Univention Bugzilla – Bug 53955
Wrong access-permissions for shared imap-folders
Last modified: 2023-08-25 18:41:14 CEST
When setting access-permissions in UMC (Domain -> OX Mail -> Add -> OX-Mail: IMAP-Ordner) these permissions are set wrong: In UCS respectively the rights for the users oxadmin / write / attach / send / and read set. -> root@example:/var/spool/dovecot/public/example.com/sharedfolder/.INBOX# cat dovecot-acl user=attach@example.com ilprws user=read@example.com lrws user=oxadmin@example.com akxeilprwts user=write@example.com eilprwts user=sent@example.com lprws If a user is assigned the "Read" right in the UCS, it is displayed in the OX app with "Reviewer" instead of "Viewer". likewise with "Send" and with "Attach". For "Write" the assignment is with "Author". For "All" the assignment is "Administrator". If you set the appropriate rights in the OX you get the following: root@example:/var/spool/dovecot/public/example.com/sharedfolder/.INBOX# cat dovecot-acl user=attach@example.com lprws user=read@example.com lprs user=oxadmin@example.com akxeilprwts user=write@example.com kxeilprwts user=sent@example.com lprws
Yes: UCS and OX do not use the same access permission combinations. But what is the exact _problem_ for the customer?
(In reply to Daniel Tröder from comment #1) > Yes: UCS and OX do not use the same access permission combinations. The customer expected the setting of permissions in Univention to be identical to those in OX. Specifically, when setting the "read" permission, they expect it to be mapped to "Viewer" and not "Reviewer". I also don't see any explainable reason why we act differently here, especially seen on this permission. > But what is the exact _problem_ for the customer? The customer's exact problem is that setting permissions in UCS does not end up matching the permissions set in OX.