Setup Login as admin. Create a course "Course 1". Create a student s1 and enrolled in Course 1. Testing scenario 1. Context Course - Course section Login as admin. Go to the "Course 1". Edit one of the sections. In that section, upload an H5P file attached in the issue arithmetic-quiz.h5p using the "Manage files" button in the Atto editor. Now click the "Link" button, click "Browse repositories", select "Embedded files" and select the h5p file you just uploaded. Save the changes. Copy the URL of the h5p file. In a new browser where you aren't authenticated or in incognito mode, paste the next URL and change YOURURLH5PFILE for the url copied in step 7. http://YOURMOODLESITE/h5p/embed.php?url=YOURURLH5PFILE Expected result: Check that you are not able to view the H5P without being authenticated. And you see this message: Course or activity not accessible. (You are not logged in) Go to your previous browser or tab where you are logged as admin. And paste the URL in the step 8. Expected result: Check that you are able to view the H5P file. Testing scenario 2. Context Block - Block HTML Login as admin. Go to the "Course 1". Add Block HTML to the course. Edit the new Block HTML and upload an H5P file attached in the issue arithmetic-quiz.h5p using the "Manage files" button in the Atto editor. Now click the "Link" button, click "Browse repositories", select "Embedded files" and select the h5p file you just uploaded. Save the changes. Copy the URL of the h5p file. In a new browser where you aren't authenticated or in incognito mode, paste the next URL and change YOURURLH5PFILE for the url copied in step 7. http://YOURMOODLESITE/h5p/embed.php?url=YOURURLH5PFILE Expected result: Check that you are not able to view the H5P without being authenticated. And you see this message: Course or activity not accessible. (You are not logged in) Go to your previous browser or tab where you are logged as admin. And paste the URL in the step 8. Expected result: Check that you are able to view the H5P file. Now, go to the Dashboard. Add Block HTML to the Dashboard. Edit the new Block HTML and upload an H5P file attached in the issue arithmetic-quiz.h5p using the "Manage files" button in the Atto editor. Now click the "Link" button, click "Browse repositories", select "Embedded files" and select the h5p file you just uploaded. Save the changes. Copy the URL of the h5p file. In a new browser where you aren't authenticated or in incognito mode, paste the next URL and change YOURURLH5PFILE for the url copied in step 7. http://YOURMOODLESITE/h5p/embed.php?url=YOURURLH5PFILE Expected result: Check that you are not able to view the H5P without being authenticated. And you see this message: Sorry, the requested file could not be found Go to your previous browser or tab where you are logged as admin. And paste the URL in the step 19. Expected result: Check that you are able to view the H5P file. Login as s1 And paste the URL in the step 19. Expected result: Check that you are not able to view the H5P without being authenticated. And you see this message: Sorry, the requested file could not be found Testing scenario 3. Context Module without get_path_from_pluginfile function implemented. Login as admin. Go to the "Course 1". Add a new activity chat, Edit the description of the new activity chat and upload an H5P file attached in the issue arithmetic-quiz.h5p using the "Manage files" button in the Atto editor. Now click the "Link" button, click "Browse repositories", select "Embedded files" and select the h5p file you just uploaded. Save the changes. Copy the URL of the h5p file. In a new browser where you aren't authenticated or in incognito mode, paste the next URL and change YOURURLH5PFILE for the url copied in step 7. http://YOURMOODLESITE/h5p/embed.php?url=YOURURLH5PFILE Expected result:  Check that you are not able to view the H5P without being authenticated. And you see this message:  Course or activity not accessible. (You are not logged in) Go to your previous browser or tab where you are logged as admin. And paste the URL in the step 8. Expected result:  Check that you are able to view the H5P file. Testing scenario 4. Context CourseCat Login as admin. Go to the course index page: http:/YOURMODDLESITE/course/ Click on Miscellanious category. Edit the category and upload an H5P file attached in the issue arithmetic-quiz.h5p using the "Manage files" button in the Atto editor. If you don't see the Editor, be sure that the format option is HTML. Now click the "Link" button, click "Browse repositories", select "Embedded files" and select the h5p file you just uploaded. Save the changes. Then you have to go again over the steps 2 and 3 to see the URL of the h5p file. Also, you could go direct using the url http://yourmoodlesite/course/index.php?categoryid=1 Copy the URL of the h5p file. In a new browser where you aren't authenticated or in incognito mode, paste the next URL and change YOURURLH5PFILE for the url copied in step 7. http://YOURMOODLESITE/h5p/embed.php?url=YOURURLH5PFILE Expected result:  Check that you are able to view the H5P file. Go to your previous browser or tab where you are logged as admin. Go to Site Administration > Security > Site security settings. Check the option " Force users to log in " (forcelogin). In a new browser where you aren't authenticated or in incognito mode, paste the same URL in the step 8. Expected result:  Check that you are not able to view the H5P without being authenticated. And you see this message:  Course or activity not accessible. (You are not logged in) Go to your previous browser or tab where you are logged as admin. And paste the URL in the step 8. Expected result:  Check that you are able to view the H5P file.