[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support
|
From: |
Richard Stallman |
|
Subject: |
bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support |
|
Date: |
Thu, 21 May 2020 23:07:24 -0400 |
[[[ To any NSA and FBI agents reading my email: please consider ]]]
[[[ whether defending the US Constitution against all enemies, ]]]
[[[ foreign or domestic, requires you to follow Snowden's example. ]]]
> I don't think there's any way to ship Emacs with built-in oauth2 support
> for doing auth with Gmail -- it requires distributions with API secrets
> and stuff, and there's no secrets in the Emacs distribution.
There are no real secrets in any free operating system. The only way
I know of to have a key and effectively keep it secret with software
is to bury it in a nonfree excutable, and that is not a solution; it
only replaces one impassable obstacle with another impassable
obstacle.
> Or is there a way to do that now? I haven't been paying attention the
> last few months. I remember Thunderbird including some credentials in
> the source code and saying, jokily, "remember, these are secret".
> Somebody would have to register the Emacs "app" with Google, and for
> Emacs, that would have to be the FSF, right? And I don't see that
> happening ever, ideologically.
If what Thunderbird is doing does not involve nonfree software,
I see no reason we couldn't do the same.
But I doubt that Google will continue accepting this forever. Google
might eventually decide to kick off Thunderbird users, and Gnus users
along with them.
> But somebody could definitely write a package and put that on MELPA, and
> do the registration, I think? (With the same joke, of course.)
To the extent that this approach is usable, we woultn't need to
relegate it to MELPA. We could put it straight into Gnus.
The two Google announcements clearly describe how Google plans to
block access with anything other than OAuth 2. They don't go into
much detail about what OAuth 2 requires, and don't describe how this
conflicts with free software.
Can someone find a page describing this issue in a careful
and thorough way, written by someone who knows the subject?
Can someone get in touch with a Thunderbird developer or expert
who would like to discuss the issue?
--
Dr Richard Stallman
Chief GNUisance of the GNU Project (https://gnu.org)
Founder, Free Software Foundation (https://fsf.org)
Internet Hall-of-Famer (https://internethalloffame.org)
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, (continued)
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Noam Postavsky, 2020/05/19
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/19
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, David Engster, 2020/05/19
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Lars Ingebrigtsen, 2020/05/19
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/20
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Stefan Kangas, 2020/05/20
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/20
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/20
bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support,
Richard Stallman <=
bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/19
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/20
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/20
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/21
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/21
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/23
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Richard Stallman, 2020/05/23
- bug#41386: 28.0.50; Gnus nnimap OAuth 2.0 support, Thomas Fitzsimmons, 2020/05/24