New features and general improvements
Whistleblowing Channel Update: support for OAuth authentication in mail servers
Incorporation of OAuth authentication for SMTP mail servers, with compatibility for Microsoft Graph API and Gmail API, improving security and compliance with new standards.
The Whistleblowing Channel configuration is updated to incorporate compatibility with the new OAuth authentication standard for sending emails through SMTP servers, progressively replacing the traditional user and password-based system.
This improvement applies to the company-specific mail server configuration, allowing the Whistleblowing Channel authentication to adapt to the new security requirements of email providers and prevent vulnerabilities in the sending process.
Key features:
-
New OAuth switch in the Mail Server Configuration form of the Whistleblowing Channel.
-
If disabled, the classic authentication method with user and password is maintained, which will remain temporarily available until the full migration to the new format.
-
If enabled, OAuth is used, displaying only the necessary fields according to the selected provider.
-
-
Compatibility with two authentication providers:
-
Microsoft Graph API (selected by default).
-
Gmail API.
-
-
TLS Compatibility:
-
If the TLS option is active, the SMTP connection is established encrypted in both user/pass mode and OAuth.
-
If it is not active, the connection will follow the unencrypted configuration.
-
-
Backward compatibility:
-
Companies currently configured with classic user/password authentication will be able to continue using it temporarily.
-
The functionality is prepared for the gradual transition to OAuth, ensuring compatibility and security during the update process.
-