From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Tim Cross Newsgroups: gmane.emacs.devel Subject: Re: gmail+imap+smtp (oauth2) Date: Fri, 06 May 2022 10:32:48 +1000 Message-ID: <87a6bvsdix.fsf@gmail.com> References: <871qxbdulc.fsf@mat.ucm.es> <87k0b2tkg1.fsf@mat.ucm.es> <87zgjx4qhs.fsf@gmail.com> <8735hng2pu.fsf@mat.ucm.es> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="10411"; mail-complaints-to="usenet@ciao.gmane.io" User-Agent: mu4e 1.7.13; emacs 28.1.50 Cc: Stefan Monnier , Richard Stallman , emacs-devel@gnu.org To: Uwe Brauer Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Fri May 06 02:37:41 2022 Return-path: Envelope-to: ged-emacs-devel@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1nmlyW-0002XZ-NI for ged-emacs-devel@m.gmane-mx.org; Fri, 06 May 2022 02:37:40 +0200 Original-Received: from localhost ([::1]:47928 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1nmlyV-0007Xq-7C for ged-emacs-devel@m.gmane-mx.org; Thu, 05 May 2022 20:37:39 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:51448) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1nmlxQ-0006qh-OP for emacs-devel@gnu.org; Thu, 05 May 2022 20:36:32 -0400 Original-Received: from mail-pj1-x1035.google.com ([2607:f8b0:4864:20::1035]:46978) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1nmlxO-0001bG-UU; Thu, 05 May 2022 20:36:32 -0400 Original-Received: by mail-pj1-x1035.google.com with SMTP id cq17-20020a17090af99100b001dc0386cd8fso5526093pjb.5; Thu, 05 May 2022 17:36:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=references:user-agent:from:to:cc:subject:date:in-reply-to :message-id:mime-version:content-transfer-encoding; bh=3Rwxt2x4y0SbSXtu60TV2T2Hr4JgrNewiU6OIqvtqt0=; b=Yxpo+UEcaCDugShJ6ls4lKESNDilR9AD4CetmREJmrezcDYyqyTe4z92oWTx0aaKEG Kbp+SPrxd9UqKMrk7VeoTkkOJAgouzVSpizJaHEyeaViReoIuT/eRn5UUikXJT4T5dZZ O6yTV2oQnzqcUeur8/1MGExRGW4Ueg3aka5siYSw7mVQwklNaJa90xOLuaehcAan/PkL sWpoRWVEySbdCusqpu5Bz14zTgES1NMgWBBoDh/3WzgNkWfSkg6fIkUFaNedYTy8wJKG omMaxcfLssgvr8iBp3LWm9quEm5Q//yrRV52jc7Jgje74NZuXFTUpVy3ADGNZicX43/T MGIw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:references:user-agent:from:to:cc:subject:date :in-reply-to:message-id:mime-version:content-transfer-encoding; bh=3Rwxt2x4y0SbSXtu60TV2T2Hr4JgrNewiU6OIqvtqt0=; b=ydTBYl8tu14RtW7BniHf02D3t9koKm0Rcw22jK4ZIAHuAQRWlat41S3gA6RhsIhPxM EJ7CYX5aujZzcfbNGVWejqZ90w66TOoc+99nFgpJs46KhNsqx9rbJIAo44d3nYL+Ui9O UKz+Oe3jnBKBQFlPz4WYcln619ClqQ5aTX3KlPBZVRA6SUKSREljzWtmySr52kIIgFLs TMVjZx/9l0Tr5Q4U9c3lO3qNp3J7wrzAGZ0MNasqa/T0JhiPVoZHzajPyvAT/2ni9pI5 AkM6l12yxbrXIjXTGHcJcRgDsmwiB5l5JOKiao6gWLfgvl1FfKjvDTrAFt76dlfs/maf X6pw== X-Gm-Message-State: AOAM530qcX2sZ86lTaSQxp8ObQNNoY3fMoACoVb0WQks7qBQ6DFdsEWM xVNIed8/3BEvpqsZGChmMxdklsewhsw= X-Google-Smtp-Source: ABdhPJxxFFBBEziuoP8jNtl2ac/RSscX/dZlE8tEMxrNJcCSkjX+0euQtTxmiPyFaVyh8pydDC+0tg== X-Received: by 2002:a17:903:2d1:b0:156:7ceb:b56f with SMTP id s17-20020a17090302d100b001567cebb56fmr902944plk.11.1651797387857; Thu, 05 May 2022 17:36:27 -0700 (PDT) Original-Received: from dingbat (220-235-29-41.dyn.iinet.net.au. [220.235.29.41]) by smtp.gmail.com with ESMTPSA id d6-20020a621d06000000b0050dc76281b9sm2035642pfd.147.2022.05.05.17.36.25 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 05 May 2022 17:36:27 -0700 (PDT) In-reply-to: <8735hng2pu.fsf@mat.ucm.es> Received-SPF: pass client-ip=2607:f8b0:4864:20::1035; envelope-from=theophilusx@gmail.com; helo=mail-pj1-x1035.google.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.io gmane.emacs.devel:289289 Archived-At: Uwe Brauer writes: > [[S/MIME Signed Part:Undecided]] >>>> "SM" =3D=3D Stefan Monnier writes: > >>> authentication uses the TOTP protocol, for which there are several Free >>> Software implementations readily available. > >> Including one in ELisp > >> https://github.com/juergenhoetzel/emacs-totp > >> which we could add to GNU ELPA, I believe. > > Now I am bit confused, as Robert confirmed it would be enough to have > > ,---- > |=20 > |=20 > | (setq gnus-select-method (list 'nnnil ""))=20 > | (setq gnus-secondary-select-methods nil) > | (setq gnus-secondary-select-methods > | '( > | (nnimap "UCMgmail" > | (nnimap-address "imap.gmail.com") > | (nnimap-server-port 993) > | ;; (nnimap-authinfo-file "~/.authinfo.gpg") > | (nnimap-authinfo-file "~/.authinfo") > | (nnimap-stream ssl) > | ;;(nnimap-stream starttls) > | (nnimap-fetch-partial-articles "text/") > | (nnir-search-engine imap)))) > |=20 > | And put in authinfo my app password instead my =C2=ABnormal=C2=BB one? > | > | Robert> yes > `---- > > So where is emacs-totp needed in this workflow? > It isn't - at least not directly.=20 The TOTP protocol is what authentication apps use to generate unique one time passwords. You can use such a technique with some 2FA setups for the 2nd factor. You only use the 2FA authentication to login to your google account to generate the application passwords. The suggestion is that you could use the emacs implementation instead of Google Authenticator or Facebook authenticator etc.=20