Skip removing XOAUTH2 from AuthenticationMechanisms when OAuth2

snakefoot · snakefoot · commit cb261a7ba79e · 2026-04-04T11:46:36.000+02:00
diff --git a/src/NLog.MailKit/MailTarget.cs b/src/NLog.MailKit/MailTarget.cs
@@ -416,22 +416,9 @@ private void SendMailMessage(MimeMessage message, LogEventInfo lastEvent)
                 client.Connect(renderedHost, smtpPort, secureSocketOptions);
                 InternalLogger.Trace("{0}: Connecting succesfull with SmtpCapabilities={1}", this, client.Capabilities);
 
-                // Note: since we don't have an OAuth2 token, disable
-                // the XOAUTH2 authentication mechanism.
-                client.AuthenticationMechanisms.Remove("XOAUTH2");
-
                 // Note: only needed if the SMTP server requires authentication
-
                 var smtpAuthentication = RenderLogEvent(SmtpAuthentication, lastEvent);
-                if (smtpAuthentication == SmtpAuthenticationMode.Basic)
-                {
-                    var userName = RenderLogEvent(SmtpUserName, lastEvent);
-                    var password = RenderLogEvent(SmtpPassword, lastEvent);
-
-                    InternalLogger.Trace("{0}: Authenticate with username '{1}'", this, userName);
-                    client.Authenticate(userName, password);
-                }
-                else if (smtpAuthentication == SmtpAuthenticationMode.OAuth2)
+                if (smtpAuthentication == SmtpAuthenticationMode.OAuth2)
                 {
                     var userName = RenderLogEvent(SmtpUserName, lastEvent);
                     var oauth2Token = RenderLogEvent(SmtpPassword, lastEvent);
@@ -447,17 +434,32 @@ private void SendMailMessage(MimeMessage message, LogEventInfo lastEvent)
                     var oauth2 = new SaslMechanismOAuth2(userName, oauth2Token);
                     client.Authenticate(oauth2);
                 }
-                else if (smtpAuthentication == SmtpAuthenticationMode.Ntlm)
+                else
                 {
-                    var userName = RenderLogEvent(SmtpUserName, lastEvent);
-                    var password = RenderLogEvent(SmtpPassword, lastEvent);
-                    if (!string.IsNullOrWhiteSpace(userName))
+                    // Note: since we don't have an OAuth2 token, disable
+                    // the XOAUTH2 authentication mechanism.
+                    client.AuthenticationMechanisms.Remove("XOAUTH2");
+
+                    if (smtpAuthentication == SmtpAuthenticationMode.Basic)
                     {
-                        client.Authenticate(new SaslMechanismNtlm(userName, password));
+                        var userName = RenderLogEvent(SmtpUserName, lastEvent);
+                        var password = RenderLogEvent(SmtpPassword, lastEvent);
+
+                        InternalLogger.Trace("{0}: Authenticate with username '{1}'", this, userName);
+                        client.Authenticate(userName, password);
                     }
-                    else
+                    else if (smtpAuthentication == SmtpAuthenticationMode.Ntlm)
                     {
-                        client.Authenticate(new SaslMechanismNtlm(CredentialCache.DefaultNetworkCredentials));
+                        var userName = RenderLogEvent(SmtpUserName, lastEvent);
+                        var password = RenderLogEvent(SmtpPassword, lastEvent);
+                        if (!string.IsNullOrWhiteSpace(userName))
+                        {
+                            client.Authenticate(new SaslMechanismNtlm(userName, password));
+                        }
+                        else
+                        {
+                            client.Authenticate(new SaslMechanismNtlm(CredentialCache.DefaultNetworkCredentials));
+                        }
                     }
                 }
 
