Allow users to authenticate through OAuth for servers that support it with known OAuth settings

LoveAndCoding / lovely-inbox

A lovely little inbox app to check your mail

MIT License

1 stars 0 forks source link

Allow users to authenticate through OAuth for servers that support it with known OAuth settings #22

Open LoveAndCoding opened 3 years ago

LoveAndCoding commented 3 years ago

OAuth is FAR more secure and just better in general. Whenever possible, we want to send users through that route.

Doing it in open source + local app is a bit tricky since we have to store our secrets for authentication in the app, which there isn't really a good way to do securely. This problem, however, is not unique to this app. Basic protection may be good from scrapers, but there will be no way to fully protect these values.

Current OAuth candidates:

AOL
Google
Outlook (?)
Yahoo

LoveAndCoding commented 3 years ago

AOL/Yahoo aren't options, and it looks like both Google and Outlook support PKCE which is better, so we'll definitely use that