Hi. We use LDAP posix scheme where each user is given it's own primary group of the same name. There are also mail aliases in LDAP.
SOGo is setup with two LDAP user sources, one for users (&(objectclass=gosaMailAccount)(uid=*)), and one for mail aliases (&(objectclass=posixgroup)(mail=*)). That work great. Sharing of calendars and address books for mail groups are working is expected. But, If I want to share calendar or address book for specific user, I search for it, SOGo finds it and shows as a *user* which is Ok, I click add and close both windows. Then if I open permission window again - the user is shown as *group*. In the database this acl is written as "@user" which means group. I've looked what ldap queries are made on each step and found: - when I look for user the are two queries, one is looking for group (ANDed with search filter for groups) and second looking for user (ANDed with search filter for users. This is how it should work. - When I found user and click to add it SOGo "forgets" that she already know the object is a *user* and makes two (or one) more queries like this: - first: (cn=user) - second: (uid=user) Note there is NO filter ANDed. In my case it finds primary group "user" for user "user". -- [email protected] https://inverse.ca/sogo/lists
