Created attachment 2056 [details] patch file. apply with patch -p0 < out.patch My employer forced Google's OAUTH on me this Friday (and suggested I move to Thunderbird), so instead I added support to authenticate IMAP using OAUTH2, as described in https://tools.ietf.org/html/rfc6749. It is added as a compile time dependency since it adds two dependencies: (1) libjson-c (2) libcurl The OAUTH2 logic is split into its own file because in a future patch I will it add support for SMTP.
Google is phasing out 'Less Secure Apps' in the near future so without this claws becomes useless for gmail users. Can we please make this a priority?
Can I +1 this also? We need OAUTH2 support for both IMAP and SMTP AUTH to properly use Google. Since my employer uses G-Suite and has disabled "less secure applications", I've had to hack my way around this problem, but it would be nice not to have to do that.
My employer is switching to two phase authentication and insisting on Oauth-2 as part of that process. I really need this feature added too.
This bug has been overtaken by releases in the last couple of years. Claws now has OAUTH2 support for Gmail, Microsoft and Yahoo. Customisation for alternative providers is being discussed in bug 4579. This one could be closed.