{"id":16130212,"url":"https://github.com/lambdacasserole/chalk","last_synced_at":"2025-04-06T14:16:32.017Z","repository":{"id":57010869,"uuid":"77334688","full_name":"lambdacasserole/chalk","owner":"lambdacasserole","description":"Allows your users to authenticate against a Blackboard Learn installation.","archived":false,"fork":false,"pushed_at":"2018-08-09T15:15:21.000Z","size":472,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-02-12T20:19:34.155Z","etag":null,"topics":["authentication","blackboard","chalk","login"],"latest_commit_sha":null,"homepage":null,"language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/lambdacasserole.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2016-12-25T16:44:53.000Z","updated_at":"2019-02-02T03:53:06.000Z","dependencies_parsed_at":"2022-08-21T15:10:18.522Z","dependency_job_id":null,"html_url":"https://github.com/lambdacasserole/chalk","commit_stats":null,"previous_names":[],"tags_count":2,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lambdacasserole%2Fchalk","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lambdacasserole%2Fchalk/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lambdacasserole%2Fchalk/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lambdacasserole%2Fchalk/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lambdacasserole","download_url":"https://codeload.github.com/lambdacasserole/chalk/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":247492546,"owners_count":20947545,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["authentication","blackboard","chalk","login"],"created_at":"2024-10-09T22:15:00.100Z","updated_at":"2025-04-06T14:16:31.996Z","avatar_url":"https://github.com/lambdacasserole.png","language":"PHP","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Chalk\nAllows your users to authenticate against a Blackboard Learn installation.\n\nBy pointing Chalk at your web-facing installation of the Blackboard Learn software, you can provide a username/password pair and get back a boolean value indicating whether or not authentication is successful using those credentials.\n\n## Usage\nCouldn't be simpler.\n\n```php\n// URL of installation, false means don't validate SSL.\n$client = new \\Chalk\\Authenticator('https://blackboard.mywebsite.com/', false);\n$successful = $client-\u003eauthenticate('username', 'password'); // True means login was successful.\n```\n\n## Precautions\nYour Blackboard learn installation should be accessible over HTTPS only, as should the server that Chalk is being used from. If there is any plain HTTP in there your username and password will be sent in the clear.\n\nAlso setting the second constructor parameter to `false` to disable SSL verification opens you way up to a [MITM attack](https://en.wikipedia.org/wiki/Man-in-the-middle_attack) etc. The only reason to do so is if you're using a self-signed certificate on your Blackboard installation or one from an authority that [cURL doesn't trust for whatever reason](https://curl.haxx.se/docs/sslcerts.html). \n\nAdditionally, the result passed back by an instance of `Authenticator` shouldn't be taken verbatim. The script works by checking if the page it recieves contains a flag (string of text) that indicates that the user has logged in successfully. By default, this is the string:\n\n```\nModules you are studying:\n```\n\nIt might be possible to craft a username or password which injects the flag into the login page and tricks Chalk into thinking the login attempt was successful when it wasn't. I haven't been able to do this, but that doesn't mean it isn't possible, depending on your server configuration. The flag can be changed using the third constructor parameter for `Authenticator`.\n\n## Limitations\nIf you just want to check whether a set of credentials is valid or not, Chalk might be the library for you. It can't do anything else at all. Give it a username and password and get back a boolean. That's it.\n\n## Contributing\nFor most intents and purposes, Chalk is considered to fulfil its original use case. Bug fixes and suggestions are welcome, however, from any member of the community.\n\n## Disclaimer\nCHALK AND ITS AUTHOR(S) ARE NOT AFFILIATED WITH BLACKBOARD AND ALL OTHER BLACKBOARD PRODUCT NAMES ARE TRADEMARKS OR REGISTERED TRADEMARKS OF BLACKBOARD INC. ALL OTHER COMPANY AND PRODUCT NAMES ARE TRADEMARKS OR REGISTERED TRADEMARKS OF THEIR RESPECTIVE COMPANIES.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flambdacasserole%2Fchalk","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flambdacasserole%2Fchalk","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flambdacasserole%2Fchalk/lists"}