[midPoint] Feature Request - Email Approval

Tue Apr 7 08:24:46 CEST 2026

Dear team,

  It has been a while since the last catch-up. Are there any updates at
your end? Thanks a lot.

Best Regards,
Kyle

On Tue, Mar 3, 2026 at 2:20 AM Kyle Chau <kylechaukccs at gmail.com> wrote:

> Dear team,
>
>   Do let me know if there are any updates at your end. Meanwhile, a
> release has been added to the repository
> <https://github.com/QerKInga/email-approval-agent>. Kindly add it to the
> community project page where appropriate. Thank you
>
> Best Regards,
>
> On Mon, Feb 23, 2026 at 2:26 AM Kyle Chau <kylechaukccs at gmail.com> wrote:
>
>> Dear Pavol and Arnost,
>>
>>   Thank you very much for the thoughtful feedback and for taking the time
>> to discuss the proposal internally.
>>
>>   A WIP project
>> <https://github.com/QerKInga/email-approval-agent/tree/main> has been
>> created for the purpose. While mailbox monitoring and handling approval
>> responses via the REST API can be cleanly implemented as an external,
>> modular service, the outbound email-sending part appears more tightly
>> coupled with the core. Therefore, email encryption and nonce generation
>> capabilities might not be available in the standalone service, but rather
>> as add-ons to MidPoint. Happy to discuss possible ways to incorporate those
>> dependent features into the community project. Thanks again.
>>
>> Best Regards,
>> Kyle
>>
>> On Mon, Feb 16, 2026 at 10:59 PM Pavol Mederly via midPoint <
>> midpoint at lists.evolveum.com> wrote:
>>
>>> Dear Kyle,
>>>
>>> Thank you for the detailed proposal. We had an internal discussion about
>>> it and agreed that email approval is a valuable feature, but we have
>>> decided not to include it in the midPoint core.
>>>
>>> This decision is backed by our effort to minimize security risks and
>>> keep the core engine lean. Adding mailbox monitoring would introduce
>>> external dependencies and increase the attack surface.
>>>
>>> You could still develop the feature as a standalone application that
>>> monitors the mailbox and interacts with midPoint via the REST API. This
>>> modular approach is more secure and the deployment with modern
>>> containerized environments (Docker/K8s) is straightforward.
>>>
>>> If you move forward with this as an independent project, we would be
>>> happy to list it on our Community Related Projects
>>> <https://docs.evolveum.com/community/related-projects/> page to give it
>>> visibility.
>>>
>>> Best regards,
>>>
>>> --
>>> Pavol Mederly
>>> Interim Chief Product Officerevolveum.com
>>>
>>> On 02/02/2026 15:35, Kyle Chau via midPoint wrote:
>>>
>>> Dear MidPoint team,
>>>
>>>   I am interested in implementing an email approval feature as my
>>> individual contribution to the project. Would you please provide some
>>> insight on whether this suggestion would be accepted as a core feature? The
>>> implementation, from my understanding, involves the following:
>>>
>>>    - A sample message template that crafts the email approval content.
>>>    - A new task type for enabling and scheduling the mailbox processing.
>>>
>>>   I can contribute to the design and development of this feature for the
>>> next six months.
>>>
>>>   You may refer to the following for a high-level illustration on the
>>> proposal. Thank you.
>>>
>>>   Do let me know if you have any questions.
>>>
>>>
>>> https://github.com/KyleChaukccs/docs/blob/master/midpoint/features/planned/email-approval.adoc
>>>
>>>
>>> Best Regards,
>>> Kyle
>>>
>>> _______________________________________________
>>> midPoint mailing listmidPoint at lists.evolveum.comhttps://lists.evolveum.com/mailman/listinfo/midpoint
>>>
>>> _______________________________________________
>>> midPoint mailing list
>>> midPoint at lists.evolveum.com
>>> https://lists.evolveum.com/mailman/listinfo/midpoint
>>>
>>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20260407/0ae35905/attachment.htm>