IMAP4 Access Control List (ACL) Extension
RFC 4314
Document | Type |
RFC - Proposed Standard
(December 2005; Errata)
Obsoletes RFC 2086
|
|
---|---|---|---|
Author | Alexey Melnikov | ||
Last updated | 2020-01-21 | ||
Stream | IETF | ||
Formats | plain text html pdf htmlized with errata bibtex | ||
Stream | WG state | (None) | |
Document shepherd | No shepherd assigned | ||
IESG | IESG state | RFC 4314 (Proposed Standard) | |
Consensus Boilerplate | Unknown | ||
Telechat date | |||
Responsible AD | Scott Hollenbeck | ||
Send notices to | lisa@osafoundation.org |
Network Working Group A. Melnikov Request for Comments: 4314 Isode Ltd. Obsoletes: 2086 December 2005 Category: Standards Track IMAP4 Access Control List (ACL) Extension Status of this Memo This document specifies an Internet standards track protocol for the Internet community, and requests discussion and suggestions for improvements. Please refer to the current edition of the "Internet Official Protocol Standards" (STD 1) for the standardization state and status of this protocol. Distribution of this memo is unlimited. Copyright Notice Copyright (C) The Internet Society (2005). Abstract The Access Control List (ACL) extension (RFC 2086) of the Internet Message Access Protocol (IMAP) permits mailbox access control lists to be retrieved and manipulated through the IMAP protocol. This document is a revision of RFC 2086. It defines several new access control rights and clarifies which rights are required for different IMAP commands. Melnikov Standards Track [Page 1] RFC 4314 IMAP ACL December 2005 Table of Contents 1. Introduction and Overview .......................................3 1.1. Conventions Used in This Document ..........................3 2. Access Control ..................................................3 2.1. Standard Rights ............................................5 2.1.1. Obsolete Rights .....................................5 2.2. Rights Defined in RFC 2086 .................................8 3. Access control management commands and responses ................8 3.1. SETACL Command .............................................8 3.2. DELETEACL Command ..........................................9 3.3. GETACL Command ............................................10 3.4. LISTRIGHTS Command ........................................10 3.5. MYRIGHTS Command ..........................................11 3.6. ACL Response ..............................................11 3.7. LISTRIGHTS Response .......................................12 3.8. MYRIGHTS Response .........................................12 4. Rights Required to Perform Different IMAP4rev1 Commands ........12 5. Other Considerations ...........................................17 5.1. Additional Requirements and Implementation Notes ..........17 5.1.1. Servers ............................................17 5.1.2. Clients ............................................18 5.2. Mapping of ACL Rights to READ-WRITE and READ-ONLY Response Codes ............................................19 6. Security Considerations ........................................20 7. Formal Syntax ..................................................21 8. IANA Considerations ............................................22 9. Internationalization Considerations ............................22 Appendix A. Changes since RFC 2086 ................................23 Appendix B. Compatibility with RFC 2086 ...........................24 Appendix C. Known Deficiencies ....................................24 Appendix D. Acknowledgements ......................................25 Normative References ..............................................25 Informative References ............................................25 Melnikov Standards Track [Page 2] RFC 4314 IMAP ACL December 2005 1. Introduction and Overview The ACL (Access Control List) extension of the Internet Message Access Protocol [IMAP4] permits mailbox access control lists to be retrieved and manipulated through the IMAP protocol. This document is a revision of RFC 2086 [RFC2086]. It tries to clarify different ambiguities in RFC 2086, in particular, the use of UTF-8 [UTF-8] in access identifiers, which rights are required for different IMAP4 commands, and how READ-WRITE/READ-ONLY response codes are related to ACL. 1.1. Conventions Used in This Document In examples, "C:" and "S:" indicate lines sent by the client and server respectively. In all examples "/" character is used as hierarchy separator. The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in RFC 2119 [KEYWORDS]. The phrase "ACL server" is just a shortcut for saying "IMAP server that supports ACL extension as defined in this document". 2. Access Control The ACL extension is present in any IMAP4 implementation that returns "ACL" as one of the supported capabilities to the CAPABILITY command.Show full document text