Hacker News new | past | comments | ask | show | jobs | submit login

What does this mean for IMAP?



Not much. If you're not using app passwords and your client wants to authenticate using Google auth (e.g. Thunderbird), it has to open the user's browser and setup the oauth flows instead of embedding the browser directly in the app.


It was recently (Oct 8) announced that that Google would provide a 12-month heads-up for stopping less secure app access, so it's my understanding that IMAP is not affected at this point.

https://workspaceupdates.googleblog.com/2020/03/less-secure-...


If you have "less secure apps" you can still use password. Going forward G is pushing use of XOAUTH2 for IMAP auth.

There was some noise from the PHP group because the imap_* functions don't do XOAUTH2 (but Net_IMAP and Zend IMAP libs do the trick)


Nothing. IMAP doesn't use the web signin form that these changes apply to.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: