Using app passwords in Nylas

App passwords (sometimes called “app-specific passwords”) are randomly generated passwords that provide a secure way for users to authenticate with third parties such as Nylas, without using their regular account password.

Because every provider has a different way of creating an app password, you must direct your user to their provider’s app password tool so they can create one. When that’s done, they can complete the authentication process with Nylas.

Email service providers, as a rule, don’t offer APIs to allow third parties to generate app passwords on a user’s behalf. This means that this step must be done manually by the user.

When you use the Detect Provider endpoint, Nylas includes a link to the detected provider’s app password tool, if one is available.

App passwords for Microsoft accounts

An app password is required if 2FA is enabled and you are authenticating without a security code.

• Microsoft Exchange Login
• Using app passwords

App passwords for Yahoo accounts

Yahoo Mail accounts require an app password for Nylas to authenticate. An app password gives Nylas access to the account through the single password login.

• Yahoo Authentication
• Generate and manage third-party app passwords

App passwords for iCloud accounts

Apple ID uses an app password for accessing information in iCloud.

• iCloud Authentication
• Using app-specific passwords

App passwords for other providers

The following providers also require app passwords:

• AOL
• GMX
• Zoho