https://www.claws-mail.org/faq/api.php?action=feedcontributions&user=Mir&feedformat=atom Claws Mail FAQ - User contributions [en] 2024-03-28T10:07:04Z User contributions MediaWiki 1.35.7 https://www.claws-mail.org/faq/index.php?title=Oauth2&diff=3214 Oauth2 2022-05-24T12:04:58Z <p>Mir: Update configuration for MS Outlook and MS Exchange</p> <hr /> <div>__FORCETOC__<br /> <br /> === Claws Mail Account Settings for OAuth 2.0 === <br /> <br /> When setting up an account with OAuth2, besides correctly filling out the 'OAuth2' page, you also need to make sure you have the correct settings on the 'Receive' and 'Send' pages:<br /> &lt;pre&gt; 'Receive' page (POP): Authenticate before POP connection: Authentication method = 'OAuth2'.<br /> <br /> 'Receive' page (IMAP): Authentication method = 'OAuth2'.<br /> <br /> 'Send' page (POP / IMAP): SMTP Authentication: Authentication method = 'OAuth2'.<br /> &lt;/pre&gt;<br /> <br /> <br /> === Setting up OAuth 2.0 for Gmail === <br /> <br /> '''Follow the instructions here:'''<br /> https://support.google.com/googleapi/answer/6158849<br /> <br /> Note: If you use more than one Google/Gmail account, make sure you are signed in to Google Cloud Platform with the desired account before creating a project or changing any settings. (It is possible to be signed into multiple accounts; just make sure the browser tab/window you are working in is controlled by the correct account.)<br /> <br /> When setting up the project use these settings:<br /> &lt;pre&gt; Project name: Anything of your choice<br /> <br /> Publishing status (of project): 'In Production'<br /> <br /> User type: External<br /> &lt;/pre&gt;<br /> '''Notes related to the above:'''<br /> <br /> 1. If/when you create a new project, if it appears that the process has stalled, look in the top-right corner for a notification icon that you can click on and then select the relevant project. This should then open that project's dashboard so you can continue with the process. (As of 24 Mar 2022.)<br /> <br /> 2. Regarding Google's above-linked instructions related to the &quot;Credentials&quot; page: Where it says &quot;Click 'New Credentials'&quot; it should read &quot;Click '+ CREATE CREDENTIALS'&quot; (as of 24 Mar 2022).<br /> <br /> 3. Regarding &quot;Publishing status&quot;, the initial default is 'Testing'. To change this to 'In Production' click on the 'Publish App' button in the 'Publishing status' section of the 'OAuth Consent Screen', and then click on 'Confirm'. This results in the status changing to ‘In Production’ and a new section ‘Verification Status’ showing with a ‘Needs verification’ status, which can be safely ignored. If this doesn't work for some reason, you can switch back to 'Testing' status on the same 'OAuth Consent Screen' page you used before. For this status to work you need to make sure you've added the desired email address to the 'Test Users' list on the 'Edit App Registration' - 'Test Users' page of the 'OAuth Consent Screen' setup process (or on the main 'OAuth Consent Screen' page). Note that with this status each authorization code will only last for seven days, after which you will be unable to connect and will see authorization errors in the network log. To get a new authorization code, go to the 'OAuth2' page of the Claws Mail settings and repeat the steps for getting an authorization code and completing authorization. (Note that there is no need to get a new client ID or client secret.) (as of 17 Apr 2022)<br /> <br /> <br /> '''OAuth consent screen settings:'''<br /> &lt;pre&gt; App name: Anything of your choice<br /> <br /> User support email: Your own email<br /> <br /> Developer email: Your own email<br /> <br /> App domain entries: Leave blank<br /> &lt;/pre&gt;<br /> '''Scopes settings:'''<br /> &lt;pre&gt; Click on 'Add or Remove Scopes'.<br /> <br /> Select (check the box) this entry: &quot;Gmail API, https://mail.google.com/, Read, compose, send and<br /> permanently delete all your email from Gmail&quot;<br /> <br /> (Note that the list is in alphabetical order and you may need to go to a later page to find this entry.<br /> Also, if you can't find it in the list, you can enter the URL manually at the bottom of the page to add it to the list.)<br /> <br /> Click on 'Update'.<br /> <br /> Confirm that the section 'Your restricted scopes' shows the entry you just added.<br /> <br /> Click on 'Save and Continue'.<br /> &lt;/pre&gt;<br /> '''Getting the Client ID'''<br /> &lt;pre&gt;<br /> APIs and Services on the left menu, then Credentials entry<br /> <br /> Copy the Client ID to the corresponding field on Claws Mail's account settings' 'Oauth2' page.