An app password is a 16-digit passcode that gives a less secure app or device permission to access your Google Account. App passwords can only be used with accounts that have 2-Step Verification turned on.
When to use app passwords
Tip: iPhones and iPads with iOS 11 or up don’t require app passwords. Instead use “Sign in with Google.”
If the app doesn’t offer “Sign in with Google,” you can either:
- Use app passwords
- Switch to a more secure app or device
Create & use app passwords
Important: To create an app password, you need 2-Step Verification on your Google Account.
If you use 2-Step-Verification and get a "password incorrect" error when you sign in, you can try to use an app password.
Create and manage your app passwords. You may need to sign in to your Google Account.
If you’ve set up 2-Step Verification but can’t find the option to add an app password, it might be because:
- Your Google Account has 2-Step Verification set up only for security keys.
- You’re logged into a work, school, or another organization account.
- Your Google Account has Advanced Protection.
Tip: Usually, you’ll need to enter an app password once per app or device.
**EDIT:** I copy-pasted this from https://myaccount.google.com/apppasswords. It doesn't look like they are going to drop support for app passwords.
oauth2 for gmail stopped working, at least partially.
we decided that we do not want to spend additional development resources and extra money for that (we would need a yearly "CASA Tier 2/3 sth. security assessment" only for that - despite we have much better security reviews already passed, that alone would require quite some bureaucracy effort, which would result in other things not being done).
gmails oauth2 was annoying all the time, it seems a waste of resources for a provider that is not even playing well together. also, there are comparable few users using gmail oauth2 with Delta Chat. finally, with 2FA and app passwords, user can still use gmail.
for existing gmail oauth2 users, add a device message how they can "exit"
do not offer oauth2 for new gmail users, instead, use the normal hint, "With 2FA and an app password set for Delta Chat, logging in works fine." (gmail dc user)
this may require adapting provider database