https://stackoverflow.com/questions/17480260
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianYou can check the authentication methods available like this (I'm using IMAP4_SSL, use IMAP4 if you want an insecure connection, but I don't recommend ever using non-SSL connections if you have the choice).
import imaplib
imap_server = imaplib.IMAP4_SSL("imap.server.com")
print "\n".join(i for i in imap_server.capabilities if i.startswith("AUTH="))
You can then write an authentication object that can be passed to imap_server.authenticate() for your chosen method. This bug report happens to have some examples of its use and this SO question shows someone authenticating via OAuth to Gmail.
If the server doesn't provide any authentication methods other than plaintext passwords, or you can't / don't wish to support them, then storing the password in a form where you can recover the plaintext is unfortunately unavoidable. You could encrypt it in some form (e.g. AES using PyCrypto, example here), but the encryption key is still going to be stored somewhere unless you want to prompt the user each time (in which case you might as well just prompt for the password anyway). I would suggest at least some trivial obfuscation, such as Base64 encoding, just to prevent someone idly glancing at the code or config seeing the password in the clear.
EDIT: One other point which might be obvious is to make sure that if you do need to store plaintext passwords, you never store them in a file which needs to be world-readable. For example, don't ever hard-code them in scripts even if it's just a quick script which has all its other settings as global variables or similar. Instead, try to make sure the password is in a separate file which can have OS-specific permissions restricted as required.
