Open
Bug 1901487
Opened 1 year ago
Updated 1 year ago
Use Microsoft's HTTP 401 Challenge (OAuth2) to authenticate Exchange AutoDiscover requests
Categories
(Thunderbird :: Account Manager, task)
Thunderbird
Account Manager
Tracking
(Not tracked)
NEW
People
(Reporter: babolivier, Unassigned)
References
(Blocks 2 open bugs, )
Details
Right now we support using OAuth2 against known providers. We should extend that to the HTTP 401 Challenge to hopefully support all providers.
|
Reporter | |
Updated•1 year ago
|
Blocks: tb-oauth-enhancements
|
||
Comment 1•1 year ago
•
|
||
| removed | ||
(comment removed)
|
|
||
Comment 2•1 year ago
•
|
||
Can you describe how that mechanism should work to "support all providers"? If you get a HTTP 401 from an AutoDiscover URL, and let's say the WWW-Authenticate header says OAuth2 somehow, then how are you going to discover the OAuth2 server
a) token URL and authentication URL
b) the scope
c) the Client ID?
|
|
||
Comment 3•1 year ago
|
||
If this is only about Office365, then see bug 1906780.
|
|
Reporter | |
Updated•1 year ago
|
Blocks: tb-ms-exchange
You need to log in
before you can comment on or make changes to this bug.
Description
•