Oracle® Mail Administrator's Guide 10g Release 1 (10.1.1) Part Number B14491-03 |
|
|
View PDF |
This appendix discusses Oracle Mail shared folders and includes the following topics:
User folders can be shared with other users, distribution lists, or with everyone in a user's domain using access control lists (ACLs). Oracle Mail supports ACLs defined in RFC 2086.
RFC 2086 defines the following namespaces:
Other user's namespace: A namespace that consists of mailboxes from the personal namespaces of other users.
Shared namespace: A namespace that consists of mailboxes that are intended to be shared among users.
In Oracle Mail, folders within another user's namespaces are referred to as shared folders, and folders within shared namespaces are referred to as public folders.
If a folder is shared with everyone in a domain, it is called a public folder. Otherwise, if the folder is shared with one or more users or distribution lists, it is called a shared folder.
For IMAP, Oracle Mail uses the following prefixes for shared and public folders:
#Shared/
: All shared folders accessible to the user appear under this namespace in the folder listing
#Public/
:All the public folders appear under this namespace in the folder listing
See Also:
Oracle Mail Application Developer's Guide for shared folder information using OJMAAccess control lists (ACLs) are used to share folders with other identifiers in the Oracle Mail system. Oracle Mail identifiers are listed in Table C-1.
Table C-1 Oracle Email Identifiers
Identifier | Description |
---|---|
Users |
Users are explicitly granted permissions to a folder. |
Distribution lists |
A distribution list is granted permission, which implies that all the members of the distribution list have complete rights. If a member is added or removed from a distribution list, the rights are automatically updated. |
Domain |
All the users in the domain have the specified permissions. |
Folders cannot be shared across domains. To share folders within a domain, you must have either domain or system administrator privileges.
Table C-2 lists domain rights that can be granted.
Table C-2 Domain Rights
Domain Right | Description |
---|---|
|
Allows folders to be listed |
|
Allows messages to be read from a folder |
|
Allows |
|
Enables flags other than seen and delete to be stored |
|
Enables messages to be appended or copied into a folder |
|
Enables deleted flags for messages to be stored in a folder or expunge the folder |
|
Enables ACLs to be set and deleted on folders that are owned by other users |
Oracle Mail always grants lookup
rights with other rights. All rights are grouped with lookup
privileges. None of the other rights are tied together.
The following rules apply to folders:
Folders cannot be shared across domains
Folder owners have all rights on their folders
Only owners can rename or delete shared folders
Sub-folders under a shared folder do not inherit any rights
It is possible for multiple identifiers in an ACL to apply to a given user. For example, an ACL can include rights that are granted to a domain and mailing list of which the user is a member. In such cases, a union of rights are granted to the user. If a user is given specific rights, then only those rights at the user level are applicable.
For example, consider a user who is a member of group G1
and list L1
, which have been granted the following rights:
identifier rights ========== ======= G1 li L1 lrs
In this case the user's rights are a union of li
and lrs
, or lrsi
, as derived from membership in group G1
and list L1
, respectively.
User level rights take precedence over other rights. For example, if a user has lr
rights at the user level, then the applicable rights are lr
.
You must have system or domain privileges to create public folders. Public folders are first created in an administrator's private namespace. To make the folders public, you must give rights to the domain identifier.
Once a public folder is created, it can be administered by other administrators without specifying any rights. Public folders must be created with a unique name because they do not have a user name prefix. For example, if administrator A1
creates a public folder called public1
, then administrator A2
cannot create a public folder with the same name.
Public folders count toward the owner's e-mail quota.
Administrators can grant more rights to other identifiers. For example, a user can be granted insert
(i
) rights to add messages to a public folder. This folder appears twice in the user's folder listing: as a public folder and as a shared folder.
Users with domain or system privileges can share a folder with an entire domain.
Sharing folders across an entire domain using an IMAP mail client is done through Oracle Connector for Outlook, as follows:
Create a new folder in the IMAP store and right click it or right click an existing folder you want to share.
Click Properties.
Click the Permissions tab.
Click Add to grant permissions.
Enter anyone
in the name resolution field.
Specify whatever rights you want on the Permissions page.