Closed Bug 1848370 Opened 1 year ago Closed 1 year ago

Hotmail OAuth2 POP3 authentication fails on Thunderbird 115.1.0 (64-bit)

Categories

(Thunderbird :: General, defect)

Thunderbird 115
defect

Tracking

(Not tracked)

RESOLVED DUPLICATE of bug 1814823

People

(Reporter: isaacribeiro, Unassigned)

References

Details

(Keywords: regression)

Attachments

(1 file, 1 obsolete file)

User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36 AtContent/93.5.3574.75

Steps to reproduce:

I simply changed the authentication method to OAuth2.

Actual results:

My profile's primary email has stopped receiving messages with the "Standard Password" authentication method. On the other hand, Thunderbird 115.1.0 (64-bit) does not ask for the password for authentication with the OAuth2 POP3 method and, consequently, does not receive new messages.

When the system tries to receive messages, a window opens with the URL https://login.microsoftonline.com/common/oauth2/v2.0/authorize?response_type=code&client_id=9e5f94bc-xxxx-4e73-b8be-63364c29d753&redirect_uri=https %3A%2F%2Flocalhost&scope=https%3A%2F%2Foutlook.office365.com%2FIMAP.AccessAsUser.All+https%3A%2F%2Foutlook.office365.com%2FPOP.AccessAsUser.All+https%3A%2F%2Foutlook .office365.com%2FSMTP.Send+offline_access&login_hint=xxxx%40hotmail.com, but it closes automatically before loading the page to enter the password and the message "uncaught exception: 2147500036" appears in the error console.

There is no OAuth2 token from this email saved in the passwords location and Thunderbird does not appear in the list of authorized applications in this email account.

Some Hotmail accounts asked for the password and work correctly with the OAuth2 authentication method.

Expected results:

Thunderbird should load the URL page given to enter the email password and I can grant access permissions to the Hotmail account.

I changed the authentication method of a second Hotmail account from "Standard Password" to "OAuth2" keeping the connection security as "SSL/TLS". Also, I changed the email password to force Thunderbird 115.1.1 to ask for a new password.

Even so, the software did not inform that the password was invalid, it did not ask for a new password and the problem that affects the other account was repeated, showing the same message in the error console: "uncaught exception: 2147500036".

Considering Hotmail emails, only the last two accounts added last year and this year are working with "OAuth2" authentication method.

Attached image Error Console.jpg

I was able to solve the problem that closed the Hotmail OAuth2 authentication window without any interaction by changing the "mail.server.server*.oauth2.scope" and the "mail.smtpserver.smtp*.oauth2.scope".

Current Value (Invalid): "https://outlook.office365.com/IMAP.AccessAsUser.All https://outlook.office365.com/POP.AccessAsUser.All https://outlook.office365.com/SMTP.Send offline_access"

New Value: "https://outlook.office.com/IMAP.AccessAsUser.All https://outlook.office.com/POP.AccessAsUser.All https://outlook.office.com/SMTP.Send offline_access"

New accounts are set up with the new value automatically, which is why my two most recently added accounts worked.

The problem now is that Thunderbird 115.1.1 deletes the cookies when there is an error in connection requests with the POP3 server, especially when the user has many Hotmail email accounts. This causes memorized passwords to be deleted, requiring the user to re-enter the credentials for OAuth2 authentication, even in the same session.

To work around the situation, a user with many Hotmail accounts can disable the options to check for new messages on launch and automatically receive new messages. Alternatively, he can configure multiple Hotmail accounts to check for new messages, for example, every 10, 27, 43, and 62 minutes.

Detail: My 17 accounts checked for new messages every 2 minutes with no problem using "Standard Password" as the authentication method.

Assignee: nobody → mkmelin+mozilla
Status: UNCONFIRMED → NEW
Component: Untriaged → General
Ever confirmed: true
See Also: → 1843487
See Also: → 1839787

After some investigation, this is bug 1814823

Assignee: mkmelin+mozilla → nobody
Status: NEW → RESOLVED
Closed: 1 year ago
Duplicate of bug: 1814823
Keywords: regression
Resolution: --- → DUPLICATE
Attached image Attachment added in this bug by mistake (obsolete) —
Attachment #9375617 - Attachment description: Error Console → Attachment added in this bug by mistake
Attachment #9375617 - Attachment is obsolete: true
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: