Cyrus IMAPd, auxprop and canon_user plugins?

Dilyan Palauzov Dilyan.Palauzov at
Sat Sep 30 00:31:17 EDT 2006

Hello Torsten,

	Why not forward the mails for xy12345 to a mailbox with a corresponding 
e-mail (call it user12345)? The idea is, when people authenticate with 
the user name user12345, to access a mailbox called user12345.

	First use cyradm to create a mailbox user12345, then

1. you have both /var/spool/imap/user/xy12345 and 
/var/spool/imap/user/user12345 . Delete the latter and create a symlink 
in /var/spool/imap/user/ user12345 -> xy12345 . In this way the users 
can authenticate with their user12345 data, access the mailbox 
user12345, but this will be in fact xy12345 .
N.B. When deleting a user first remove the symlink, then create 
(manually) /var/spool/imap/user12345, and copy to it the content of a 
newly created mailbox, then you can delete both mailboxes over cyradm ;

2. make the MTA's alias file to forward the mails for xy12345 to user12345 ;

3. The 2. option is not always possible, e.g. I cannot force sendmail to 
forward mails to mailboxes containing spaces. You can create a sieve 
script for xy12345 using by default, keeping the xy12345 mailbox always 
	require "fileinto"
	fileinto user.user12345

or	require "redirect"
	redirect user12345
and so on, depending on the availability of user's sieve files.

	As regarding the authentication, you can use
	sasl_pwcheck_method: saslauthd
	run saslauthd -a pam
and then configure the access in /etc/pam.d/imap over pam (that's what I 


Torsten Schlabach wrote:
> Hi!
> I am not really sure how to ask the question the right way, but let me
> start somewhere:
> I understand that an auxprop plugin retrieves a number of attributes
> from a backend. One of that attributed typically is a userPassword
> string IIUC.
> What other attributes does Cyrus IMAPd ask off an auxprop plugin it uses?
> Is there anything like a "mailbox name" or "authzId" attribute for
> example which is beeing retrieved through the auxprop plugin?
> We run a setup that does not have virtual domains, but we use mailbox
> names such as xy12345 and we map e-mail addresses to mailboxes.
> No users want to login using their email address as a login name, not
> their xy12345 name.
> I think there might be two ways of achieving that:
> a) By putting a "mailbox name" attribute in the backend database, if
> IMAPd would care or
> b) By writing something to the authzid attribute in the auxprop plugin.
> In case of doing the latter, would the auxprop plugin eliminate the need
> for a canon_user plugin?
> Do I suffer from any misconception here?
> Regards,
> Torsten

More information about the Cyrus-devel mailing list