SmtpAuthenticationMode.OAuth2 with SmtpUserName (OAuth ClientId) and SmtpPassword (OAuth ClientSecret) (#227)

Author: snakefoot

README.md

@@ -10,15 +10,11 @@
 Alternative Mail target for [NLog](https://github.com/nlog/nlog) using [MailKit](https://github.com/jstedfast/MailKit). Compatible with .NET standard 2+ 
 
 Including this package will replace the original mail target and has the
-same options as the original mail target, see [docs of the original mailTarget](https://github.com/NLog/NLog/wiki/Mail-Target)
-
-Currently not implemented:
-
-- NTLM auth
+same options as the original mail target, see [docs of the original mailTarget](https://github.com/NLog/NLog/wiki/Mail-Target).
+But Mailkit does not yet support `SmtpAuthentication = NTLM`.
 
 This library is integration tested with the [SmtpServer NuGet package](https://www.nuget.org/packages/SmtpServer/)
 
-
 ### How to use
 
 1) Install the package: 
@@ -47,6 +43,18 @@ See the [NLog Wiki](https://github.com/NLog/NLog/wiki/Mail-Target) for available
 
 Note that the option `skipCertificateValidation="true"` can prevent `AuthenticationException` if your remote certificate for smtpServer is invalid - not recommend!
 
+### OAuth2 Authentication
+
+Mailkit supports `OAuth2` authentication by specifying `SmtpAuthentication = OAuth2` together with:
+- `SmtpUserName = ${gdc:OAuthClientId}`
+- `SmtpPassword = ${gdc:OAuthClientSecret}`
+ 
+Before using OAuth2 authentication, make sure to acquire an access token from your email provider (e.g., Gmail, Outlook) and store it in the [Global Diagnostics Context (GDC)](https://github.com/NLog/NLog/wiki/Gdc-layout-renderer) with the key `OAuthClientSecret` (And ensure it is refreshed before expiry).
+Alternative store the access token in an environment variable and use the NLog [${environment:variable=OAuthClientSecret}](https://github.com/NLog/NLog/wiki/Environment-layout-renderer) instead of NLog GDC.
+
+- [Using OAuth2 With Microsoft Outlook Exchange](https://github.com/jstedfast/MailKit/blob/master/ExchangeOAuth2.md)
+- [Using OAuth2 With Google GMail](https://github.com/jstedfast/MailKit/blob/master/GMailOAuth2.md)
+
 ### License
 BSD. License of MailKit is MIT
 

azure-pipelines.yml

@@ -13,7 +13,7 @@ variables:
   Solution: 'src/NLog.MailKit.sln'
   BuildPlatform: 'Any CPU'
   BuildConfiguration: 'Release'
-  Version: '6.0.3'
+  Version: '6.0.4'
   FullVersion: '$(Version).$(Build.BuildId)'
 
 steps:

src/NLog.MailKit/MailTarget.cs

@@ -213,13 +213,15 @@ public Layout Body
         /// <note type="note">This feature is only available if connected SMTP server supports capability
         /// <see cref="SmtpCapabilities.RequireTLS"/> flag when sending the message.</note>
         /// </remarks>
+        /// <docgen category='SMTP Options' order='14' />
         public Layout<bool> RequireTLS { get; set; } = false;
 
         /// <summary>
         /// Provides a way of specifying the SSL and/or TLS encryption
         /// 
         /// If <see cref="EnableSsl" /> is <c>true</c>, then <see cref="SecureSocketOptions.SslOnConnect" /> will be used.
         /// </summary>
+        /// <docgen category='SMTP Options' order='14' />
         [DefaultValue(DefaultSecureSocketOption)]
         [CLSCompliant(false)]
         public Layout<SecureSocketOptions> SecureSocketOption { get; set; } = DefaultSecureSocketOption;
@@ -246,18 +248,20 @@ public Layout Body
         /// Gets or sets a value indicating whether NewLine characters in the body should be replaced with <br/> tags.
         /// </summary>
         /// <remarks>Only happens when <see cref="Html"/> is set to true.</remarks>
+        /// <docgen category='Message Options' order='100' />
         public Layout<bool> ReplaceNewlineWithBrTagInHtml { get; set; } = false;
 
         /// <summary>
         /// Gets or sets a value indicating the SMTP client timeout (in milliseconds)
         /// </summary>
         /// <remarks>Warning: zero is not infinite waiting</remarks>
+        /// <docgen category='SMTP Options' order='17' />
         public Layout<int> Timeout { get; set; } = 10000;
 
         /// <summary>
         /// Gets or sets the folder where applications save mail messages to be processed by the local SMTP server.
         /// </summary>
-        /// <docgen category='SMTP Options' order='17' />
+        /// <docgen category='SMTP Options' order='18' />
         public Layout? PickupDirectoryLocation { get; set; }
 
