Bug 687578 – Allow OAuth / OAuth2 based providers to offer password based authentication

After an evaluation, GNOME has moved from Bugzilla to GitLab. Learn more about GitLab.
No new issues can be reported in GNOME Bugzilla anymore.
To report an issue in a GNOME project, go to GNOME GitLab.
Do not go to GNOME Gitlab for: Bluefish, Doxygen, GnuCash, GStreamer, java-gnome, LDTP, NetworkManager, Tomboy.

Bug 687578 - Allow OAuth / OAuth2 based providers to offer password based authentication


Summary:	Allow OAuth / OAuth2 based providers to offer password based authentication


Status:	RESOLVED FIXED

Product:	gnome-online-accounts
Classification:	Core
Component:	general
Version:	3.6.x
Hardware:	Other All

Importance:	Normal enhancement
Target Milestone:	---
Assigned To:	GNOME Online Accounts maintainer(s)
QA Contact:	GNOME Online Accounts maintainer(s)

URL:
Whiteboard:

Depends on:
Blocks:	686804 687690

Reported:	2012-11-04 16:38 UTC by Debarshi Ray
Modified:	2012-11-05 21:34 UTC

See Also:
GNOME target:	---
GNOME version:	---

Attachments
oauth2: Allow providers to optionally offer a PasswordBased interface (13.13 KB, patch) 2012-11-04 20:31 UTC, Debarshi Ray	none	Details \| Review
google: Offer a PasswordBased interface (10.35 KB, patch) 2012-11-04 20:32 UTC, Debarshi Ray	committed	Details \| Review
oauth2: Allow providers to optionally offer a PasswordBased interface (13.13 KB, patch) 2012-11-04 22:04 UTC, Debarshi Ray	committed	Details \| Review
oauth: Allow providers to optionally offer a PasswordBased interface (13.26 KB, patch) 2012-11-04 22:04 UTC, Debarshi Ray	committed	Details \| Review

Description Debarshi Ray 2012-11-04 16:38:30 UTC

Some providers (basically Google) do not support OAuth / OAuth2 tokens for all its different services. eg., the only way to use Google Calendars over CalDAV (which is what evolution-data-server uses) is to use password based authentication.

This has a negative effect on the UX because the user is prompted for her password again after creating her account (see bug 686804).

We have had similar problems in the past with GTalk and GMail where one of them supported OAuth2 and the other OAuth1. Even though GMail has now migrated to OAuth2, we do not know when Google will support OAuth2 for its CalDAV endpoint. Lets offer a workaround instead of spoiling the user experience indefinitely.

Comment 1 Matthew Barnes 2012-11-04 16:50:45 UTC

FYI, the GOA module in EDS is already set up to use GoaPasswordBased if available for *any* account type.  So I don't think any EDS changes are necessary to support this.  It should just start working immediately.

Comment 2 Debarshi Ray 2012-11-04 20:31:54 UTC

Created attachment 228050 [details] [review]
oauth2: Allow providers to optionally offer a PasswordBased interface

Comment 3 Debarshi Ray 2012-11-04 20:32:37 UTC

Created attachment 228051 [details] [review]
google: Offer a PasswordBased interface

Comment 4 Debarshi Ray 2012-11-04 22:04:14 UTC

Created attachment 228055 [details] [review]
oauth2: Allow providers to optionally offer a PasswordBased interface

Comment 5 Debarshi Ray 2012-11-04 22:04:56 UTC

Created attachment 228056 [details] [review]
oauth: Allow providers to optionally offer a PasswordBased interface

Comment 6 Debarshi Ray 2012-11-04 22:16:20 UTC

(In reply to comment #1)
> FYI, the GOA module in EDS is already set up to use GoaPasswordBased if
> available for *any* account type.  So I don't think any EDS changes are
> necessary to support this.  It should just start working immediately.

Yes, indeed, it works for me.

Comment 7 Debarshi Ray 2012-11-04 22:26:00 UTC

Committed to master.

Introduces a new string (an error message), so will seek permission for freeze break before pushing to gnome-3-6.