How to avoid elearning hacks?
Apr 30, 2020
Hi, I am looking forward to your guidance on one of the issues that we have discovered recently. One of our colleagues who was testing an Elearning on LMS (SCORM 1.2 output; HTML5 output) could get the course complete by using (SetReachedEnd()) javascript. He launched the course, and then the console that lets him look under the hood, typed the javascript and that's it. His course shows complete. Is there a way we can avoid such hacks.
Thanks!
Pranav
3 Replies
Hi Pranav,
Happy to help here!
To make sure I am on the same page, are you searching for a way to have the course marked as completed? If so, an idea that might help is to use a Course Completion Trigger. This will allow you to send a status update to your LMS when learners perform a specific action or reach a certain point on the timeline. You can find more details about this here:
Please let us know if you have any questions!
My thought is that if you have a learner that is that computer savvy (even knows what function to call), maybe you should be hiring him, not training him. :)
Seriously it's may be more trouble than it is worth to defeat someone that sophisticated.
Agree with Walt, because the Scorm API is controlled via javascript there is not much you can do.
This discussion is closed. You can start a new discussion or contact Articulate Support.