         /// <summary>
@@ -358,7 +362,7 @@ private void SendMailMessage(MimeMessage message, LogEventInfo lastEvent)
                 client.Timeout = RenderLogEvent(Timeout, lastEvent);
 
                 var renderedHost = RenderLogEvent(SmtpServer, lastEvent);
-                if (string.IsNullOrEmpty(renderedHost))
+                if (string.IsNullOrWhiteSpace(renderedHost))
                 {
                     throw new NLogRuntimeException(string.Format(RequiredPropertyIsEmptyFormat, nameof(SmtpServer)));
                 }
@@ -401,6 +405,22 @@ private void SendMailMessage(MimeMessage message, LogEventInfo lastEvent)
                     InternalLogger.Trace("{0}: Authenticate with username '{1}'", this, userName);
                     client.Authenticate(userName, password);
                 }
+                else if (smtpAuthentication == SmtpAuthenticationMode.OAuth2)
+                {
+                    var userName = RenderLogEvent(SmtpUserName, lastEvent);
+                    var oauth2Token = RenderLogEvent(SmtpPassword, lastEvent);
+                    if (string.IsNullOrWhiteSpace(oauth2Token))
+                    {
+                        throw new NLogRuntimeException(string.Format(RequiredPropertyIsEmptyFormat, nameof(SmtpPassword)));
+                    }
+                    if (string.IsNullOrWhiteSpace(userName))
+                    {
+                        throw new NLogRuntimeException(string.Format(RequiredPropertyIsEmptyFormat, nameof(SmtpUserName)));
+                    }
+                    InternalLogger.Trace("{0}: Authenticate with OAuth2 username '{1}'", this, userName);
+                    var oauth2 = new SaslMechanismOAuth2(userName, oauth2Token);
+                    client.Authenticate(oauth2);
+                }
 
                 client.Send(message);
                 InternalLogger.Trace("{0}: Sending mail done. Disconnecting", this);
@@ -500,6 +520,11 @@ private void CheckRequiredParameters()
             {
                 throw new NLogConfigurationException("MailTarget - SmtpServer is required");
             }
+
+            if (smtpAuthentication == SmtpAuthenticationMode.OAuth2 && (SmtpUserName is null || ReferenceEquals(SmtpUserName, Layout.Empty) || SmtpPassword is null || ReferenceEquals(SmtpPassword, Layout.Empty)))
+            {
+                throw new NLogConfigurationException("MailTarget - SmtpUserName (OAuth UserName) and SmtpPassword (OAuth AccessToken) is required when SmtpAuthentication = OAuth2");
+            }
         }
 
         /// <summary>

src/NLog.MailKit/NLog.MailKit.csproj

@@ -29,8 +29,9 @@ If the mail target was already available on your platform, this package will ove
 		<DelaySign>false</DelaySign>
 		<PackageReleaseNotes>
 Changelog:
-      
-- Updated NLog v6.0.2
+
+- SmtpAuthenticationMode.OAuth2 with SmtpUserName (OAuth UserName) and SmtpPassword (OAuth AccessToken)
+- Updated NLog v6.0.4
 
 See https://github.com/NLog/NLog.MailKit/releases
 

src/NLog.MailKit/SmtpAuthenticationMode.cs

@@ -21,5 +21,10 @@ public enum SmtpAuthenticationMode
         /// NTLM Authentication.
         /// </summary>
         Ntlm,
+
+        /// <summary>
+        /// OAuth 2.0 (XOAUTH2) Authentication
+        /// </summary>
+        OAuth2
     }
 }

test/NLog.MailKit.Tests/UnitTests/MailTargetTests.cs

@@ -6,6 +6,11 @@ namespace NLog.MailKit.Tests.UnitTests
 {
     public class MailTargetTests
     {
+        public MailTargetTests()
+        {
+            NLog.LogManager.ThrowConfigExceptions = true;
+        }
+
         [Theory]
         [InlineData("high", MessagePriority.Urgent)]
         [InlineData("HIGH", MessagePriority.Urgent)]
@@ -25,5 +30,165 @@ public void ParseMessagePriorityTests(string input, MessagePriority expected)
             // Assert
             Assert.Equal(expected, result);
         }
+
+
+        [Fact]
+        public void MailTarget_WithEmptyTo_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                To = "",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTarget_WithEmptyFrom_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "",
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTarget_WithEmptySmtpServer_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTargetInitialize_WithoutSpecifiedTo_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTargetInitialize_WithoutSpecifiedFrom_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTargetInitialize_WithoutSpecifiedSmtpServer_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpPort = 27,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTargetInitialize_WithSmtpAuthenticationModeNtlm_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+                SmtpAuthentication = SmtpAuthenticationMode.Ntlm,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
+
+        [Fact]
+        public void MailTargetInitialize_WithSmtpAuthenticationModeOAuth2_ThrowsConfigException()
+        {
+            var mmt = new MailTarget
+            {
+                From = "[email protected]",
+                To = "[email protected]",
+                Subject = "Hello from NLog",
+                SmtpServer = "server1",
+                SmtpPort = 27,
+                SmtpAuthentication = SmtpAuthenticationMode.OAuth2,
+            };
+
+            Assert.Throws<NLogConfigurationException>(() =>
+                new LogFactory().Setup().LoadConfiguration(cfg =>
+                {
+                    cfg.Configuration.AddRuleForAllLevels(mmt);
+                })
+            );
+        }
     }
 }