scripte/archivmail
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(PROJ-51): retain_until_source nicht für Endbenutzer, WARN-Status in CLI

Browse Source 
- search_handlers.go: retain_until_source wird nur noch an Rollen != user
  ausgegeben, um interne Archivierungsregel-IDs nicht an normale
  Endbenutzer zu exponieren
- cmd_status.go: archivmail status zeigt [WARN] statt [OK] wenn Detail
  mit "WARNUNG" beginnt (z.B. PROJ-51 Retention-Check); Exit-Code/r.OK
  bleibt unverändert

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
sysops
2026-06-13 21:05:07 +02:00
parent 507dee6431
commit 7ac0391205
2 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
internal/api/search_handlers.go
+3 -1
View File
@@ -326,13 +326,15 @@ func (s *Server) handleGetMail(w http.ResponseWriter, r *http.Request) {
}
// PROJ-51: retention lock + its source for auditor traceability.
// The source (e.g. "rule:<id>") exposes internal archiving-rule IDs and is
// therefore only included for roles that may manage/audit those rules.
var retainUntil interface{} = nil
var retainSource interface{} = nil
if until, source, rerr := s.store.GetRetentionInfo(r.Context(), id); rerr == nil {
if until != nil {
retainUntil = until.UTC().Format(time.RFC3339)
}
if source != "" {
if source != "" && sess.Role != userstore.RoleUser {
retainSource = source
}
}