Uploaded image for project: 'James Server'
  1. James Server
  2. JAMES-2884 Update JMAP implementation to conform to RFC 8620/8621
  3. JAMES-3367

Add capability mandatory checks regarding jmap core and mail

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Done
    • None
    • 3.6.0
    • None
    • None

    Description

      It seems we are not checking that base mandatory capabilities are present in the request when processing the methods :

      • urn:ietf:params:jmap:core
      • urn:ietf:params:jmap:mail

      We need to make sure we reject requests in our apis missing those (mailbox/get, mailbox/set, vacationresponse/get, vacationresponse/set... even core/echo with core capability?)

      It would be ideal to handle this in a generic fashion: the methods declare which capabilities they need and the API routes ensure these capabilities are there before calling the methods themselves.

      DoD

      • Add integration tests showing that requests with missing mandatory capabilities are being rejected in our existing APIs

      Attachments

        Activity

          People

            Unassigned Unassigned
            rcordier René Cordier
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: