We have been using Google to relay email, through SysAdmin Pro, for several years. We have a custom domain, using GSuite, to relay email for us. It works with no issues. I recently received an email from the GSuite team that says over the next year all email relaying must use OAuth. Here is a snipet of what they said:
We’re constantly working to improve the security of your organization’s Google accounts. As part of this effort, and in consideration of the current threat landscape, we’ll be turning off access to less secure apps (LSA) — non-Google apps that can access your Google account with only a username and password, without requiring any additional verification steps. Access through only a username and password makes your account more vulnerable to hijacking attempts. Moving forward, only apps that support a more modern and secure access method called OAuth will be able to access your G Suite account.
Access to LSAs will be turned off in two stages:
- June 15, 2020 - Users who try to connect to an LSA for the first time will no longer be able to do so. This includes third-party apps that allow password-only access to Google email.
- February 15, 2021 - Access to LSAs will be turned off for all G Suite accounts.
Developer instructions: To maintain compatibility with G Suite accounts, update your app to use OAuth 2.0 as a connection method. To get started, follow our developer guide on [using OAuth 2.0 to access Google APIs]
Does / will FreePBX support OAuth for gmail email relay?
Does this apply to how FreePBX uses SMTP to relay mail, using only id and password?
We depend on the gmail relay to ensure our outbound PBX based emails get delivered.