search for: userdb_acl_groups

diff to dovecot-2.2.31 hardcoded userdb_acl_groups /as currently not seeing any other fields that need similar way/ in ldap using dynlist - labeledURIObject - some attribute labeledURI :: ldap:///ou=DovecotGroups,dc=DOMAIN,dc=TLD,dc=root?specName?sub?(&(objectclass=posixgroup)(memberuid=XXXXX)) that returns groupnames for each user that he belo...

Hi list, I have a question on auth caching in 2.2.18. I am using acl_groups for a master user, appended in a static userdb file # snip ############################### master at uma:{SHA}XXXX=::::::userdb_acl_groups=umareadmaster allow_nets=127.0.0.1 # snap ############################### and use this group in a global ACL file. I discovered this only works on first NOT-cached login environment in imap-postlogin script on first login: AUTH_TOKEN=e96b5a32ceb2cafc4460c210ad2e92e3d7ab388c MASTER_USER=master...

...mail_crypt_box_get_public_key: symbol not found (this is usually intentional, so just ignore this message) doveadm(<username>): Debug: auth PASS input: doveadm(<username> 32679): Debug: auth USER input: <username> userdb_quota_rule=*:bytes=15728640000 master_user=<username> userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender 2017@<domain>,lgs@<domain> home=/var/dovecot/imap/<domain>/<user> doveadm(<username> 32679): Debug: Added userdb setting: plugin/master_user=<username> doveadm(<username> 32679): Debug: Ad...

Trying to get ACLs working, very basic setup: Virtual users are put into different acl_group via passdb. > u:{PLAIN}B::::::userdb_acl_groups=g The global acl file restricts what they can do. > * group-override=g > * group=g lr Shouldn't this mean, that the group rights override the user rights? The effect that I see though is, that the user "u" then may not do anything, not even lookup and read. The wiki text i...

...box, \ =uid=vmail, \ =gid=mail user_filter = (&(objectClass=inetOrgPerson)(mail=%u)) pass_attrs = mail=user, \ userPassword=password, \ =userdb_home=/var/mail/%d/%n, \ =userdb_mail=mdbox:/var/mail/%d/%n/mdbox, \ =userdb_uid=vmail, \ =userdb_gid=mail, \ =userdb_acl_groups='allshared' pass_filter = (&(objectClass=inetOrgPerson)(mail=%u)) iterate_attrs = mail=user iterate_filter = (&(objectClass=inetOrgPerson)(mail=*)) default_pass_scheme = plain I have added permissions for "$allshared" to a mailbox's Inbox. It does not appear in t...

...04:30 PM, matthias lay wrote: >> Hi list, >> >> I have a question on auth caching in 2.2.18. >> >> I am using acl_groups for a master user, appended in a static userdb file >> >> # snip ############################### >> master at uma:{SHA}XXXX=::::::userdb_acl_groups=umareadmaster >> allow_nets=127.0.0.1 >> # snap ############################### >> >> and use this group in a global ACL file. >> I discovered this only works on first NOT-cached login >> >> >> >> environment in imap-postlogin script on first lo...

...adm_mail_crypt_plugin.so: mail_crypt_box_get_public_key: symbol not found (this is usually intentional, so just ignore this message) doveadm(<username> 43723): Debug: Added userdb setting: plugin/master_user=<username> doveadm(<username> 43723): Debug: Added userdb setting: plugin/userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender 2017@<domain>,lgs@<domain> doveadm(<username> 43723): Debug: Added userdb setting: plugin/userdb_quota_rule=*:bytes=15728640000 doveadm(<username>): Debug: Effective uid=90, gid=101, home=/var/dovecot/imap/...

...mail_crypt_box_get_public_key: symbol not found (this is usually > intentional, so just ignore this message) > doveadm(<username> 43723): Debug: Added userdb setting: > plugin/master_user=<username> > doveadm(<username> 43723): Debug: Added userdb setting: > plugin/userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender > 2017@<domain>,lgs@<domain> > doveadm(<username> 43723): Debug: Added userdb setting: > plugin/userdb_quota_rule=*:bytes=15728640000 > doveadm(<username>): Debug: Effective uid=90, gid=101, &gt...

...public_key: symbol not found (this is usually >> intentional, so just ignore this message) >> doveadm(<username> 43723): Debug: Added userdb setting: >> plugin/master_user=<username> >> doveadm(<username> 43723): Debug: Added userdb setting: >> plugin/userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender >> 2017@<domain>,lgs@<domain> >> doveadm(<username> 43723): Debug: Added userdb setting: >> plugin/userdb_quota_rule=*:bytes=15728640000 >> doveadm(<username>): Debug: Effective uid=...

...c_key: symbol not found (this is usually > intentional, so just ignore this message) > doveadm(<username>): Debug: auth PASS input: > doveadm(<username> 32679): Debug: auth USER input: <username> > userdb_quota_rule=*:bytes=15728640000 master_user=<username> > userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender > 2017@<domain>,lgs@<domain> home=/var/dovecot/imap/<domain>/<user> > doveadm(<username> 32679): Debug: Added userdb setting: > plugin/master_user=<username> > doveadm(<username&g...

