Is Modern Authentication (OAuth or equivalent) available for SonarQube email notifications?

Hello Sonar community!

My organization is using SonarQube Community Edition Version 8.9 (build 43852) to help with code scanning. As part of this process, we also have our instance of SonarQube send out emails using the built-in SMTP settings in Administration>General. We are using Office 365 as the email provider.

My concern comes as Microsoft will soon be disabling basic authentication. Article here: Basic Authentication Deprecation in Exchange Online ā€“ September 2022 Update - Microsoft Community Hub

I know that SMTP authentication is not explicitly stated as being disabled, however, I do know that our instance is using basic authentication (sending username/password) for the email setup. My question is this: Does SonarQube have the ability to use modern authentication or something like OAuth 2.0 for email setups? I have been unable to find anything regarding it in official documentation or in this forum.

This is mostly for looking ahead to the future as Microsoft has stated that they will eventually be phasing out SMTP authentication and Iā€™d like to get ahead of the curve.

Any insight is appreciated.
-Chase

Hello Chase,

Thanks for brining this to our attention. We do not have any alternative ways of authentication for emails in SonarQube at this point. Since Microsoft is not planning to phase out basic authentication for SMTP, we can re-evaluate this if such a change is announced.