Hey folks, thanks for your patience here - each year, Google requires that we go through a compliance process for continued access to the Gmail APIs. They’ve changed the process slightly every year - for 2021 and 2022, we paid a third party $15,000 for a several month security audit. In 2023 they didn’t ask us to do anything, and this year there’s a new process involving some automated code scanning and review.
I’m optimistic that Gmail OAuth will be restored in early September, but their process is heavily geared toward simple cloud-based integrations with Gmail and not desktop clients. They want us to “securely store OAuth credentials”, and it’s increasingly difficult to explain that we don’t store them at all, they’re saved in your computer’s keychain and never sent to the cloud.
Long story short:
-
I expect OAuth for Gmail will work again soon, once we’ve satisfied Google’s updated compliance requirements.
-
In the meantime, you can:
- Use an App Password (https://myaccount.google.com/apppasswords) and sign in to Mailspring using the IMAP/SMTP option
- If you are using Google Apps for Business, have your administrator visit https://admin.google.com/u/1/ac/owl/list?tab=configuredApps, choose “Configure new app”, search for “Mailspring”, and grant it access explicitly.
It appears that Google is not blocking all existing Gmail accounts that have authenticated with Mailspring already, so if you’re already logged in you may not need to take any action.
Sorry again for the hassle, I use Gmail with Mailspring myself so this has been very annoying. If you pay fo Mailspring Pro, email me at ben@foundry376.com, I’d be happy to refund your subscription.