14:27:28 has anyone with a free Hotmail/live/... e-mail account got an announcement that Oauth2 would become mandatory? I haven't seen any, and I'm trying to understand if the Microsoft announcement that's now being mentioned here and there really applies to free (non-business) accounts too 14:27:51 ("business" as in contracted by someone, whoever that is) 14:35:19 haven't heard that yet, but then I never use Outlook (or whatever name MS wants to rebrand it to tomorrow) directly via web 14:35:26 and they haven't sent messages to users either 14:37:19 all I know is some "business-tier" mail domains started requiring OAuth2, and there's possibly something else to track down in there, but Hotmail, about that I didn't get any notification, and password authentication is working 14:37:47 https://support.microsoft.com/en-us/office/modern-authentication-methods-now-needed-to-continue-syncing-outlook-email-in-non-microsoft-email-apps-c5d65390-9676-4763-b41f-d7986499a90d "Modern Authentication Methods now needed to continue syncing Outlook Email in non-Microsoft email apps" says they sent messages to users who have been using "basic authentication" and will stop in September 14:38:21 as far as I know yes and if you try to add an app password it retunes not allowed for personal accounts. 14:38:34 problem is: "outlook" now (great naming decision there, Microsoft) is about everything they have that is a product or service or program about e-mail 14:39:09 OWA (webmail) now is Outlook, Hotmail (service and webmail) now is Outlook, Exchange (email hosting) might be named Outlook as well 14:39:22 and the e-mail client from Office probably didn't change name either, so it's Outlook too? 14:39:48 now this gets more important here, because it's possible some of this only applies to non-free accounts 14:39:58 create a new account in a different profile and try to set it up now. 14:40:04 oof 14:40:09 so basically I have 2 months to worry 14:40:23 thaaaaanks Microsoft for being a poor GOOG ripoff! 14:41:06 I didn't backport the latest TB changes and have no time to do so currently. So not sure if it will work. 14:41:09 aaaaaaaaaah it's buried in there. 14:41:44 or wait, they mean the clients? so doesn't clarify 14:43:43 frg_Away: hopefully I'll be able to check the Tb Oauth2 behavior today or this weekend 14:44:13 a question is: is login.microsoftonline.com also used for free accounts? 14:45:09 I don't know. Disable NoScript and uBlock and enable cookies during setup. 14:45:36 oauth2 s*cks. Opens a web page during connect. 14:46:08 I'm not sure I want to try this with my hotmail account, that one is happily using password auth, but the other one (Exchange) I'll try. 14:55:11 okay, tried setting up new account on different profile, and can reproduce 14:55:17 with hotmail, that is 15:07:46 the "sign-in options" only shows logging in to an org 15:08:32 ... unless this is because I've logged in to an org - in the browser - with this profile... 15:14:46 no, same thing with a new profile. 15:16:13 also, only when I set server to outlook.office365.com, imap-mail.outlook.com does not trigger the OAuth2 window unless it has at some point been set to the other one. might be just because it's not on the list of known OAuth2 servers 15:26:59 might be a pile of stuff, and this is from manual testing so chances are I made a mistake 15:28:06 1. the endpoint might have to be https://login.live.com/oauth20_authorize.srf instead of login.microsoftonline.com/common/oauth2/v2.0/authorize 15:28:51 2. the scope value needs to be what thunderbird now has, see https://bugzilla.mozilla.org/show_bug.cgi?id=1848370; this I think is part of the changes that changed the client id 15:28:58 3. the client ID needs to be the new client ID 15:29:33 4. it might need the redirect-uri to be adjusted (possibly http->https) 15:29:55 2, 3 and 4 will trigger error responses from the live.com endpoint. once it's fixed, I get a login prompt 15:30:06 this all from testing in the browser, not M&N 15:30:52 frg_Away: this still just for the Hotmail free account, I'll need to test the thunderbird versions to see how the Exchange one fares 15:32:15 we are missing Bug 1685414 15:32:30 I have no timme currently in case it is needed sorry 15:32:30 2, 3 and 4 can probably be changed in the files, maybe even just omni.ja if I'm lucky 15:33:46 now 1... how can it tell the two kinds of account apart? 15:33:52 TB does not use this endpoint: https://searchfox.org/comm-central/search?q=oauth20_authorize&path=&case=false®exp=false 15:34:01 that' 15:34:18 that's possibly the problem, unless thunderbird does something else differently that allows free accounts 15:44:06 no, thunderbird somehow gets to the right login form, now what is the *address*... 15:45:01 *unless* microsoft allows both logins from login.microsoftonline.com and just rejects SM because of the client ID? 15:51:11 okay, it's *precisely* that. 15:51:38 if 2, 3 and 4 are as required for live.com, login.microsoftonline.com will do the redirect to login.live.com 15:53:09 (that's good, at least there's no need to deal with two different OAuth2 endpoints... 15:53:13 ) 15:55:25 I couldn't confirm the address of the form in Thunderbird, but tested with the address in SeaMonkey 16:42:25 Good morning #SeaMonkey 16:46:02 Hi nsITobin installing VS2022 now 16:46:45 hope this is on a new vm cause build system will default to latest installed unless you know a magic configure var 16:47:43 the temp patch for the hash bs will get you to what I believe is bug 1441651 16:48:42 tho i hate phrasing it like that cause that ain't why they did it it just happens to be up to snuff with what the latest msvc expects 16:51:20 also I wrote a C program last night and a basic build script 17:15:19 nsITobin new system disk cloned my VS2019 data disk. 23:13:24 I got super distracted in meatspace sorry i wasn't around much this afternoon frg