We have recently discovered that our SCORM course content is accessible outside our LMS paywall if you have a direct link to it. Our LMS suggests that is because the SCORM output by storyline 2 is not requiring the SCORM API to be present on any sub content.
Can anyone give me more information about this and a way to correct it?
Users are not prompted to login. If they try to access story_lms.html they get an error because it is behind the paywall. however, if they have a link to a piece of supporting material, like a pdf or something, they can access it outside the paywall. If they have the right link they can even access story.html and run the entire course. All the pieces should be behind the LMS paywall. Our LMS claims this is because articulate is not protecting the content with the SCORM API.
If there is an external piece such as a PDF or link that the users access and or download, that's not something restricted within Storyline's output.
As for accessing the course outside the LMS, I'd want to have our team take a look at how folks are accessing the links and what is being shown? Can you share access to a course by connecting with our Support Engineers?
I'm trying to solve a simillar problem, but with a course placed on a website.
Situation client wants: A course will be placed on their website, but it will be accessible only for paying customers (it will be placed in a section, to which only paying customers can get). Once a paying customer opens the course by clicking on a button, the course opens in a new window. And now the tricky part - it shouldn't be possible to copy the URL to the course (so that it's not possible to share the course to someone, who hasn't paid for it).
Situation we're currently in: We've exported the course to Web format and sent it to administrators of the website (run on WordPress) to let them try if it works. They replied to us that there is a problem because of relative location of source files (CSS, JS) - they upload the contents of the course into a folder, try to run the course on the website but it doesn't work, because the HTML code looks for the source files in a different location. They want from us to change links of the source files so that they would lead to a folder they would create for it (which I honestly have no idea how to do). If we don't do that, the course could be accessible to nonpaying people, if they had URL.
My main question is - have you ever encountered such situation? And isn't there an easier way to ensure that the course, even with URL to it, will be accessible only of paying/logged in customers?
6 Replies
Hi Matt,
Are users still prompted to log in? That's what should prevent folks from accessing a course in an LMS if they aren't supposed to have access to it.
I'm not sure what you meant by subcontent - so perhaps you've linked off to other elements in the course that are not behind an LMS login?
Users are not prompted to login. If they try to access story_lms.html they get an error because it is behind the paywall. however, if they have a link to a piece of supporting material, like a pdf or something, they can access it outside the paywall. If they have the right link they can even access story.html and run the entire course. All the pieces should be behind the LMS paywall. Our LMS claims this is because articulate is not protecting the content with the SCORM API.
Hi Matt,
If there is an external piece such as a PDF or link that the users access and or download, that's not something restricted within Storyline's output.
As for accessing the course outside the LMS, I'd want to have our team take a look at how folks are accessing the links and what is being shown? Can you share access to a course by connecting with our Support Engineers?
So external resources are not protected by default, is there a way to restrict external resources within storyline's output?
Thank you, I will connect with your support engineers about course access outside the LMS.
Hi Matt,
There isn't a built-in method to do so, but it may be something folks in the ELH community have created a custom set up for.
I'll keep my eyes out for any other examples to point you too, and hope that those in ELH who have had similar questions are able to chime in here.
Hi,
I'm trying to solve a simillar problem, but with a course placed on a website.
Situation client wants: A course will be placed on their website, but it will be accessible only for paying customers (it will be placed in a section, to which only paying customers can get). Once a paying customer opens the course by clicking on a button, the course opens in a new window. And now the tricky part - it shouldn't be possible to copy the URL to the course (so that it's not possible to share the course to someone, who hasn't paid for it).
Situation we're currently in: We've exported the course to Web format and sent it to administrators of the website (run on WordPress) to let them try if it works. They replied to us that there is a problem because of relative location of source files (CSS, JS) - they upload the contents of the course into a folder, try to run the course on the website but it doesn't work, because the HTML code looks for the source files in a different location. They want from us to change links of the source files so that they would lead to a folder they would create for it (which I honestly have no idea how to do). If we don't do that, the course could be accessible to nonpaying people, if they had URL.
My main question is - have you ever encountered such situation? And isn't there an easier way to ensure that the course, even with URL to it, will be accessible only of paying/logged in customers?
Thank you very much for your help!