Per Jessen:
> I would like to be able to do "soft" or "hard" checks on sasl userid +
> sender domains depending on the sasl userid, i.e.:
>
> if userid=='customer1' then only log warnings on mismatch
> if userid=='customer2' then reject on mismatch
>
> I was thinking of creating two restrictions classes:
>
> soft = warn_if_reject,reject_sender_login_mismatch
> hard = reject_sender_login_mismatch
>
> but I can't find an access table that is indexed by sasl userid.
>
> Is there a way to do this without a policy server?
It would take very little code to add a check_sasluser_access
feature (this would do only exact match - no substring magic such
as parent domain or network subnet). But my own time is very limited.
Wietse
