Bug 387612

Summary: IMAP gmail request OAUTH authntication with no user request
Product: [Frameworks and Libraries] Akonadi Reporter: boris.sh.1983+kde.bugzilla
Component: IMAP resourceAssignee: Christian Mollekopf <chrigi_1>
Severity: normal CC: dvratil, kdepim-bugs, platus.x+kdebugs
Priority: NOR    
Version: 5.7.2   
Target Milestone: ---   
Platform: Other   
OS: Linux   
Latest Commit: Version Fixed In:

Description boris.sh.1983+kde.bugzilla 2017-12-05 07:17:14 UTC
After a recent upgrade to Kmail2 5.6.0 I have witnessed that the IMAP akonadi resource had requested to use OAUTH2 without any action from the user - I expected an option to enable OAUTH2 or to switch out of username / password not just a popup that asks for a username /password. 

There is no clear way to revoke the persmission from the client side.

All connection settings are grayed out in kmail.

akonadi 17.08
Comment 1 platus.x+kdebugs 2018-03-14 20:13:27 UTC
I can confirm that as of 5.7.2 this bug still exists. Whenever the user's IMAP server is "imap.google.com" it forces all the other server settings to be disabled and repeatedly tries to do Google OAuth without asking.
Comment 2 Daniel Vrátil 2018-08-27 23:02:56 UTC
This has been relaxed in recent versions. IMAP will still prefer XOAUTH authentication if it's supported by the server (Gmail), but allows users to choose alternative authentication methods if they wish.