Return-Path: Delivered-To: apmail-incubator-esme-dev-archive@minotaur.apache.org Received: (qmail 54803 invoked from network); 1 Oct 2009 07:39:14 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 1 Oct 2009 07:39:14 -0000 Received: (qmail 8491 invoked by uid 500); 1 Oct 2009 07:39:14 -0000 Delivered-To: apmail-incubator-esme-dev-archive@incubator.apache.org Received: (qmail 8442 invoked by uid 500); 1 Oct 2009 07:39:14 -0000 Mailing-List: contact esme-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: esme-dev@incubator.apache.org Delivered-To: mailing list esme-dev@incubator.apache.org Received: (qmail 8432 invoked by uid 99); 1 Oct 2009 07:39:14 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Oct 2009 07:39:14 +0000 X-ASF-Spam-Status: No, hits=2.2 required=10.0 tests=HTML_MESSAGE,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of benewu@gmail.com designates 209.85.211.197 as permitted sender) Received: from [209.85.211.197] (HELO mail-yw0-f197.google.com) (209.85.211.197) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 01 Oct 2009 07:39:04 +0000 Received: by ywh35 with SMTP id 35so7417009ywh.13 for ; Thu, 01 Oct 2009 00:37:43 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:content-type; bh=zyOWOLrv6s9Um+D5TUw9+SPL5d4sLwr4r/7dhbPD2Sk=; b=NnvzU5QA3Gjj66LXoDkvBTxoManrk3Vdi3dMb0HJbQGojNTVlDoIc81jorCpE4aZe7 F6r/TaKV7K6LRrPbnh1ynKJHSxxit752uW2j6x4wLk+JRhOvjpZmyp3jWjSbuSKGgzW0 XFQdx5fgs+qqOhsjNEa4P1kRSkn4d6LewOpe4= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=ppK6tWnVE77DaS5Vc9kJG7kHKJaWXzrOIiF+0G8iq083DMS1x1nJydESNGvm+TA2SS lRtSnmgZGu4+0yxmC6OP6C4z3KEf3duV7cUa6tW/z4bDx40wAqvQtGH9A9qEc69fH10g zpGmLWk/YSCHDv67tLMLQkLTBEWEemjkEftp0= MIME-Version: 1.0 Received: by 10.101.126.10 with SMTP id d10mr651152ann.147.1254382663335; Thu, 01 Oct 2009 00:37:43 -0700 (PDT) In-Reply-To: References: <4db64d890909302023n56114990s2e6197554e63a0ed@mail.gmail.com> Date: Thu, 1 Oct 2009 15:37:43 +0800 Message-ID: <4db64d890910010037o15c7d7du785deb893852e15c@mail.gmail.com> Subject: Re: Deleting user from access pool From: Xuefeng Wu To: esme-dev@incubator.apache.org Content-Type: multipart/alternative; boundary=001636ed6b5d0f81700474dab903 X-Virus-Checked: Checked by ClamAV on apache.org --001636ed6b5d0f81700474dab903 Content-Type: text/plain; charset=ISO-8859-1 If user could not see any message from a pool which he/she leave, even his/her message, What will happen? In a company, If some one leave a team/project/department, he/she may be could not read any document even he/she write. The messages are also some resource for a team/project/department, I think it's fine that do not allow users can not read any messages in the pool. Think about jira, if you create a issue(task, defects) and the permission said only team members. And if you leave the team, you can not read the issue anymore. On Thu, Oct 1, 2009 at 12:51 PM, Richard Hirsch wrote: > Regarding the first part (deleting users from a pool) - here are my ideas > * We have no idea whether he has viewed the messages or not. > * Of course, he should be able to continue see his own messages even > if they were sent to a pool to which he no longer belongs. > * The user's messages remain in the pool whether or not the user is in the > pool. > * Since the user can no longer view the pool, he can only view his own > messages but not those of other users. > * Question: Should we delete all old messages from the pool to which > the user was a member or should we just prevent new messages from the > now-forbidden pool going to the user. I prefer the second choice. > > Thoughts? > > To the second point regarding the deletion of pools. I think this > needs more thought. We can't / shouldn't delete messages from closed > pools. This would be a performance and programming nightmare. > > D. > > On Thu, Oct 1, 2009 at 5:23 AM, Xuefeng Wu wrote: > > There're two features:1. delete users from pool; > > 2. delete pool. > > > > There're some argue and my opinion: > > *when delete users from pool.* > > We could withdraw all messages from the user, whatever read or unread. > > > > *when delete pool. ESME-68* > > withdraw all messages > > can create new pool which have the same name as deleted > > > > > > > > On Wed, Sep 30, 2009 at 3:59 PM, Vassil Dichev > wrote: > > > >> > Should we allow for a user to be deleted from an access pool? > >> > > >> > If yes what happens? Does he no longer have access to the messages in > >> > the pool - irregardless of whether he wrote them or not? > >> > >> It should be possible to delete a user, yes. I think it has been > >> discussed or specified in the requirements pdf that once a message is > >> in the user's mailbox, it stays there, so that's how it works now. At > >> any rate, deleting a message from the mailbox, which the user may have > >> already seen doesn't offer any more security. A user also doesn't see > >> messages in his/her mailbox, which were sent before he was added to > >> the pool. > >> > >> The interesting part is what happens if a pool has been removed and > >> whether it should be possible at all. This could pose a security > >> problem if an impostor creates a pool with the same name (similar to > >> what might happen with a deleted user account) > >> > > > > > > > > -- > > Global R&D Center,Shanghai China,Carestream Health, Inc. > > Tel:(86-21)3852 6101 > > > -- Global R&D Center,Shanghai China,Carestream Health, Inc. Tel:(86-21)3852 6101 --001636ed6b5d0f81700474dab903--