...ypt_box_get_public_key: symbol not found (this is usually intentional, so just ignore this message) doveadm(<user>@<domain> 54303): Debug: Added userdb setting: plugin/master_user=<user>@<domain> doveadm(<user>@<domain> 54303): Debug: Added userdb setting: plugin/userdb_acl_groups=admins@<domain>,hts b?ro@<domain>,hts@<domain> doveadm(<user>@<domain> 54303): Debug: Added userdb setting: plugin/userdb_quota_rule=*:bytes=10485760000 doveadm(<user>@<domain>): Debug: Effective uid=90, gid=101, home=/var/dovecot/imap/<domain>/<us...

...and 2.2.18 On 08/05/2015 04:30 PM, matthias lay wrote: > Hi list, > > I have a question on auth caching in 2.2.18. > > I am using acl_groups for a master user, appended in a static userdb file > > # snip ############################### > master at uma:{SHA}XXXX=::::::userdb_acl_groups=umareadmaster > allow_nets=127.0.0.1 > # snap ############################### > > and use this group in a global ACL file. > I discovered this only works on first NOT-cached login > > > > environment in imap-postlogin script on first login: > > > AUTH_TOKEN...

How would I go, If I wanted ACL processing to start with %{auth_user} instead of %{user} when determining rights? -- peter

Howdy, Is it possible to define IMAP permissions per IT? What i would like to do is: * IP 1.1.1.1 IS THE ONLY ONE that has permission for EXPUNGE Is it possible? Thanks in advanced, -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://dovecot.org/pipermail/dovecot/attachments/20200809/e9949dc9/attachment.html>

...c as well (that is not only in public/.box) ? 3) let's say I try ACLs with the same setup (anyone <all permissions> for starters) would pass_attrs = uid=user,userPassword=password,homeDirectory=userdb_home,,,uidNumber=userdb_uid,gidNumber=userdb_gid,shadowMax=userdb_system_user.title=userdb_acl_groups and title: group1,doveshared be a correct setup ? Do I need an dovecot-acl file only in .box or in public too ? My understanding is that my setup doesn't work because for some reason, dovecot doesn't see my users secondary groups or doesnt take them into account... Any thoughts which...

...nd then adding them back selectively: In the global ACL declaration I have: > * owner lr > * group=SYS lrwstipekxa The owner is put into the SYS group via userdb extra field in static passwd file ("archiv" is a system user, but pam is disabled for the server): > archiv:::::::userdb_acl_groups=SYS Still, the group permissions do not get applied: > root at host:/etc/dovecot# doveadm -D acl debug -u archiv INBOX > [?] > doveadm(archiv): Debug: Added userdb setting: plugin/acl_groups=SYS > doveadm(archiv): Debug: Effective uid=1002, gid=1001, home=/home/archiv > doveadm(arc...

...gt;>> Hi list, >>> >>> I have a question on auth caching in 2.2.18. >>> >>> I am using acl_groups for a master user, appended in a static userdb file >>> >>> # snip ############################### >>> master at uma:{SHA}XXXX=::::::userdb_acl_groups=umareadmaster >>> allow_nets=127.0.0.1 >>> # snap ############################### >>> >>> and use this group in a global ACL file. >>> I discovered this only works on first NOT-cached login >>> >>> >>> >>> environment...

...are /etc/dovecot/sql.conf ?????????? password_query = SELECT fullusername as user, \ password, \ uid AS userdb_uid, \ gid AS userdb_gid, \ home AS userdb_home, \ mail AS userdb_mail, \ groups as userdb_acl_groups, \ quota_rule as userdb_quota_rule \ FROM pd_users_full WHERE \ username = '%n' AND \ domain = '%d' AND \ external_auth IS FALSE AND \ master_user IS FALSE AND \ %L...

Hello, I'm trying to set up, as explained in the wiki, shared mailboxes with symlink. I'm running dovecot-1.1.8 with LDAP pass/userdb. The Maildir layout goes like this : /courriel/boites/foobar : Maildir of user foobar (nfs) /courriel/meta/foobar : control files of user foobar (nfs) /var/dovecot/indexes : indexes (locally stored) I created : /courriel/boites/doveshared/.box/ :

...adm_mail_crypt_plugin.so: mail_crypt_box_get_public_key: symbol not found (this is usually intentional, so just ignore this message) doveadm(<username> 46922): Debug: Added userdb setting: plugin/master_user=<username> doveadm(<username> 46922): Debug: Added userdb setting: plugin/userdb_acl_groups=koakram@<domain>,wahlkampfnetzwerk@<domain>,wahlkalender 2017@<domain>,lgs@<domain> doveadm(<username> 46922): Debug: Added userdb setting: plugin/userdb_quota_rule=*:bytes=15728640000 doveadm(<username>): Debug: Effective uid=90, gid=101, home=/var/dovecot/imap/...