), which is validated by Easygenerator using public key authentication.
OIDC Login and Forwarded Query Parameters
During the LTI 1.3 launch process, the LMS initiates an OpenID Connect (OIDC) login request to Easygenerator. As part of this request, certain query parameters are forwarded to ensure a secure and valid launch.
Easygenerator supports the following forwarded query parameters:
Supported Query Parameters:
Parameter | Description |
login_hint | Identifies the user session in the LMS |
lti_message_hint | Provides launch context for the LTI message |
These parameters are passed from the LMS to Easygenerator during the OIDC login initiation.
Example OIDC Login Request
Example of an Initiate Login URL with forwarded parameters:
https://lti.easygenerator.com/api/v1/login
?iss=https://lms.example.com
&login_hint=abc123
<i_message_hint=xyz456
&target_link_uri=https://lti.easygenerator.com/course/launch
How It Works
The LMS sends an OIDC login request to Easygenerator
The request includes login_hint and lti_message_hint
Easygenerator forwards these parameters to the authorization endpoint
Easygenerator validates the request
The learner is authenticated, and the course launches
Notes
These parameters are part of the LTI 1.3 OpenID Connect flow
The LMS automatically generates these parameters
No manual configuration is typically required
Missing parameters may cause launch failures
Key Endpoints
Initiate Login URL
This endpoint is used by the LMS to initiate the OpenID Connect login flow.
OIDC Redirect URL
This endpoint receives the authentication response from the LMS.
Course Launch URL
This URL is used to launch individual Easygenerator courses from the LMS.
Required LMS Configuration
The LMS administrator must provide the following information:
Client ID
Deployment ID
Platform Host (LMS base URL)
Authorization Endpoint
Token Endpoint
JWKS Endpoint (Public key URL)
These details are required to establish secure communication between the LMS and Easygenerator.
User Information Mapping
User information is extracted from the ID Token claims sent by the LMS during launch.
Typical user attributes include:
Email
First Name
Last Name
User ID
If learner information is not provided by the LMS, Easygenerator may:
Display a default user name
Use a generated identifier
Limit certificate personalization
Token Details
Token Type: ID Token (JWT)
Signing Algorithm: RS256
Authentication Standard: OpenID Connect
Authorization Standard: OAuth 2.0
Notes:
LTI 1.3 does not use shared secrets
Authentication is based on signed tokens
Configuration must be completed on both the LMS and Easygenerator sides
Missing user claims may impact reporting and certificates
Each LMS deployment may require separate configuration
Difference from LTI 1.2
Feature | LTI 1.2 | LTI 1.3 |
Authentication | Shared Secret | Public Key (JWT) |
Security | Basic | Modern & Secure |
SSO | Limited | Full OpenID Connect |
Scalability | Limited | High |
Standard | Legacy | Current Standard |
LTI 1.3 provides improved security, scalability, and a better user experience compared to LTI 1.2.
User data and privacy
Your LMS controls what learner information is shared with Easygenerator.
If learner details are not provided:
Certificates may not include learner names
Reporting may be limited
Default identifiers may be used
Support
If you need assistance with LTI 1.3 configuration, please contact: