On 23.5.2011, at 18.38, Ed W wrote: > Note one significant limitation is that the username is in the format > "admin*user" in variable %u.
I don't think this is true. > Also you have Checkpassword script option and you can do anything you > like in that script? Maybe something like that.. I think all of the pieces for this already exist in Dovecot. They just need to be put together in a way that works nicely. ACLs can be given to master user (although there still is no "default ACL" which makes this annoying). The checkpassword can anyway figure out if user X can be allowed to give user Y rights. I think all users then need to be both master users and passdb users.
