Skip to Main Content
Need Support? Let’s guide you to the right answer or agent.
Status Future consideration
Workspace Core CDE
Created by Guest
Created on Dec 12, 2022

Supporting OAuth authentication with POP3 email accounts

As a user I want to be able to get mail from a Microsoft Exchange server via the supported version of OAuth.

Notes
  1. Use of basic authentication to access a POP3 account in Microsoft Exchange is being deprecated in 2022.

    1. This article provides full context: https://learn.microsoft.com/en-us/exchange/clients-and-mobile-in-exchange-online/deprecation-of-basic-authentication-exchange-online

  2. BCDE has secure POP3 support.

  3. There are ~150 existing mailboxes on a customer's server. It would be the customer's responsibility to switch those across to using OAuth.

Requirements
  1. By default all existing mailboxes shall continue to use basic authentication.

    1. After upgrade the user shall not be required to make any manual interventions.

  2. Each mailbox shall be able to choose between:

    1. Basic authentication

    2. OAuth

  3. If an account is shared between multiple mailboxes, the OAuth token should be shared between those mailboxes. (The user should need to authenticate multiple times unless the accounts are different.)

  4. OAuth token expiry will need to be managed.

    1. Users who own the mailbox will be emailed in advance of tokens expiring.

      1. 1 month

      2. 1 week

      3. 1 day

      4. Overdue

  5. Mailboxes might be scattered across the system - it should be straightforward to re-authorise all OAuth tokens from a single interface. (Similar to how Sync manages this.)

Practical use of functionality?

Get project email from a Microsoft Exchange Online POP3 mailbox.

Archiving any email correspondence into the CDE

Sending reference pdf documents from 3rd party systems such as site diary records for archiving.

Schedule data dumps from 3rd party systems such as access control swipe and competency award records.


What is the impact of not doing this?

Microsoft Exchange Online will no longer be supported by BCDE mail boxes.

Manual movement of information by document controllers, downloading from a mailbox, handling and uploading to BCDE. Very wasteful of time & cost. We also loose the ability to auto archive all email traffic, which becomes a legacy storage issue costing money for 15yrs post completion.

The work around would be to switch to a third-party supplier of mail boxes that support POP3.