Re: gmail+imap+smtp (oauth2)

[Tim Cross]

Robert Pluim <rpluim@gmail.com> writes:

>>>>>> On Wed, 04 May 2022 17:35:45 +0200, Óscar Fuentes <ofv@wanadoo.es> said:
>
>     Óscar> Tim Cross <theophilusx@gmail.com> writes:
>     >> Google introduced the concept of app passwords back when they first
>     >> implemented 2FA. Basically, they are just a password based
>     >> authentication workflow which can be used with applications that do not
>     >> support 2FA or oauth2 based authentication and authorisation.
>
>     Óscar> [snip]
>
>     >> Google is removing access to imap/smtp using your main google
>     >> login/password and will require 2FA and oauth2 for all web based
>     >> authn/authz. However, their documentation implies that app passwords
>     >> will remain as the standad solution for applications which cannot do 
> 2FA
>     >> or oauth2. 
>
>     Óscar> If I read this right:
>
>     Óscar> https://support.google.com/accounts/answer/185833?hl=en
>
>     Óscar> app passwords require to have 2FA turned on. So you have to go 
> through
>     Óscar> the 2FA process anyway with app passwords.
>
> When creating the app password, maybe (itʼs been so long since I
> created my app password for Gnus that I donʼt remember). But *using*
> the app password just requires presenting it using the normal
> IMAP/SMTP/etc authentication protocols.
>

2FA has nothing to do with the application passwords (at least not
directly). You just need to have enabled it in order to enable
application passwords for your account.