davmail icon indicating copy to clipboard operation
davmail copied to clipboard

Published 20 hours ago verified publisher icon mguessan

OAuth via ADFS with MFA support

Open krutelp opened this issue 5 years ago • 8 comments
trafficstars

Add MFA support for OAuth via ADFS. Add rudimentary message dialog to visualize necessary MFA action.

krutelp avatar Nov 17 '20 15:11 krutelp

Closes SourceForge #725 O365Modern with MFA PhoneApp does not work

krutelp avatar Nov 18 '20 08:11 krutelp

Thanks for your contribution, will merge this after a few checks

mguessan avatar Nov 18 '20 17:11 mguessan

Merged first commit, need some more time for the second one: O365Authenticator is supposed to be headless so user interaction was not an option.

However for SMS based authentication there is no way to provide code without such interaction => we wil need to support both graphical and command line user interaction

See certificate management for an example:

if (Settings.getBooleanProperty("davmail.server") || GraphicsEnvironment.isHeadless()) { // headless or server mode isCertificateTrusted = isCertificateTrusted(x509Certificates[0]); } else { isCertificateTrusted = AcceptCertificateDialog.isCertificateTrusted(x509Certificates[0]); }

mguessan avatar Nov 30 '20 10:11 mguessan

I suggest to show graphical/console information also for case PhoneAppNotification. User should be informed about required action on smartphone. Is in graphical mode possible to show answer from server in some kind of HTML/JavaScript Java viewer in order to reduce MFA implementation effort?

krutelp avatar Nov 30 '20 16:11 krutelp