{"id":4726,"date":"2020-05-28T11:11:49","date_gmt":"2020-05-28T18:11:49","guid":{"rendered":"https:\/\/officedevblogs.wpengine.com\/?p=4726"},"modified":"2020-05-28T11:11:49","modified_gmt":"2020-05-28T18:11:49","slug":"announcing-oauth-support-for-pop-in-exchange-online","status":"publish","type":"post","link":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/announcing-oauth-support-for-pop-in-exchange-online\/","title":{"rendered":"Announcing OAuth Support for POP in Exchange Online"},"content":{"rendered":"<p>At the end of April we <u><a href=\"https:\/\/nam06.safelinks.protection.outlook.com\/?url=https%3A%2F%2Fdeveloper.microsoft.com%2Fen-us%2Fgraph%2Fblogs%2Fannouncing-oauth-2-0-support-for-imap-smtp-client-protocols-in-exchange-online%2F&amp;data=02%7C01%7Cv-chgrav%40microsoft.com%7Cd82d50aee8c1464a883008d8032dcc41%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637262842517772151&amp;sdata=bKyIl0H9OQMdO5njoK7tXbeLQQRWHpKNfjG8lpODW4A%3D&amp;reserved=0\">announced OAuth 2.0 support for IMAP, SMTP client protocols in Exchange Online<\/a>. <\/u>Today we\u2019re happy to announce that OAuth support for POP in Exchange Online is also available.<\/p>\n<p>Application developers who have built apps that send, read or otherwise process email using these protocols can implement secure, modern authentication experiences for their users. This functionality is built on top of\u00a0<a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-overview\">Microsoft Identity platform (v2.0)<\/a>\u00a0and supports access to email of Microsoft 365 (formerly Office 365) users.<\/p>\n<p>Detailed step-by-step instructions for\u00a0<a href=\"https:\/\/docs.microsoft.com\/exchange\/client-developer\/legacy-protocols\/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth\">authenticating to IMAP, POP and SMTP AUTH protocols using OAuth<\/a>\u00a0are now available for you to get started.<\/p>\n<p>What\u2019s supported?<\/p>\n<p>With this release, apps can use one of the following OAuth flows to authorize and get access tokens\u00a0<u>on behalf of a user<\/u>.<\/p>\n<ol>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-oauth2-auth-code-flow\">OAuth2 authorization code flow<\/a><\/li>\n<li><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-oauth2-device-code\">OAuth2 Device authorization grant flow<\/a><\/li>\n<\/ol>\n<p><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/develop\/v2-oauth2-client-creds-grant-flow\">OAuth2 client credentials grant flow<\/a>\u00a0that enables access without a user account is\u00a0<u>not supported<\/u>. If your application needs persistent access to all mailboxes in a Microsoft 365 organization, we recommend that you use the Microsoft Graph API\u2019s which allow\u00a0<a href=\"https:\/\/docs.microsoft.com\/en-us\/graph\/auth-v2-service\">access without a user<\/a>\u00a0in addition to access on behalf of a user, enable granular permissions and let administrators\u00a0<a href=\"https:\/\/docs.microsoft.com\/en-us\/graph\/auth-limit-mailbox-access\">scope such access to a specific set of mailboxes<\/a>.<\/p>\n<p>Follow these\u00a0<a href=\"https:\/\/docs.microsoft.com\/exchange\/client-developer\/legacy-protocols\/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth\">detailed step-by-step instructions<\/a>\u00a0to\u00a0implement\u00a0OAuth 2.0\u00a0authentication\u00a0if your in-house application needs\u00a0to access\u00a0IMAP, POP and SMTP AUTH\u00a0protocols in Exchange Online, or work with your vendor to update any apps or clients that you use that could be impacted.<\/p>\n<p>The Exchange Team<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We\u2019re happy to be able to confirm OAuth support for POP is also now available in Exchange Online.<\/p>\n","protected":false},"author":69076,"featured_media":25159,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[3],"tags":[69],"class_list":["post-4726","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-microsoft-graph","tag-exchange"],"acf":[],"blog_post_summary":"<p>We\u2019re happy to be able to confirm OAuth support for POP is also now available in Exchange Online.<\/p>\n","_links":{"self":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts\/4726","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/users\/69076"}],"replies":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/comments?post=4726"}],"version-history":[{"count":0,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/posts\/4726\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/media\/25159"}],"wp:attachment":[{"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/media?parent=4726"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/categories?post=4726"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/devblogs.microsoft.com\/microsoft365dev\/wp-json\/wp\/v2\/tags?post=4726"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}