ACL and Sharing Mail Folder

Talk about anything that doesn't fit in the other catagories :) (and of course is about Group-Office)

Moderator: Developers

evoprogetti
Posts: 12
Joined: Wed Dec 11, 2013 4:53 pm

ACL and Sharing Mail Folder

Postby evoprogetti » Thu Dec 19, 2013 10:12 am

Hi,
i have this situation. I'm with the community version updated form 5.0.28 and 5.0.29 i configure my email and i want to share my single email folder(Like INBOX) with another user:

1- but not giving him the permission to delete email ....
2- the right to answer to my email....


Now i go to Account -> my email account -> permission -> and i give to USER1 the right to USE ACCOUNT.

Now i go to Configure EMAIL SHARE FOLDER ACL in dovecot.conf:
I cancel the command # to this line now are in this way:

Code: Select all

dict {
  quota = mysql:/etc/dovecot/dovecot-dict-sql.conf.ext
  expire = sqlite:/etc/dovecot/dovecot-dict-sql.conf.ext
}
Then i restart Dovecot and but the if i login like USER1 i'm stilling delete all the

and add at the end of the file this code that i find on wiki:

Code: Select all

plugin {
  acl_shared_dict = file:/var/lib/dovecot/shared-mailboxes.db
  acl = vfile
  #acl_anyone = allow
}

protocol imap {
  mail_plugins = acl imap_acl
}
protocol lda {
  mail_plugins = acl
}

# You need to create also a private namespace:
namespace private {
  separator = /
  prefix =
  #location defaults to mail_location.
  inbox = yes
}

namespace shared {
  separator = /
  prefix = shared/%%u/
  #location = maildir:/home/vmail/%%d/%%u:INDEX=~/shared/%%u
  location = maildir:%%h:INDEX=~/shared/%%u
  subscriptions = no
  list = children
  #list = yes
}
then i go in /etc/dovecot/conf.d/90-acl.conf

and i cancel the # from this two line:

Code: Select all

plugin {
  acl = vfile:/etc/dovecot/global-acls:cache_secs=300
}

# To let users LIST mailboxes shared by other users, Dovecot needs a
# shared mailbox dictionary. For example:
plugin {
  acl_shared_dict = file:/var/lib/dovecot/shared-mailboxes
}
Now i can go on my single folder that i want to share click with the mouse right button and click to Share Folder:

i select another email account that was USER1@local.dino and give to this account the Right to READ and WRITE.

Now i have a trouble:

The USER1 now can do what i want but he still can DELETE my email and he has the right to also click with the right button of the mouse and in Share
Account can delete other USER from sharing.

How can i fix it???
If i give to him the right ONLY READ he cannot answer with my email i want this, and also the trouble of deleting other user permission from folder sharing menu still.

Thank you.....
mschering
Site Admin
Site Admin
Posts: 8333
Joined: Tue Apr 20, 2004 1:06 pm
Location: The Netherlands - Den Bosch
Contact:

Re: ACL and Sharing Mail Folder

Postby mschering » Thu Dec 19, 2013 1:37 pm

I can't replicate your problem. If I enable this I can share it read only and the other user can't delete anything:

I've written a tutorial on how to set it up on dovecot 2.x:
https://www.group-office.com/wiki/Mails ... ovecot_2.x
Best regards,

Merijn Schering
Intermesh
evoprogetti
Posts: 12
Joined: Wed Dec 11, 2013 4:53 pm

Re: ACL and Sharing Mail Folder

Postby evoprogetti » Thu Dec 19, 2013 2:34 pm

Yes, i don't know... in the configuration i miss the change in 20-imap.conf. Now i set it but nothing new...

If i set:

- only read in account
- in share folder i set read and write

GO only configure USER1(which has user1@dd.com) to only read my email admin@dd.com [good], but he cannot answer to a my email (admin@dd.com) with my address admin@dd.com [that's what i want].

If i configure it USE ACCOUNT in account GO let's to USER1 to delete my email [bad] but USER1 can answer to my email with my address admin@dd.com [good]

Thanks a lot
mschering
Site Admin
Site Admin
Posts: 8333
Joined: Tue Apr 20, 2004 1:06 pm
Location: The Netherlands - Den Bosch
Contact:

Re: ACL and Sharing Mail Folder

Postby mschering » Thu Jan 02, 2014 8:14 am

We can fix this for you. But it's not a Group-Office bug so we would charge for the service. We can do this work for 100 euro for you.
Best regards,

Merijn Schering
Intermesh

Who is online

Users browsing this forum: No registered users and 4 guests