Feature Request: OAuth 2 authentication in IMAP&SMTP

Hello.

I am a relatively new user of mailbox.org who is tired of big corporations' surveillance. I find this service almost perfect for me, as it is in the middle point of having extreme (almost unusable) privacy and being like google in terms of privacy.

I have had some concerns about the two-factor authentication feature on mailbox.org, but I have switched to here from google anyway since there is a "Login 2.0 Beta" feature now. But when I learned that I have to set up my mail client with "Normal Password" credentials without 2FA whatsoever, I thought mailbox.org has some unusual "security sense". It does not make sense to set up 2FA if someone can access my e-mails easily without the second factor: It kind of defeats the whole purpose.

There are many mail providers such as google and outlook that offer secure IMAP&SMTP setup with OAuth. So, this post suggests mailbox.org to have OAuth 2 authentication for (at least) private customers for IMAP, SMTP and other protocols. Such feature will allow users to:

• Login securely everywhere with their second factor, including their third-party applications.
  
• Track which applications have authorized to view emails, additionally get notified if there is a new application that is authorized.
• Use mailbox.org as a real secure mail provider.

I think having a secure authentication implementation is a must for mail providers these days. Almost every account on the internet is connected to an email and thus can be cracked if the mail provider could be. I'd love to hear from you if such implementation could be a reality in mailbox.org.

Kind regards,

MGVLoonydh