[Users] claws-mail with OAuth2 IMAP O365
Philippe Cara (TB)
philippe.cara at vub.be
Thu Jan 11 15:50:35 UTC 2024
Dear mailing list,
thanks to all for your replies.
Yes, indeed I don't have access to Azure or other stuff to allow claws
myself and the IT department thinks it is a "huge security risk" (like
everything else I ask them.
As for using TB's client ID: I tried that several times...
I leave the secret blank but I am not taken to an authorization page and
the link does not work. I did this a few months ago but will try again
(with claws version 4.1.1 in Debian Bookworm) to report what exactly
happens.
Yes, it would be nice to have the TB client ID built in with claws in
some way!
Regards, --Philippe
On 11/01/2024 16:16, Paul Rolland wrote:
> Hello,
>
> On Thu, 11 Jan 2024 14:43:49 +0000
> Colin Leroy-Mira via Users <users at lists.claws-mail.org> wrote:
>
>>> The fact that doing so is trivially easy demonstrates just how weak a
>>> system of identification the client ID is.
>>
>> Yeah indeed! although one drawback of doing that would be that the OAuth
>> prompt displayed to the user would be something along the lines of
>> "Authorize Mozilla Thunderbird to access your email?", and I could see
>> that being a bit counter-intuitive to our users.
>
> Having that as an option to "save" users who can't have their IT allow
> Claws would probably be a nice way to do it, without too blatantly using
> TB's ClientID :D
>
> That would also also to add a small warning message to inform users that
> the prompt would mention TB instead of Claws.
>
> Regards,
> Rol
>
>
> _______________________________________________
> Users mailing list
> Users at lists.claws-mail.org
> https://lists.claws-mail.org/cgi-bin/mailman/listinfo/users
More information about the Users
mailing list