Page MenuHomePhabricator
Create Task
Maniphest T260301

MediaWiki should support modern OAuth authentication for SMTP
Open, Needs TriagePublic
Actions

Description

MediaWiki appears to only support basic e-mail authentication for SMTP usage. This prevents MediaWiki sites from being able to easily use Exchange without requiring reduced security for the specified e-mail account. OAuth authentication as documented here: https://docs.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth will allow MediaWiki to use modern authentication.

Related Objects

Event Timeline

Abmeltzer created this task.Aug 12 2020, 10:55 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 12 2020, 10:55 PM
Abmeltzer renamed this task from MediaWiki should support modern OAuth authentication for SMTP e-mail sending to MediaWiki should support modern OAuth authentication for SMTP.Aug 12 2020, 10:59 PM
Reedy added a project: MediaWiki-Email.Aug 12 2020, 11:09 PM
Platonides subscribed.Aug 12 2020, 11:09 PM

Hello @Abmeltzer

MediaWiki can use the internal PHP mail() function or PEAR::Mail.

You could use a sendmail binary with both of those providers, with the binary interfacing with MTA in multiple ways.

The actual support should be at Net_SMTP, but I see it already supports XOAUTH2, so I think it should work. Note that the $wgSMTP parameters are passed directly to the Mail::factory(), so this should be just a matter of getting the appropriate OAUTH2 token, device authorization, etc. and filling $wgSMTP with the right parameters.

Abmeltzer added a comment.EditedAug 12 2020, 11:14 PM

Interesting. I'll look into this. (I'm not super familiar with the PHP ecosystem so I didn't realize that this was an option for MW installations.) Thanks for the information.

Platonides added a comment.Aug 13 2020, 12:52 AM

There is certainly a lack of documentation. It would be appreciated if you can tell us the result of you setting this up. Or directly update https://www.mediawiki.org/wiki/Manual:$wgSMTP

Aklapper added a comment.Sep 23 2020, 3:14 PM

@Abmeltzer: Were you successful?

Abmeltzer added a comment.Sep 23 2020, 6:32 PM

@Aklapper I haven't had a chance to look into this yet. I'll report back once I have some time to work on this.

Aklapper mentioned this in T376586: Outlook.com requires OAuth for MediaWiki SMTP.Oct 7 2024, 8:15 AM
Aklapper merged a task: T376586: Outlook.com requires OAuth for MediaWiki SMTP.
Aklapper added a subscriber: Sokradia.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits