用于IMAP身份验证的JavaMail连接到Office 365 XOAUTH2失败

Office 365 online和OAuth2面临连接问题。0我已设置应用程序权限以及IMAP和SMTP连接。基本身份验证似乎可以正常工作。我相信IMAP已启用。我的应用程序被配置为任何组织目录（任何Azure AD目录-Multitenant）中的帐户，并使用授权类型的授权代码。

以及授权的Microsoft Graph范围https://graph.microsoft.com/IMAP.AccessAsUser.All已添加：已添加客户端范围

请求的身份验证代码https://login.microsoftonline.com/{tenantID}/oauth2/v2。0/授权？响应类型=代码

请求访问令牌映像

已成功接收作用域为IMAP的访问令牌。AccessAsUser。全部是SMTP。邮寄

{
    "token_type": "Bearer",
    "scope": "IMAP.AccessAsUser.All SMTP.Send",
    "expires_in": 3599,
    "ext_expires_in": 3599,
    "access_token": "access_token",
    "refresh_token": "refresh_token",
    "id_token": "id_token"
} 

下面是Java代码（使用JavaMail jar 1.6.2）

Properties properties= new Properties();
properties.put("mail.imap.ssl.enable", "true");
properties.put("mail.imap.auth.mechanisms", "XOAUTH2");
//properties.put("mail.imap.sasl.enable", "true"); un-commented still results are same
properties.put("mail.imap.auth.login.disable", "true");
properties.put("mail.imap.auth.plain.disable", "true");
properties.put("mail.debug", "true");
properties.put("mail.debug.auth", "true");

Session session = Session.getInstance(props);
session.setDebug(true);

String userEmail = "emailuser@domain.onmicrosoft.com";
String accessToken = "accessToken";

final Store store = session.getStore("imap");
store.connect("outlook.office365.com","993",userEmail, accessToken);

以下输出：

DEBUG: JavaMail version 1.6.2
DEBUG: successfully loaded resource: /META-INF/javamail.default.address.map
DEBUG: getProvider() returning javax.mail.Provider[STORE,imap,com.sun.mail.imap.IMAPStore,Oracle]
DEBUG IMAP: mail.imap.appendbuffersize: -1
DEBUG IMAP: mail.imap.minidletime: 10
DEBUG IMAP: closeFoldersOnStoreFailure
DEBUG IMAP: trying to connect to host "outlook.office365.com", port 993, isSSL true
* OK The Microsoft Exchange IMAP4 service is ready. [TQBB]
A0 CAPABILITY
* CAPABILITY IMAP4 IMAP4rev1 AUTH=PLAIN AUTH=XOAUTH2 SASL-IR UIDPLUS ID UNSELECT CHILDREN IDLE 
NAMESPACE LITERAL+
A0 OK CAPABILITY completed.
DEBUG IMAP: AUTH: PLAIN
DEBUG IMAP: AUTH: XOAUTH2
DEBUG IMAP: protocolConnect login, host=outlook.office365.com, user=emailuser@domain.onmicrosoft.com, 
password=<non-null>
A1 AUTHENTICATE XOAUTH2 dXNlAQE=
A1 NO AUTHENTICATE failed.
Could not connect to the message store
javax.mail.AuthenticationFailedException: AUTHENTICATE failed.
at com.sun.mail.imap.IMAPStore.protocolConnect(IMAPStore.java:731)
at javax.mail.Service.connect(Service.java:366)
at myproject.EmailReceiver.downloadEmails(EmailReceiver.java:79)
at myproject.EmailReceiver.main(EmailReceiver.java:179)

其他帖子无法在Azure中找到范围https://outlook.office365.com/IMAP.AccessAsUser.Allhttps://outlook.office365.com/SMTP.Send。可能它们是遗留作用域。

“那么，还有其他范围吗？”https://graph.microsoft.com/IMAP.AccessAsUser.All“和”https://graph.microsoft.com/SMTP.send“需要通过IMAP连接到Exchange online。或现有代码存在任何问题。”。

问题已解决我的使用范围offline_accesshttps://outlook.office365.com/IMAP.AccessAsUser.Allhttps://outlook.office365.com/SMTP.Send它提供访问邮件的权限，还提供刷新令牌来重新生成访问令牌。

注意：将范围更改为脱机访问https://outlook.office365.com/IMAP.AccessAsUser.All https://outlook.office365.com/SMTP.Send解决了这个问题。