jktjkt
commented
3 years ago This is explained on this stackexchange post. It's because Trojita does not implement Google's non-standard authentication mechanism, the SASL XOAUTH2. If someone is willing to implement and maintain that, please submit patches (and even better, persuade Google to standardize this via IETF). Note that I have not checked if this particular implementation of OAuth requires registration of client applications, and whether that requires any application "secret tokens".
probonopd
Consider Trojitá mail client.
It can be used to access IMAP servers for mail access, without having to download all mail locally.
However, in my tests it required Gmail account settings to be changed to allow "less secure apps", something that doesn't instill confidence.
What in Trojitá makes Google categorize it as "less secure"? cc @jktjkt
Also, we would want this workflow:
(Gmail as an example, the same for other similar popular services.)