Hello, Thank you for your response. In answer to your questions I made a file global-acls containing: # cat global-acls Public/general user=user1 at domain.com lrwstipekxa Public/TestFolder user=user1 at domain.com lrwstipekxa Public/general user=user1 at domain2.com lrwstipekxa Public/TestFolder user=user1 at domain2.com lrwstipekxa Here's the ls -la output: #ls -la /var/vmail/public/TestFolder/ total 28 drwx------ 5 vmail vmail 512 Apr 26 10:09 ./ drwx------ 4 vmail vmail 512 Apr 26 10:09 ../ drwx------ 2 vmail vmail 512 Apr 25 13:55 cur/ -rw------- 1 vmail vmail 51 Apr 26 10:09 dovecot-uidlist -rw------- 1 vmail vmail 232 Apr 26 10:09 dovecot.index.log drwx------ 2 vmail vmail 512 Apr 25 13:55 new/ drwx------ 2 vmail vmail 512 Apr 25 13:55 tmp/ #ls -la /var/vmail/public/general/ total 28 drwx------ 5 vmail vmail 512 Apr 25 13:47 ./ drwx------ 4 vmail vmail 512 Apr 26 10:09 ../ drwx------ 2 vmail vmail 512 Apr 25 13:42 cur/ -rw------- 1 vmail vmail 51 Apr 25 13:47 dovecot-uidlist -rw------- 1 vmail vmail 232 Apr 25 13:47 dovecot.index.log drwx------ 2 vmail vmail 512 Apr 25 13:42 new/ drwx------ 2 vmail vmail 512 Apr 25 13:42 tmp/ Thanks. Dave. On 4/26/20, Markus Winkler <ml at irmawi.de> wrote:> Hi David, > > On 25.04.20 21:23, David Mehler wrote: >> I've added a mailbox to the namespace definition for the public >> folders. I can do a doveadm acl get -A "Public/general" works but >> "Public/TestFolder" does not. > > did you already used something like this on your server?: > > # doveadm acl set -A "Public/..." > > or how did you set the ACLs? > > And: > >> Here's my ls output: >> #ls -l /var/vmail/public >> total 16 >> drwx------ 5 vmail vmail 512 Apr 25 13:56 TestFolder/ >> -rw------- 1 vmail vmail 0 Apr 25 13:43 dovecot-acl-list >> -rw------- 1 vmail vmail 8 Apr 25 13:47 dovecot-uidvalidity >> -r--r--r-- 1 vmail vmail 0 Apr 25 13:47 dovecot-uidvalidity.5ea477b0 >> -rw------- 1 vmail vmail 804 Apr 25 13:59 dovecot.list.index.log >> drwx------ 5 vmail vmail 512 Apr 25 13:47 general/ > > could you please also show the output of: > > # ls -la /var/vmail/public/TestFolder > > and > > # ls -la /var/vmail/public/general > > Thanks and regards, > Markus >
Hi Dave, thanks for the information. On 26.04.20 18:37, David Mehler wrote:> In answer to your questions I made a file global-acls containing:It's the '/usr/local/etc/dovecot/global-acls', right?> # cat global-acls > Public/general user=user1 at domain.com lrwstipekxa > Public/TestFolder user=user1 at domain.com lrwstipekxa > > Public/general user=user1 at domain2.com lrwstipekxa > Public/TestFolder user=user1 at domain2.com lrwstipekxaJust to be sure: when did you create this file and it's content: before you reported (i.e. yesterday) the results of 'doveadm acl get -A "Public/general"' and 'doveadm acl get -A "Public/TestFolder"' or only today before you wrote this mail? In the latter case: did this change the output of 'doveadm acl get -A ...' To me this file looks OK and so the ACLs should be reported and working correctly ... And an additional question: the users user1 at domain.com and user1 at domain2.com are generally able to login, use their own Inbox etc. without any problem? Regards, Markus
Hello, Thanks, yes the global-acls file is the one I'm refering to and I created it before all this started. Yes, the users can both login properly and can access there own inboxes. Thanks. Dave. On 4/26/20, Markus Winkler <ml at irmawi.de> wrote:> Hi Dave, > > thanks for the information. > > On 26.04.20 18:37, David Mehler wrote: >> In answer to your questions I made a file global-acls containing: > > It's the '/usr/local/etc/dovecot/global-acls', right? > >> # cat global-acls >> Public/general user=user1 at domain.com lrwstipekxa >> Public/TestFolder user=user1 at domain.com lrwstipekxa >> >> Public/general user=user1 at domain2.com lrwstipekxa >> Public/TestFolder user=user1 at domain2.com lrwstipekxa > > Just to be sure: when did you create this file and it's content: before you > > reported (i.e. yesterday) the results of 'doveadm acl get -A > "Public/general"' and 'doveadm acl get -A "Public/TestFolder"' or only > today before you wrote this mail? In the latter case: did this change the > output of 'doveadm acl get -A ...' > > To me this file looks OK and so the ACLs should be reported and working > correctly ... > > And an additional question: the users user1 at domain.com and > user1 at domain2.com are generally able to login, use their own Inbox etc. > without any problem? > > Regards, > Markus >