<br /> <br /> Select &quot;Edit OAuth Credentials&quot;, then copy the Client Secret to the corresponding field on Claws Mail's account settings' 'Oauth2' page.<br /> &lt;/pre&gt;<br /> '''Troubleshooting:'''<br /> <br /> It's possible / probable that Gmail will 'complain' about giving access to an unverified third-party app. If this keeps you from using Claws to access your Gmail, you may need to log in to Gmail's web-mail interface and review / revise your security settings there. This may involve dismissing the warning Google gives about the Project that you set up for Claws to access GMail on your account. If you dismiss a Warning, Google may then ask you why you are dismissing it, providing several options, leaving you free to choose the one which seems most suitable.<br /> <br /> <br /> <br /> === Setting up OAuth 2.0 for Microsoft - for Outlook or Exchange ===<br /> <br /> '''Step 1: Get into 'Azure', Microsoft's cloud computing service.'''<br /> <br /> Go to https://portal.azure.com , making sure you are signed in with the Microsoft account you are wanting to set up. Go to 'Azure Active Directory' (click on the 'View' button under 'Manage Azure Active Directory') and then the 'App registrations' page (via the link in the side-pane). Here is a direct link to this page: https://portal.azure.com/#blade/Microsoft_AAD_IAM/ActiveDirectoryMenuBlade/RegisteredApps .<br /> <br /> <br /> '''Step 2: Register Claws Mail as a new app.'''<br /> <br /> Click on 'New Registration' to get to the 'Register an application page', then adjust the settings as follows:<br /> &lt;pre&gt;<br /> Display name: Anything you choose.<br /> <br /> Supported account types - set to &quot;Accounts in any organizational directory… and personal Microsoft accounts…&quot; (Note: This will be shown on the app’s ‘Authentication’ page.) (It will also be represented on the app's ‘Overview’ page as &quot;All Microsoft account users&quot;.)<br /> <br /> Select a platform: &quot;Public client/native...&quot;<br /> <br /> Redirect URI: &lt;nowiki&gt;http://127.0.0.1:8888&lt;/nowiki&gt;<br /> &lt;/pre&gt;<br /> Once you've adjusted settings as desired, click on the 'Register' button.<br /> <br /> (Note: Creating a new registration will result in the auto-generation of an application (client) ID, an object ID, and a directory (tenant) ID, all of which will then be visible on the app’s ‘Overview’ page.)<br /> <br /> <br /> '''Step 3: Configure the Claws Mail app.'''<br /> <br /> The various configuration pages can be accessed via the links in the side-pane. Nothing needs to be changed on the following pages:<br /> &lt;pre&gt;<br /> Quickstart<br /> Integration assistant<br /> Branding<br /> Certificates &amp; secrets<br /> Token configuration<br /> Expose an API<br /> Owners<br /> Manifest<br /> &lt;/pre&gt;<br /> <br /> Check/adjust settings on the following pages:<br /> &lt;pre&gt;<br /> 'Authentication' - Confirm that the ‘redirect URI’ you set during registration has its box checked. You can also add/delete redirect URI’s on this page, as necessary.<br /> <br /> 'API permissions' - Click on 'Add a permission' &gt; 'Microsoft Graph' &gt; 'Delegated permissions', and add the following permissions. First, select each permission by typing some/all of its name in the search/filter box to narrow the results, expanding categories as needed, and clicking on the box beside the permission so that a check mark shows. Once you've selected all the permissions, click on the 'Add permissions' button to add them all at the same time. Any permissions that have been successfully added will now show up in the 'Configured permissions' list on the 'API permissions' page.<br /> - IMAP.AccessAsUser.All<br /> - Mail.ReadWrite<br /> - Mail.Send<br /> - offline_access<br /> - POP.AccessAsUser.All<br /> - SMTP.Send<br /> - User.Read<br /> &lt;/pre&gt;<br /> Once the Claws Mail app is configured, the Client ID (also called Application ID) can be copied to Claws Mail's corresponding Client ID field. (The Client ID is shown on the app's 'Overview' page in Azure.) No Client Secret is needed, so Claws Mail's Client Secret field should be empty.<br /> <br /> Note: If you are using an email account managed by a third-party organization using Microsoft’s email systems, then when you attempt to get an authorization code you may see a screen that says something like ‘Approval Required’ // ‘This app requires your admin’s approval...’