It seems that it works on the dovecot side. When Roundcube sends the token, I get the user authenticated via IMAP/oauth2 in dovecot.
What worked for me was:
- adding client_id and client_secret
- removing the tokeninfo_url, using just the introspect_url and introspect_mode=token.
Now gotta fix Roundcube...
Best, Francis
On 2023-11-20 13:48, Francis Augusto Medeiros-Logeay wrote:
Francis Augusto Medeiros-Logeay Oslo, Norway
On 2023-11-20 09:04, Aki Tuomi wrote:
On 20/11/2023 10:03 EET Francis Augusto Medeiros-Logeay <r_f@med-lo.eu> wrote:
Try adding /?token= to tokeninfo_url. Dovecot 2.3.7.2 will simply concatenate tokeninfo_url and token, so you need to provide the URL in that fashion.
Aki
Thanks Aki.
Still no go:
Nov 20 08:59:19 auth: Debug: http-client: host auth.mydomain.com: Host created
<snip/>
oauth2(francis@mydomain.com,10.10.40.30,<4Gv83JAKyOcKCige>): oauth2 failed: Token validation failed: connect(10.10.200.10:443) failed: Connection refused