Filling out the Canvas LTI Installation Form

In order to add a Learning Tools Interoperability application into BlueLine (Canvas), you will need to fill out the Canvas LTI Installation from in Team Dynamix. This form and workflow was developed by IT in collaboration with the Center for Faculty Excellence. This process was adapted from other Jesuit schools, Georgetown University and University of San Francisco. 

Definitions

Learning Tools Interoperability (LTI) is a standard developed by 1EdTech (formerly known as IMS Global Learning Consortium) that facilitates the seamless integration of external tools and content into Learning Management Systems (LMS).

LTI 1.1 and LTI 1.3 are versions of the Learning Tools Interoperability (LTI) standard developed by 1EdTech (formerly IMS Global Learning Consortium). Here are the key differences between them:

  1. Security:

    • LTI 1.1: Relies on OAuth 1.0a, which has limitations and is considered less secure.
    • LTI 1.3: Uses OAuth 2.0 and OpenID Connect, offering enhanced security and modern authentication protocols.
  2. Data Exchange:

    • LTI 1.1: Basic data transfer via HTTP request parameters.
    • LTI 1.3: Expanded data exchange capabilities, allowing more secure and comprehensive information transfer.
  3. Functionality:

    • LTI 1.1: Basic integration of external tools with single sign-on.
    • LTI 1.3: Improved connectivity and data management, supporting modern e-learning environments.
  4. Compatibility:

    • LTI 1.3: More compatible with LTI 1.1 services, providing a simpler upgrade path.
      .

Consumer Key in the context of Learning Tools Interoperability (LTI) is a unique identifier assigned to a Tool Consumer (such as a Learning Management System, LMS) by the Tool Provider (the external tool or content provider).

Shared Secret in the context of Learning Tools Interoperability (LTI) is a key component used to ensure secure communication between a Tool Consumer (such as a Learning Management System, LMS) and a Tool Provider (the external tool or content provider).

privacy policy is a legal document that outlines how an organization collects, uses, discloses, and manages the personal information of its users or customers.

The Family Educational Rights and Privacy Act (FERPA) is a federal law enacted in 1974 that protects the privacy of student education records.

API tokens are unique identifiers used to authenticate requests to an API (Application Programming Interface). They act like a digital key, allowing applications to access specific resources or services securely. Here are some key points about API tokens:

  1. Authentication: API tokens verify the identity of the user or application making the request.
  2. Authorization: They determine what actions the user or application is allowed to perform.
  3. Security: Tokens help protect sensitive data by ensuring that only authorized users can access it.
  4. Expiration: Many tokens have an expiration time to enhance security, requiring periodic renewal.

Filling out the request form

Here are some helpful hints for filling out the Canvas Installation request form. 

Subject:

Short Description of your ticket

Requestor

Your Net ID or the Net ID of the person requesting the LTI, if you are submitting on behalf of someone else.

Department 

This will automatically fill in once you have entered requestor Net ID.

Phone Number

LTI Functionality and Purpose

What learning gap does this LTI fill? 

Is this a new or existing LTI?

Have you used this LTI in the past at Creighton?

Purpose of the LTI

What does this LTI do? How will it be used?

Who will provide support for this LTI?

Note: In most cases, you will be tasked for supporting the application. 

How frequently will the app be used? Please explain how many courses, terms, etc.

Will this be used in multiple courses each term? How many? Every term?

Information you can obtain from Vendor

The following information should be requested from the vendor of the application which you are requesting. 

What data will this LTI be receiving from Canvas/Blueline?

What data will this LTI be sending to Canvas/Blueline?

How does the Organization protect the data it gathers (Privacy Policy)? Upload attachment below if neccessary.

How does the vendor comply with FERPA, COPPA, and other student data laws?

What are the vendor's security certifications?

How does the vendor store APl tokens?

Have there been any security breaches in the past with this vendor?

Information needed for Canvas/BlueLine installation

Canvas/Blueline account where the LTI needs to be installed 

A list of Canvas accounts can be found in this SharePoint document

Canvas/Blueline Sub-Account where the LTI needs to be installed (if needed)

A list of Canvas sub-accounts can be found in this SharePoint document

Course name and code to which the app should be added:

Example: 24Fa ACC 201 A or 202470_ACC_201_A

Do you have a consumer key and shared secret?

Yes/No

Do you have a signed contract with the vendor?

Yes/No

 Delivery Expectations

Most requests for LTIs will need to be reviewed by the IT Steering Review committee which meets weekly. You can expect the request to be approved or denied within one week of submitting. If the application is approved, you can expect a 24-hour turnaround time to get the application installed in Canvas (BlueLine).