October 19, 2021
Modern Authentication (OAuth) when connecting to Microsoft Exchange Online vs Basic Authentication
Ripley Casdorph Follow
Comments
(5)
Share
October 19, 2021
Modern Authentication (OAuth) when connecting to Microsoft Exchange Online vs Basic Authentication
Ripley Casdorph
Newbie 7 posts
Followers: 4 people
Follow
Ripley Casdorph Follow
(5)
5
Summary

Please review the ability for Coldfusion to utilize Modern Authentication (OAuth) when connecting to Microsoft Exchange Online vs Basic Authentication (Presently Using Exchange Web Services).

Microsoft is disabling Basic Authentication October of 2022 and we would like to migrate anything using it to Modern Authentication.
https://techcommunity.microsoft.com/t5/exchange-team-blog/basic-authentication-and-exchange-online-september-2021-update/ba-p/2772210
Please let me know what would be involved in order to achieve this?

5
Ripley Casdorph
Newbie 7 posts
Followers: 4 people
Follow
Ripley Casdorph Follow
Similar Blogs
5 Comments
ashwinia70450482
2022-10-10 16:42:24
2022-10-10 16:42:24

https://www.cdata.com/kb/tech/office365-jdbc-coldfusion-query.rst

I found an article. Third party though

Like
()
Reply
sdsinc_pmascari
2021-10-27 19:19:52
2021-10-27 19:19:52

I’ve added this as a Feature Request in the Adobe Tracker.  Go vote for it!

https://tracker.adobe.com/#/view/CF-4212511

Like
(1)
Reply
(1)
Ripley Casdorph
>
sdsinc_pmascari
's comment
2022-11-13 23:23:33
2022-11-13 23:23:33
>
sdsinc_pmascari
's comment

Adobe is finally working on this.  They are moving our ticket to beta.

Like
()
Reply
sdsinc_pmascari
2021-10-27 19:05:49
2021-10-27 19:05:49

I was thinking this would have been addressed with the focus of CF2021 being on cloud computing but, obviously not.  Hoping that Adobe has an update, or replacement, for <cfexchangeconnection> in the works for an update in the coming months?

Like
(1)
Reply
StevenErat_Adobe
2021-10-27 17:52:55
2021-10-27 17:52:55

I recently migrated a Java application from using Basic Authentication for IMAP access to Outlook to use OAuth2 and JavaMail. It was a fair bit of work.  These are the docs I used to solve it.  Essentially I had to create a custom API Application in Azure Portal, then manually generate a Auth Code.  With the Auth Code I could programatically retrieve the access_token, which has a short lived TTL.  Using the access_token you can generate a refresh_token, then the refresh_token has a very long TTL.   When the access_token expires (hourly), use the refresh_token to get a new one programatically.   Manual intervention is only needed when either the initial Auth Code or refresh_token expires .

https://docs.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oauth
https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-configure-app-access-web-apis

https://javaee.github.io/javamail/OAuth2

Like
()
Reply
Add Comment