Re: [Evolution] Evolution and Google's less secure app problem



On Fri, 2018-06-01 at 15:01 +0100, Pete Biggs wrote:



   Like what is your version of Evolution?
The current default version on LinuxMint vs 18.3,  which is
Evolution
3.18.5.2
I know people get frustrated with us saying this all the time, but
that
is an old version and it doesn't have all the features necessary to
deal with evolving services like Gmail.

Unfortunately, that is all that is available without having to build
from scratch, at least until someone fixes the issue with the flatpak.





   What are you trying to do?


Create an Imap+ account in Evolution to give me access to a corporate
account where the only official way to access is via web client
( yuck ).  I've done it a few hundred times on domains where "allow
less secure apps" is set.  Yes, I'm a glutton for punishment, but on
average I have 6-8 different email accounts being handled through
Evolution ( I don't like Thunderbird ) and almost as many calendars
combined into one Evolution calendar.



I think it's important to understand what the differences are. Google
by default uses the OAuth2 mechanism for authentication. For things
that can't cope with OAuth2 the security can be lessened to use classic
username/password authentication. But there are restrictions in place
on whether OAuth2 can be dropped.


That's where I'm stuck. The version of Evolution available to me
doesn't support Oauth and I'm not allow to the less secure mode.





   How are you creating the account in Evolution?


Through the normal Edit->Preferences->> Add route.  Everything creates
correctly, but I get the dreaded message, long with an email stating my
access has been blocked for the app and machine in question. The
machine part is a real pain, because it is my normal work machine.



I'm not sure if 3.18.5 can deal with OAuth2. If it can, then you should
not explicitly set the account up as IMAP as that won't invoke the
OAuth2 mechanism.

If it can't, then your best bet is to use Gnome Online Accounts to
create the account in Evolution. GOA knows about OAuth2 and will deal
with all that side of thing while Evolution will deal with the data
like emails and calendar. 



I don't have access to Google Online Accounts, domain controller won't
allow it.



But I will say that I have 2FA turned on (and every one should!)whichmeans that it won't "allow less 
secure applications" and myEvolutionhappily connects to my gmail account without any problems.What period 
do you set for collecting new emails?  I find I'mfrequently in locations for 2 plus hours where I can't 
have a phonebutstill need to be able to retrieve my email and 2+ hours is too longtobe unable to provide 
the 2nd factor.  Weird yes, but the band ismainlyaimed a cameras.


I am logged into Gmail with OAuth2 so it doesn't continually need to
prompt me for 2FA - it's a once only thing.  (And my emails are set to
be retrieved every 5 mins, but that's not really relevant.)


I guess I know what I'm doing this weekend .. seeing if I can figure
out enough about flatpaks to fix the broken one on Linux Mint.




[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]