Joomla! Issue Tracker - CMS

Download
Launch
Feeling Lucky

[#43403] - SMTP OAuth Support for Joomla CMS

Feature No Code Attached Yet
avatar anibalsanchez
anibalsanchez
30 Apr 2024

Is your feature request related to a problem? Please describe.

Google is phasing out SMTP Plain authentication for Gmail and other services starting in autumn 2024 in favor of SMTP OAuth. This change requires third-party apps to use OAuth, enhancing security and discontinuing less secure access methods.

Describe the solution you'd like

Integrate SMTP OAuth support in Joomla CMS to maintain email functionality for users relying on Gmail. Add configuration options for SMTP OAuth in the Global Configuration section, enabling secure connections with Gmail servers via OAuth.

To accommodate this transition and ensure seamless email functionality for Joomla CMS users who rely on Gmail, the necessary configuration options must be added in the Global Configuration section under Mail > SMTP Methods.

The proposed solution involves including settings for configuring SMTP OAuth, explicitly utilizing the XOAUTH2 mechanism.

The new feature will align Joomla CMS with industry email security standards, provide a smooth transition to OAuth authentication, and improve overall security.

Additional context

avatar anibalsanchez anibalsanchez - open - 30 Apr 2024
avatar joomla-cms-bot joomla-cms-bot - change - 30 Apr 2024
Labels Added: No Code Attached Yet
avatar joomla-cms-bot joomla-cms-bot - labeled - 30 Apr 2024
avatar Quy Quy - change - 30 Apr 2024
Labels Added: Feature
avatar Quy Quy - labeled - 30 Apr 2024
avatar jeckodevelopment
jeckodevelopment - comment - 15 May 2024

Please keep in mind that this is related not only to gmail.com email accounts but all the corporate/schools/governments which use Google Workspace for the email management. So implementing this feature would be crucial for those use cases.

Thanks :)

avatar jjnxpct
jjnxpct - comment - 19 Aug 2024

I think this is very much needed indeed. I have an increasing amount of customers with Google or Microsoft accounts that need OAuth to connect. Atr this time it's still possible, but the user needs to explicitly allow 'plain' user/pw (or 'unsafe methods' or whatever it's called) to still get this to work. But these providers urge us to use OAuth. I think this will be come a bigger issue when ONLY OAuth is allowed in the future.

avatar chrisrjrs
chrisrjrs - comment - 4 Sep 2024

I agree this functionality is very much needed indeed. I see that Microsoft is dropping basic authentication support completely by September 2025. From this article: https://techcommunity.microsoft.com/t5/exchange-team-blog/exchange-online-to-retire-basic-auth-for-client-submission-smtp/ba-p/4114750 I would hope to see support well before then. Does anyone know if a Mailer settings option to authenticate using OAuth is in the Joomla CMS roadmap?

Add a Comment

Login with GitHub to post a comment