Prevent Masquerade function from allowing access to external sites

Idea created by Anthony Hess(Local) on Mar 2, 2017
    Open for Voting
    Score3
    • Anthony Hess(Local)
    • Rob Ditto
    • Karen Barth

    Due to the SSO Instructure implements between it's systems (Communities, cases, etc.), when masquerading as another person, you have access to that person's account on those systems. Masquerade should only allow access to the user's account within the Canvas LMS and any LTI's.

     

    As an example, I could use masquerade to vote up this idea... hrmm...