[Users] Microsoft Live (hotmail) oauth2 authentication always fails

David Fletcher David at megapico.co.uk
Fri Jul 5 15:57:25 UTC 2024


>From: Ettore Tagarelli <tagahect at gmail.com>

>As far as I can see URI requested in this link is
>login.microsoftonline.com%2Fcommon%2Foauth2%2Fnativeclient
>and not http://127.0.0.1:8888 anyway I managed to request localhost URI too
>but Claws mail is not listening on 8888 (and no other application is).
>

Hi Ettore,

If Claws is supplying the url that includes "nativeclient" that
indicates you're using an older version (probably 4.0 that you
mentioned before). You cannot just change the redirect_uri to point to
http://127.0.0.1:8888 in an old version of Claws. It simply isn't
listening on that port.

Version 4.2 and later are using the new method and will automatically use
http://127.0.0.1:8888. They will temporarily set up a listener on this
address as part of the authorisation process. I've just tried it on Mac
- you may get a pop-up saying that Claws is asking to listen on that
port and you need to click OK. Depending on what platform you're using
it might do the same.

The email service providers keep moving the goalposts with exact
authentication exchanges needed for Oauth2 as they try to cut out bots
sending automated email or hijacking people's connections. Please try
in the latest Claws, or a least version 4.2 as these are known to work
with the current microsoft system and see how that goes. Version 4.0
from July 2021 is outdated.

Best regards, David.


More information about the Users mailing list