We have an app that used 2-legged OAuth to access email via IMAP for users within Google Apps for business domains, as described here: http://code.google.com/apis/gmail/oauth/protocol.html
This all works fine when the email of users in the primary domain is accessed. For example, the user is in domain1.com, the OAuth key and secret from domain1.com is used, the xoauth_requestor_id is set to a user from domain1.com etc. The problem is if trying to access email from a user in a secondary domain within the Google Apps account - the OAuth IMAP authentication does not work. For a user in a secondary domain the following URL has been used: https://mail.google.com/mail/b/secondary.com/imap/?xoauth_requestor_id=user%40secondary.com And then the OAuth signature that is used as part of the IMAP authentication has been created with the OAuth key and secret from the primary domain. Is there anything else that needs to be done to get this working? Are there specific OAuth scopes that need to be added (bearing in mind that when working with users in the primary domain it works fine)? Thanks, Andrew -- You received this message because you are subscribed to the Google Groups "Google Apps Domain Information and Management APIs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/google-apps-mgmt-apis?hl=en.
