Benoit Tellier created JAMES-4090:
-------------------------------------
Summary: IMAP / SMTP: Force user deconnection
Key: JAMES-4090
URL: https://issues.apache.org/jira/browse/JAMES-4090
Project: James Server
Issue Type: New Feature
Reporter: Benoit Tellier
## Why?
IMAP / SMTP protocols are connected stateful protocols, where the user
establishes a long lived connection used to serve many requests.
Upon specific events (password change, phone stolen, delegation right removed,
etc...) I might want to abort those connections as soon as possible and force a
specific user to re-login.
As off today, there is no mechanism in place in order to do so.
## Goal
Have a webadmin endpoint allowing iterating on locally established connections,
and close the one belonging to the aforementioned user. This forces the given
user to eventually re-login.
This means we need to manage channel groups for recording channels for the
protocols where we need to support such kind of forced logout.
## Non goals
We target in a first approach only a "local" implementation. If called we only
remove concerned connections of the local node and do NOT attempt to close
connections across the cluster. This means the endpoint needs to be called ON
EACH James server node.
Supporting disconnects in a distributed technologies would mean implementing a
broadcast on top of a distributed queue.
It is also a non goal (for now!) to automatically trigger this disconnect when :
- user changes password
- user removes a delegation
## complementary work
JMAP websocket / event source shall also be impacted by this logout.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
