Google stopped supporting less secure apps for gmail. I haven’t used java in Lucee before and I have no idea how to implement oauth2. I can’t find information on how to do this. Can someone point me in the right direction?
Any help is much appreciated.
Thanks!
Ubuntu 20
Lucee 5.0
Don’t forget to tell us about your stack!
OS: ???
Java Version: ???
Tomcat Version: ???
Lucee Version: ???
It’s not what you asked, but Gmail does still allow app passwords which you could try as you transition to an oauth2 workflow:
Thanks for the response however google has turned off this feature as well. I’m stuck and my apps are no longer sending emails which is a big problem. If anyone could point me in the right direction. I can’t find any information on using oauth2 with Lucee!
Well, no, app passwords absolutely DO still work. I use that feature, and my Google account view of my use of them shows it working for me just minutes AGO. 
All that said, this conversation has come up for years with Lucee and ACF (and other platforms). There’s no question that simpler mail server aurh mechanisms are going away with the major providers. Both engines will need to adapt.
Until then, folks could indeed try to craft an oath approach. Since this is about the cf engines smtp processing, it won’t (seeimingly) be a simple cfml solution. With Lucee being open source, someone with Java skilz might be able to code the solution.
Or maybe we’ll hear from the team that it’s in the oven.
But let us know if in the meantime the app pwd approach might work for you.
There are some oauth packages up on Forgebox that you could check out.
After some research, it turns out you can only use app passwords if you have 2 step authentication turned on, I did not. I set it up and am now able to send emails using app passwords! Thanks for the push.
There you go. Glad we could help get you over that hump, @Alis.
And @dmurphy, for future reference, do you know if any of those would work for smtp mail delivery?
Will they work for smtp mail delivery directly? No. I was just throwing those out there in case they needed to bail from cfmail and authenticate and use the Google API directly. Sounds like the app password path worked out though.