. This is likely because Claws Mail is not ‘published’ by a ‘verified publisher’ or because for some other reason the organization has decided to limit the apps to which users can give permissions. There may be a field where you can enter justification for requesting this app, after which you can click on ‘Request approval’. Then you may see a notice that says the request has been sent to your ‘admin’ and that you’ll receive an email in regards to whether it’s been approved or not. You may want to reach out to your email administrator to see if they got the request, to let them know it is a legitimate request from you, and perhaps provide a link to the Claws Mail website and/or other information about the ‘app’ for which you are wanting them to give you consent permissions. (The above details may be different depending on how the organization has configured their 'user consent' settings.) Ultimately it will be up to the organization (rather than Microsoft or yourself) as to whether you will be able to give Claws the access it needs.</div> Mir https://www.claws-mail.org/faq/index.php?title=Connecting_to_MS_Exchange&diff=2039 Connecting to MS Exchange 2008-09-11T18:16:27Z <p>Mir: /* MS Exchange 2007 */</p> <hr /> <div>== MS Exchange 2003 ==<br /> This part needs '''Your''' attention<br /> <br /> == MS Exchange 2007 ==<br /> MS Exchange 2007 prefers, and is default configured to, use GSSAPI for both IMAP and SMTP. At present Claws-Mail only supports GSSAPI for IMAP. The next preferred authentication method for Exchange 2007 is NTLM which is not supported in Claws-Mail. Your only option for connecting to Exchange 2007 is if your company's mail administrator enables plain IMAP in Exchange - plain IMAP is not enabled by default.<br /> <br /> Apart from the above there is another misbehavour from Exchange 2007: All though announcing the present of OUTBOX (Queue), and Drafts folder this are in read-only mode. This is causing a bit of annoyance since the IMAP specification RFC 2060 clearly states that the mail client, if these folders are announced, should use those folders for queueing and saving drafts. The only way of solving these issues is to instruct Claws-mail to use another folder for queue and draft. Also folders for sent and trash are named differently than the specication instructs: Sent is named &quot;Sent Items&quot; and trash is named &quot;Deleted Items&quot;.<br /> <br /> These are the required steps:<br /> * configure what ever settings is given to you about the company's connection - no MAPI though. Default is IMAPS (port 993) and SMTP-TLS (port 587) using AUTH LOGIN. To use the same username and password provided for IMAP4 leave the username and password field empty.<br /> <br /> [[Image:ssl_settings.png]]<br /> <br /> * Edit Accounts -&gt; Advanced. VERY IMPORTANT: Make sure that you instruct claws to use a local/other imap account for queing and drafts.<br /> [[Image:Advanced_settings.png]]</div> Mir https://www.claws-mail.org/faq/index.php?title=Connecting_to_MS_Exchange&diff=2038 Connecting to MS Exchange 2008-09-11T18:14:45Z <p>Mir: /* MS Exchange 2007 */</p> <hr /> <div>== MS Exchange 2003 ==<br /> This part needs '''Your''' attention<br /> <br /> == MS Exchange 2007 ==<br /> MS Exchange 2007 prefers, and is default configured to, use GSSAPI for both IMAP and SMTP. At present Claws-Mail only supports GSSAPI for IMAP. The next preferred authentication method for Exchange 2007 is NTLM which is not supported in Claws-Mail. Your only option for connecting to Exchange 2007 is if your company's mail administrator enables plain IMAP in Exchange - plain IMAP is not enabled by default.<br /> <br /> Apart from the above there is another misbehavour from Exchange 2007: All though announcing the present of OUTBOX (Queue), and Drafts folder this are in read-only mode. This is causing a bit of annoyance since the IMAP specification RFC 2060 clearly states that the mail client, if these folders are announced, should use those folders for queueing and saving drafts. The only way of solving these issues is to instruct Claws-mail to use another folder for queue and draft. Also folders for sent and trash are named differently than the specication instructs: Sent is named &quot;Sent Items&quot; and trash is named &quot;Deleted Items&quot;.<br /> <br /> These are the required steps:<br /> * configure what ever settings is given to you about the company's connection - no MAPI though. Default is IMAPS (port 993) and SMTP-TLS (port 587) using AUTH LOGIN. To use the same username and password provided for IMAP4 leave the username and password field empty.<br /> <br /> [[Image:Advanced_settings.png]]<br /> <br /> * Edit Accounts -&gt; Advanced. VERY IMPORTANT: Make sure that you instruct claws to use a local/other imap account for queing and drafts.