SogGo CalDAV/CardDAV without app Password?

RotasOpera

Not sure if this is the right place to ask, but here goes:
my org hast mailcow setup in conjuction with Keycloak/OIDC for auth, which is working fine. However one small gripe I have is that app passwords are needed to be able to sync CalDAV and CardDAV resources. Or at least thats the only way I got it to work.
Is it possible to forward DAV auth to keycloak? Or do all users have to set an app password?

esackbauer

RotasOpera Is it possible to forward DAV auth to keycloak?

I guess not. because you would need a web session with keycloak open and handle the 2FA each time you open your caleandar app. Not very convenient and users will get lazy with those 2FA prompts.

I think the app password is the best solution in terms of security and usability.

ThiSchwa

I think the right place for your question is https://www.sogo.nu/support.html