MS Exchange Online OAuth 2.0 authentication method enable

[nenad-sladojevic]

Server (please complete the following information):

• Snipe-IT Version v4.9.2 build 4352 (gec723a3da)
• OS: [e.g. Ubuntu, CentOS] Windows Server 2012 R2 (Build 9600)
• Web Server: [e.g. Apache, IIS] IIS (8.5.9600.16384)
• PHP Version 7.1.30

Is your feature request related to a problem? Please describe. For an e-mail capability, we are using MS Exchange Online with the basic authentication. This method of authentication will be disabled very soon and we need OAuth 2.0 option instead. Mentioned authentication option must be also documented in full.

Describe the solution you'd like E-Mail configuration (as per .env file) that supports OAuth 2.0 as described by MS, on the link bellow. https://docs.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth

Describe alternatives you've considered No alternative solution to the existing basic authentication will be supported by MS Exchange Online. Existing Issues did not provide suitable information: https://github.com/snipe/snipe-it/issues/1897 https://github.com/snipe/snipe-it/issues/4800

Additional context Information received from MS (via our IT) is: https://techcommunity.microsoft.com/t5/exchange-team-blog/announcing-oauth-2-0-support-for-imap-and-smtp-auth-protocols-in/ba-p/1330432

[welcome[bot]]

👋 Thanks for opening your first issue here! If you're reporting a 🐞 bug, please make sure you include steps to reproduce it. We get a lot of issues on this repo, so please be patient and we will get back to you as soon as we can.

[lvladan]

Hi, this would be a very nice feature that I would also like to see since my company will also move from basic to OAuth 2.0 authentication as Microsoft is enforcing it.

[ReticentRobot]

Same here, guessing there hasn't been any updates?

[snipe]

No updates. We recommend folks use SAML for now.

[MaKaNu]

What is the status of this feature on the roadmap? Later this year Basic Auth will be disabled on MS Exchange Accounts and the prefered (only? I don't really know) Authentication Method is OAuth2.

[tomaskovacik]

@snipe can you elaborate how to use saml to authenticate smtp? I am using SAML for user logins currently.

[tomaskovacik]

ok I manage to do workaround using postfix as smtp relay

https://www.middlewareinventory.com/blog/postfix-relay-office-365/

Middleware Inventory

Postfix SMTP relay to Office 365 – Single and Multiple SMTP Servers - Middleware Inventory

Postfix is a powerful opensource mail server with a lot of customization options available built-in. I recently had a requirement to set up an Organization-wide mail server to perform SMTP relay to Office365 and allow our Java, JS, Python applications to send emails from different office365 email ids based on the Subject (or) the sender details. Before we think about the

[Mynty100]

Hello there. Yes we in the same boat our company is having IMAP and POP turned off. Be nice to have this native to the .env Sadly the PostFix option not viable to our company. We also use OsTicket helpdesk and they appear to have a plugin for this and working well. Please consider making this happen and documenting it.

Thank you in advance for all your hard work.