Security
OAuth access, encrypted tokens, least privilege.
tarnmail connects through official OAuth flows and stores a scoped, encrypted token. Never your password.
- authOAuth 2.0 authorized at the provider, never on our forms
- storeTokens encrypted at rest, row-level isolated per user
- scopeLeast-privilege scopes: read and send only what you grant
- transportTLS everywhere, signed and short-lived download URLs
- controlDisconnect any account instantly. Tokens purged
Report a vulnerability
Found something? Email info@libresearch.ca with details and steps to reproduce.
Get in touch