[Dovecot] Shared mailboxes unix permissions
Hello Timo,
I'm running dovecot-1.2.11/Maildir and plan to migrate to single UID mailboxes some day, but for now, I've got "system" users and I'm testing permissions handling in order to set up shared mailboxes.
The private namespace mailboxes location is
location = maildir:/courriel/boites/%u:CONTROL=/courriel/meta/%u:INDEX=/var/dovecot-test/indexes/%1u/%u
I've
. created a 'doveshared' unix group . added 'mail_access_groups = doveshared' . chmod/chgrp the maildir and control dirs like this :
drwxrws--- 7 doveimap doveshared 4096 Mar 31 18:47 /courriel/boites/doveimap
drwxrws--- 5 doveimap doveshared 4096 Mar 31 18:47 /courriel/meta/doveimap[which were empty]
. added 'acl_shared_dict = file:/var/dovecot-test/dict/shared-mailboxes' with
drwxrwxs-- 2 root doveshared 512 Mar 31 18:44 /var/dovecot-test/dict[which were empty]
Everything gets created with the permission I was expecting, except :
-rw------- 1 doveimap doveshared 8 Mar 31 18:47 /courriel/meta/doveimap/dovecot-uidvalidity -rw------- 1 doveimap doveshared 0 Mar 31 18:44 /courriel/meta/doveimap/dovecot-uidvalidity.4bb37be4
and
-rw------- 1 doveimap doveshared 0 Mar 31 18:44 /var/dovecot-test/dict/shared-mailboxes
I can't see the explanation in
http://wiki.dovecot.org/SharedMailboxes/Permissions
and the 'dovecot-shared' file doesn't help (besides, my understanding is that in 1.2x, it's for backward compatibility reason).
Any idea ?
Thanks
-- Thomas Hummel | Institut Pasteur hummel@pasteur.fr | Pôle informatique - systèmes et réseau
On Wed, Mar 31, 2010 at 07:40:29PM +0200, Thomas Hummel wrote:
Hello Timo,
I'm running dovecot-1.2.11/Maildir and plan to migrate to single UID mailboxes some day, but for now, I've got "system" users and I'm testing permissions handling in order to set up shared mailboxes.
The private namespace mailboxes location is
location = maildir:/courriel/boites/%u:CONTROL=/courriel/meta/%u:INDEX=/var/dovecot-test/indexes/%1u/%u
I've
. created a 'doveshared' unix group . added 'mail_access_groups = doveshared' . chmod/chgrp the maildir and control dirs like this :
drwxrws--- 7 doveimap doveshared 4096 Mar 31 18:47 /courriel/boites/doveimap drwxrws--- 5 doveimap doveshared 4096 Mar 31 18:47 /courriel/meta/doveimap[which were empty]
. added 'acl_shared_dict = file:/var/dovecot-test/dict/shared-mailboxes' with
drwxrwxs-- 2 root doveshared 512 Mar 31 18:44 /var/dovecot-test/dict[which were empty]
Everything gets created with the permission I was expecting, except :
-rw------- 1 doveimap doveshared 8 Mar 31 18:47 /courriel/meta/doveimap/dovecot-uidvalidity -rw------- 1 doveimap doveshared 0 Mar 31 18:44 /courriel/meta/doveimap/dovecot-uidvalidity.4bb37be4
and
-rw------- 1 doveimap doveshared 0 Mar 31 18:44 /var/dovecot-test/dict/shared-mailboxes
I can't see the explanation in
http://wiki.dovecot.org/SharedMailboxes/Permissions
and the 'dovecot-shared' file doesn't help (besides, my understanding is that in 1.2x, it's for backward compatibility reason).
Any idea ?
Timo ?
-- Thomas Hummel | Institut Pasteur hummel@pasteur.fr | Pôle informatique - systèmes et réseau
On Fri, Apr 09, 2010 at 11:17:26AM +0200, Thomas Hummel wrote:
and the 'dovecot-shared' file doesn't help (besides, my understanding is that in 1.2x, it's for backward compatibility reason).
Which makes me wonder : does the dovecot-shared file still control, with 1.2x/Maildir/shared namespaces/ where the flags are stored (in other words, can we have shared-mailboxes with private \Seen flags for instance) ?
-- Thomas Hummel | Institut Pasteur hummel@pasteur.fr | Pôle informatique - systèmes et réseau
On Wed, 2010-03-31 at 19:40 +0200, Thomas Hummel wrote:
Everything gets created with the permission I was expecting, except :
-rw------- 1 doveimap doveshared 8 Mar 31 18:47 /courriel/meta/doveimap/dovecot-uidvalidity -rw------- 1 doveimap doveshared 0 Mar 31 18:44 /courriel/meta/doveimap/dovecot-uidvalidity.4bb37be4
This has been fixed in v2.0. But they're not all that important, so you can probably just ignore them.
-rw------- 1 doveimap doveshared 0 Mar 31 18:44 /var/dovecot-test/dict/shared-mailboxes
This file is created only once. You can change its permissions and they're preserved afterward. But yeah, its initial permissions should be taken from parent directory. Fixed in v2.0: http://hg.dovecot.org/dovecot-2.0/rev/b3947e64546a
participants (2)
-
Thomas Hummel
-
Timo Sirainen