<br /> [[Image:ssl_settings.png]]</div> Mir https://www.claws-mail.org/faq/index.php?title=Connecting_to_MS_Exchange&diff=2037 Connecting to MS Exchange 2008-09-11T18:13:58Z <p>Mir: /* MS Exchange 2007 */</p> <hr /> <div>== MS Exchange 2003 ==<br /> This part needs '''Your''' attention<br /> <br /> == MS Exchange 2007 ==<br /> MS Exchange 2007 prefers, and is default configured to, use GSSAPI for both IMAP and SMTP. At present Claws-Mail only supports GSSAPI for IMAP. The next preferred authentication method for Exchange 2007 is NTLM which is not supported in Claws-Mail. Your only option for connecting to Exchange 2007 is if your company's mail administrator enables plain IMAP in Exchange - plain IMAP is not enabled by default.<br /> <br /> Apart from the above there is another misbehavour from Exchange 2007: All though announcing the present of OUTBOX (Queue), and Drafts folder this are in read-only mode. This is causing a bit of annoyance since the IMAP specification RFC 2060 clearly states that the mail client, if these folders are announced, should use those folders for queueing and saving drafts. The only way of solving these issues is to instruct Claws-mail to use another folder for queue and draft. Also folders for sent and trash are named differently than the specication instructs: Sent is named &quot;Sent Items&quot; and trash is named &quot;Deleted Items&quot;.<br /> <br /> These are the required steps:<br /> * configure what ever settings is given to you about connection - no<br /> MAPI though. Default is IMAPS (port 993) and SMTP-TLS (port 587) using AUTH LOGIN. To use the same username and password provided for IMAP4 leave the username and password field empty.<br /> <br /> [[Image:Advanced_settings.png]]<br /> <br /> * Edit Accounts -&gt; Advanced. VERY IMPORTANT: Make sure that you<br /> instruct claws to use a local/other imap account for queing and drafts.<br /> [[Image:ssl_settings.png]]</div> Mir https://www.claws-mail.org/faq/index.php?title=Connecting_to_MS_Exchange&diff=2036 Connecting to MS Exchange 2008-09-11T18:13:30Z <p>Mir: </p> <hr /> <div>== MS Exchange 2003 ==<br /> This part needs '''Your''' attention<br /> <br /> == MS Exchange 2007 ==<br /> MS Exchange 2007 prefers, and is default configured to, use GSSAPI for both IMAP and SMTP. At present Claws-Mail only supports GSSAPI for IMAP. The next preferred authentication method for Exchange 2007 is NTLM which is not supported in Claws-Mail. Your only option for connecting to Exchange 2007 is if your company's mail administrator enables plain IMAP in Exchange - plain IMAP is not enabled by default.<br /> <br /> Apart from the above there is another misbehavour from Exchange 2007: All though announcing the present of OUTBOX (Queue), and Drafts folder this are in read-only mode. This is causing a bit of annoyance since the IMAP specification RFC 2060 clearly states that the mail client, if these folders are announced, should use those folders for queueing and saving drafts. The only way of solving these issues is to instruct Claws-mail to use another folder for queue and draft. Also folders for sent and trash are named differently than the specication instructs: Sent is named &quot;Sent Items&quot; and trash is named &quot;Deleted Items&quot;.<br /> <br /> These are steps:<br /> * configure what ever settings is given to you about connection - no<br /> MAPI though. Default is IMAPS (port 993) and SMTP-TLS (port 587) using AUTH LOGIN. To use the same username and password provided for IMAP4 leave the username and password field empty.<br /> <br /> [[Image:Advanced_settings.png]]<br /> <br /> * Edit Accounts -&gt; Advanced. VERY IMPORTANT: Make sure that you<br /> instruct claws to use a local/other imap account for queing and drafts.<br /> [[Image:ssl_settings.png]]</div> Mir https://www.claws-mail.org/faq/index.php?title=Main_Page&diff=2032 Main Page 2008-09-11T17:47:04Z <p>Mir: /* General */</p> <hr /> <div>== Claws Mail FAQ ==<br /> <br /> === General ===<br /> <br /> * [[General Information]]<br /> * [[Installation and Configuration]]<br /> * [[Interface]]<br /> * [[Composing Mails Or News]]<br /> * [[Filtering and Processing of Messages]]<br /> * [[Actions]]<br /> * [[Templates]]<br /> * [[Plugins]]<br /> * [[S/MIME_howto|S/MIME Plugin Howto]]<br /> * [[Using Claws Mail with other programs]]<br /> * [[LDAP and Claws Mail]]<br /> * [[Contecting to MS Exchange]]<br /> <br /> === Microsoft Windows ===<br /> <br /> * [[Windows: Downloads | Downloads]]<br /> ----<br /> : If you edit the FAQ pages please keep the style. If you change anchor names you might break links from other pages, so don't do that. Invent better names for new anchors. That makes it easier to reference them from other pages. You don't have to add new questions to the end of the list, if you think it's better placed after another question.</div> Mir