thoralf writes:
hi,just banging my head while trying to define acls based on group memberships ... probably banged it a little too often, since i can't figure out why the following won't work.courier imap authenticates users against a ldap directory. since there are no textual user groups available from this database, i've setLDAP_AUXOPTIONS gidNumber=group in authldaprc. this seems to work: serv:/var/mail/stura# courieruserinfo testoeko2 uid=10160 gid=10012 home=/var/spool/mail/stura/testoeko2 authaddr=testoeko2 authfullname=testoeko2 maildir= quota= options=group=10012 serv:/var/mail/stura# there is a shared dir called oekoshare with certain permissions: serv:/var/mail/stura# maildiracl -list shared-oeko/Maildir/ INBOX.oekoshare owner aceilrstwx administrators aceilrstwx anyone group=10012 aceilrstw now the bad thing is thatserv:/var/mail/stura# maildiracl -compute shared-oeko/Maildir INBOX.oekoshare user=testoeko2returns nada.
maildiracl does not ping courier-authlib for any account information, and, of course, given the identifier "user=testoeko2" has no knowledge that this user belongs to the given group. maildiracl merely takes the identifier, verbatim, and runs it through the ACLs.
Now, try: maildiracl -compute shared-oeko/Maildir INBOX.oekoshare group=10012
pgpvD3iojHckB.pgp
Description: PGP signature
------------------------------------------------------------------------- This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Register now and save $200. Hurry, offer ends at 11:59 p.m., Monday, April 7! Use priority code J8TLD2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone
_______________________________________________ Courier-imap mailing list Courier-imap@lists.sourceforge.net Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-imap
