similar to: Plan: ACL changes

I spent some time setting up Dovecot LMTP with Pigeonhole this weekend. I got most of the things I wanted to working but have a few issues that I'm hoping that someone might be able to help with. First, I'm running the stock version of the tools from the core repos for CentOS/6, which means Dovecot 2.0.9 and Pigeonhole 0.2.2. Unfortunately, I don't expect to be able to upgrade

I'm trying to set up a public namespace so that a set of IMAP folders are available to all staff - similar to MS Exchange Public Folders. I've managed to set up the namespace correctly but I'm having trouble with the ACLs. The global ACL file is the only method I can get to work. All I want to do is to allow 1 user admin privileges to create & delete anything but all other users

Thank you, How and where ? I configured only this: cat /Library/Server/Mail/Data/shared/shared-mailboxes * user=masteruser lr masteruser is ok for all masters (mailmaster) ? Luda > Am 09.04.2019 um 09:33 schrieb Aki Tuomi <aki.tuomi at open-xchange.com>: > > Hi! > > You need to grant the master user rights in your ACL file. > > Aki -------------- next part

Hi there! I can't get ACL working for master users. Login as master user works fine though, and I am able to access any mailbox using the auth_master_user_separator "*", tested e.g. via Python's imaplib: import imaplib imap = imaplib.IMAP4_SSL('imap.example.com') imap.login('foo at example.com*admin-acldemo', '**********') ('OK', [b'Logged

Hi all! I have tried the imap_acl plugin with 1.2.9 today, but was not able to limit acl changes for those mailboxes where acl changes should be forbidden. http://wiki.dovecot.org/ACL says that "a" or "admin" covers "Administration rights to the mailbox". However, removing "a" from owner acl (using "lr") does not help, the user can still

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I noticed that entries added to the ACL dict are not removed, when an user no longer has explicit ACLs to another user, e.g.: [at the beginning no ACLs for "user"] 1 login testuser pwd 2 setacl INBOX user lp 3 deleteacl INBOX user Although "user" has no ACLs of mailfolders of "testuser", the user-testuser

Trying to get ACLs working, very basic setup: Virtual users are put into different acl_group via passdb. > u:{PLAIN}B::::::userdb_acl_groups=g The global acl file restricts what they can do. > * group-override=g > * group=g lr Shouldn't this mean, that the group rights override the user rights? The effect that I see though is, that the user "u" then may not do

Hi, thanks for the answer. I think your environment was not set up correctly to reproduce this bug. I've retested with 2.3.5 and I can still reproduce it. I've attached a script that will configure everything for testing and if you have a virtual machine available, you can use it directly (it expects linux with systemd for dovecot restart). relevant section from config: namespace {

Hello, I am relatively new to the world of MTAs and MDAs, and I try to set up shared mailboxes. So far I have somehow succeeded - I have defined a shared namespace and I have managed to create per-mailbox ACL files thanks to the doveadm command. However, I have been following these resources and there were bits that have puzzled me: When learning about how ACL work in e.g.

. My debug: Apr 09 09:13:20 imap(pid 82675 user test1): Debug: acl vfile: file /Library/Server/Mail/Config/dovecot/global-acls/INBOX not found Apr 09 09:13:20 imap(pid 82675 user test1): Debug: acl vfile: file /Library/Server/Mail/Data/mail/EB83247B-1A33-4A43-AD30-E6453789072A/dovecot-acl not found Apr 09 09:13:20 imap(pid 82675 user test1): Debug: acl vfile: file

Sorry, we have not yet been able to look into this.. It's now in our internal system as DOP-966 Aki > On 7 March 2019 17:31 Michal Hlavinka via dovecot <dovecot at dovecot.org> wrote: > > > Hi, > any progress with this issue? Do you need more information to debug and > fix this? > > Cheers > Michal Hlavinka > > On 9/18/18 4:10 PM, Michal Hlavinka

We have a customer with a large public folder hierarchy. They occasionally make requests to have the public folder ACLs changed; for example: "please give user X access to all public folders" (that's nearly 1700 folders). Worse: "please give user Y access to all sales folders" (there are 1450 sales folders). The problem is that there are (naturally) spaces in the folder

Hi Timo my tests resulted in inheritance is given if a userfolder has set some acl to its new created subfolder , which is nice if some userfolder has its acl from global acl there is no inheritance to its new created subfolders, that subfolders will always created with full owner rights i am not really sure if its a good idea to have inheritance from global acl and if its hackabel what is your

Hello, just wanted to notify you about a bug i found in 1.1.4 ACL handling: Global ACLs are ignored, when there is no line break (i.e. "owner lr" is ignored while "owner lr\n" works). I didn't track this down to see if the same happens for per-user ACLs, but it should be quite obvious in the source anyways. Regards -- Sensationsangebot nur bis 30.11: GMX FreeDSL -

Hi All, I am trying to do ACL enabled Public folder on dovecot version 1.1.20, but the ACL thing is not working, the public folder is visible and accessible to everyone. My dovecot config for public folder is like ######## namespace public { separator = / prefix = Public/ location = maildir:/var/mail/public subscriptions = no } plugin { acl = vfile } ######### and I have my

Hello everyone, I've trying to configure shared folders in dovecot 2.1.6 without success. My configuration is: mail_plugins = quota autocreate mail_log notify acl ... plugin { ... acl_shared_dict = file:/etc/dovecot/shared-mailboxes.db ... } Protocol imap { ... mail_plugins = imap_quota imap_acl ... } When I try to set acl to a folder: a02 setacl inbox.test1 user1 lr a02 BAD Error

We have a solution using Dovecot as a secondary mail archive. All mailboxes are populated/groomed by master account and the actual users have only read access. This is achieved by a simple ACL approach. dovecot.conf has protocol imap { mail_plugins = acl quota imap_quota zlib } plugin { acl = vfile:/etc/dovecot/acls:cache_secs=300 } /etc/dovecot/acls/.DEFAULT file is trivial: user=master

I'm trying to set up global ACLs. I have the following in the config file: > # acl > mail_plugins = acl > > protocol imap { > mail_plugins = $mail_plugins imap_acl > } > > plugin { > # Without global ACLs: > #acl = vfile > > # With global ACL files in /etc/dovecot/dovecot-acls file (v2.2.11+): > #acl = vfile:/etc/dovecot/dovecot-acl > acl

On Tuesday 01 September 2009 12:11:39 Thomas Leuxner wrote: > On Tue, Sep 01, 2009 at 11:34:16AM +0200, Andreas Ntaflos wrote: > > Is there anything more to it? I ask, because I can't seem to get it > > to work correctly using this approach with global ACLs. Problems > > include: > > > > - Can't get the mailboxes "Spam" and "Ham" under

Hi, all! I'm new to dovecot but trying to setup read-only public folders for different user groups. My goal is to create several public folder such as sales, operation etc with per user index. But I have some problem which I can't resolve with Google and Dovecot.Org. Now users can see and subscribe to test folder "share", but I can't block ability to delete messages via