部落 Gmail OAuth2 身份验证失败
Horde Gmail OAuth2 Authentication Failed
问题:
我正在使用 Horde 和 googles OAuth2 登录用户 IMAP,当为 Horde_Imap_Client_Socket class.
使用以下参数时
"username" : "example@gmail.com"
"password" : "XOAUTH2"
"hostspec" : "imap.gmail.com"
"port" : 993
"secure" : "ssl"
"timeout" : 20
"context" :
"ssl" :
"verify_peer" : true
"verify_peer_name" : true
"xoauth2_token" : "{INSERT GOOGLE ACCESS TOKEN HERE}"
我得到了这个错误。
Authentication failed.
添加 "debug" => "php://output" 得到以下输出。
------------------------------ >> Fri, 19 Feb 2021 19:30:27 +0000 >> Connection to: imap://imap.gmail.com:993/ >> Server connection took 0.1738 seconds.
S: * OK Gimap ready for requests from 24.231.213.106 t22mb47308959jai
C: 1 CAPABILITY
S: * CAPABILITY IMAP4rev1 UNSELECT IDLE NAMESPACE QUOTA ID XLIST CHILDREN X-GM-EXT-1 XYZZY SASL-IR AUTH=XOAUTH2 AUTH=PLAIN AUTH=PLAIN-CLIENTTOKEN AUTH=OAUTHBEARER AUTH=XOAUTH
S: 1 OK Thats all she wrote! t22mb47308959jai >> Command 1 took 0.0652 seconds.
C: 2 AUTHENTICATE XOAUTH2 {REDACTED (TOKEN)}
C: S: 2 NO [AUTHENTICATIONFAILED] Invalid credentials (Failure) >> Command 2 took 0.2507 seconds.
C: 3 AUTHENTICATE PLAIN [INITIAL CLIENT RESPONSE (username: {REDACTED})]
S: 3 NO [AUTHENTICATIONFAILED] Invalid credentials (Failure) >> Command 3 took 0.2358 seconds.
我认为我在下面的代码中做错了什么,因为我对部落没有那么多经验。
代码:
$credentials = json_decode($provider['credentials'], true);
$params = [
'username' => $user,
'password' => "XOAUTH2",
'hostspec' => $host,
'port' => $port,
'secure' => $ssl_mode,
'timeout' => (int) $this->config->getSystemValue('app.mail.imap.timeout', 20),
'context' => [
'ssl' => [
'verify_peer' => $this->config->getSystemValueBool('app.mail.verify-tls-peer', true),
'verify_peer_name' => $this->config->getSystemValueBool('app.mail.verify-tls-peer', true),
],
],
'xoauth2_token' => new \Horde_Imap_Client_Password_Xoauth2($user, $credentials['access_token'])->getPassword()
];
$this->client = new \Horde_Imap_Client_Socket($params);
try {
$this->client->login();
} catch (Horde_Imap_Client_Exception $e) {
throw new ServiceException(
"Could not connect to IMAP host $host:$port: " . $e->getMessage(),
(int) $e->getCode(),
$e
);
}
这最终成为实际授权范围 url 的问题,而不仅仅是 Google 云控制台上的 API 客户端设置。
问题:
我正在使用 Horde 和 googles OAuth2 登录用户 IMAP,当为 Horde_Imap_Client_Socket class.
"username" : "example@gmail.com"
"password" : "XOAUTH2"
"hostspec" : "imap.gmail.com"
"port" : 993
"secure" : "ssl"
"timeout" : 20
"context" :
"ssl" :
"verify_peer" : true
"verify_peer_name" : true
"xoauth2_token" : "{INSERT GOOGLE ACCESS TOKEN HERE}"
我得到了这个错误。
Authentication failed.
添加 "debug" => "php://output" 得到以下输出。
------------------------------ >> Fri, 19 Feb 2021 19:30:27 +0000 >> Connection to: imap://imap.gmail.com:993/ >> Server connection took 0.1738 seconds.
S: * OK Gimap ready for requests from 24.231.213.106 t22mb47308959jai
C: 1 CAPABILITY
S: * CAPABILITY IMAP4rev1 UNSELECT IDLE NAMESPACE QUOTA ID XLIST CHILDREN X-GM-EXT-1 XYZZY SASL-IR AUTH=XOAUTH2 AUTH=PLAIN AUTH=PLAIN-CLIENTTOKEN AUTH=OAUTHBEARER AUTH=XOAUTH
S: 1 OK Thats all she wrote! t22mb47308959jai >> Command 1 took 0.0652 seconds.
C: 2 AUTHENTICATE XOAUTH2 {REDACTED (TOKEN)}
C: S: 2 NO [AUTHENTICATIONFAILED] Invalid credentials (Failure) >> Command 2 took 0.2507 seconds.
C: 3 AUTHENTICATE PLAIN [INITIAL CLIENT RESPONSE (username: {REDACTED})]
S: 3 NO [AUTHENTICATIONFAILED] Invalid credentials (Failure) >> Command 3 took 0.2358 seconds.
我认为我在下面的代码中做错了什么,因为我对部落没有那么多经验。
代码:
$credentials = json_decode($provider['credentials'], true);
$params = [
'username' => $user,
'password' => "XOAUTH2",
'hostspec' => $host,
'port' => $port,
'secure' => $ssl_mode,
'timeout' => (int) $this->config->getSystemValue('app.mail.imap.timeout', 20),
'context' => [
'ssl' => [
'verify_peer' => $this->config->getSystemValueBool('app.mail.verify-tls-peer', true),
'verify_peer_name' => $this->config->getSystemValueBool('app.mail.verify-tls-peer', true),
],
],
'xoauth2_token' => new \Horde_Imap_Client_Password_Xoauth2($user, $credentials['access_token'])->getPassword()
];
$this->client = new \Horde_Imap_Client_Socket($params);
try {
$this->client->login();
} catch (Horde_Imap_Client_Exception $e) {
throw new ServiceException(
"Could not connect to IMAP host $host:$port: " . $e->getMessage(),
(int) $e->getCode(),
$e
);
}
这最终成为实际授权范围 url 的问题,而不仅仅是 Google 云控制台上的 API 客户端设置。