...
- What are the principles/constraints that inform our process?
- What scenarios do we think should apply?
- User goes to tool via LMS
- User goes to tool via portal (i.e., not in a class context)
- User goes directly to tool (unmediated)
- other?
- n-tier delegation: who is trusting whom? Who are or should be the actors?
- to assert authenticated user
- to assert attributes
- SSO and session (may or may not relate to the use of iframe). What is the bearing on user experience?
- How do our questions about the LTI TP relate to the generic problem of launching a widget?