Open chibenwa opened 1 month ago
After discussions with @quantranhong1999 and @guimard we think that simpler alternatives based on a mailet querying the LDAP exists and are likely to be more straightforward.
Hence I move this ticket back into backlog and will open an alternative one.
What
GIVEN a group all@linagora.com
I want to restrict who can access that group.
CF https://james.staged.apache.org/james-project/3.9.0/servers/distributed/operate/webadmin.html#_address_group
We will define in Twake Mail an API for enabling and defining such an Access control.
How
This is a Twake mail extention enabled via module chooser. It is comprised of :
SenderControlRepository
Storage API
Provide a Cassandra implementation. PGSQL implementation will be done later.
Webadmin API
Mailet
Given a mail from for each recipient load the list of allowed senders and for each one of these recipients validate that the actual sender is in the allowed list.
If the sender is not allowed the mail needs to be split:
rejected-sender
processor.Module chooser
In
extensions.property
:ETA
Should take around 5 days of development, can polish later.