Comment 3 for bug 2000686

An issue with the 'webservice' auth methods and LTI is that we can have a a valid 'webservice' auth method on a site even if LTI is not being used.

The generic 'webservice' instance name can also exist if the site has webservice tokens generated on the webservice/admin/index.php page under 'Manage service access tokens' section.

Here the 'webservice' auth instance is for checking that the owner of the token is in an institution that allows webservice access (checked by there being at least 1 'webservice' auth method for that institution).

So it's not easy / obvious what users need to be switch from one webservice auth method to another if they are using the generic 'webservice' one.