Google App Passwords
Discussions revolve around Google's policy ending support for less secure authentication apps for Gmail, with users debating the use of app-specific passwords generated via 2FA as a workaround for email clients lacking OAuth support.
Activity Over Time
Top Contributors
Keywords
Sample Comments
Not much. If you're not using app passwords and your client wants to authenticate using Google auth (e.g. Thunderbird), it has to open the user's browser and setup the oauth flows instead of embedding the browser directly in the app.
Google provides the App passwords feature:> An App password is a 16-digit passcode that gives a non-Google app or device permission to access your Google Account. Learn more about how to sign in using App Passwords.Maybe I misunderstand the announcement, but it looks to me that this feature will still be a valid alternative when Oauth can't be used.
Disappointed that Google's own application doesn't support 2-step authentication and application specific password.
using google apps premier two factor auth and create a new key for it so you dont have to give it your real password and can revoke at anytime. (assuming Sparrow supports google apps email?)
Google's own products don't even conform to this. My Galaxy Nexus and Chrome browser requires app-specific passwords.
Sure but Google doesn't know that, and app passwords are a way to functionally ensure no password reuse.
I did see a mail from them a few months ago about this, you need to use their oauth2 flow now I believe for any "less secure" apps, more vendor lock-in
Google Mail's OAuth2 instructions discuss this point explicitly.
No: the announcement says you can use application specific passwords https://support.google.com/accounts/answer/185833
No: the announcement says you can use application specific passwords https://support.google.com/accounts/answer/185833