I manage to connect to Yahoo mail using pure IMAP (user/pass) but I would like to know if it's possible to check Yahoo mails with IMAP and Oauth (like Gmail allows). I I read some threads and is not clear to me if I can.
I'm trying to download raw mails including attachments with a ruby service through plain IMAP (or mail API if i can't) with oauth authentication. Is important to note I need the raw mails for custom processing.
For example with gmail, I can download raw mails trough IMAP and Oauth authentication like this.
I had exactly the same question than Nicolas : yes Yahoo! implements OAUTH, yes Yahoo! implements a web services/REST API to access mailboxes, but does Yahoo! implement a SASL mechanism to be used with OAUTH in order to integrate OAUTH in IMAP & SMTP ?
So, I tried to connect to the IMAP/SSL server at Yahoo! and tried a command like "C01 AUTHENTICATE OAUTH [...RANDOM_CREDENTIALS...]" : I have had an error message about the credentials, not about an incorrect command name ! That means that IMAP servers at Yahoo are OAUTH capable (even if it is not included in the capability string answered by the IMAP servers).
So, the question is now : what sort of variant of IMAP/SASL + OAUTH have you implemented at Yahoo!, guys ? You could have implemented XOAUTH : OAUTH1.0 + SASL, or one of the many draft RFCs about AUTH2.0 + SASL, so please explain and give us the URL string needed to be signed in order to convert an OAUTH access token and a Yahoo! email / login to the credential string in "AUTHENTICATE OAUTH" commands.
In order to implement a client, we need to know those details. Today, with the current documentation, we are obliged to make requests though your Web Services / REST mail API... Please, be open.
I didn't do that test and is good to know that there is some kind of oauth support. But well, we should wait for the documentation to appear!
By now, I was force to use web services calls, and as I need the raw mails I had to make them from scratch with different calls to ListFolders, GetMessageHader, DownloadAttachment, etc. All of that could have been voided if the IMAP documentation had been available hehe
Any update on this? Forcing a user to put their email/password rather than clicking one button to use Oauth is a significant barrier to entry for a lot of users. We are looking to bring Yahoo mail support to our app