[midPoint] Feature Request - Email Approval
Kyle Chau
kylechaukccs at gmail.com
Sun Feb 22 19:26:49 CET 2026
Dear Pavol and Arnost,
Thank you very much for the thoughtful feedback and for taking the time
to discuss the proposal internally.
A WIP project <https://github.com/QerKInga/email-approval-agent/tree/main>
has been created for the purpose. While mailbox monitoring and handling
approval responses via the REST API can be cleanly implemented as an
external, modular service, the outbound email-sending part appears more
tightly coupled with the core. Therefore, email encryption and nonce
generation capabilities might not be available in the standalone service,
but rather as add-ons to MidPoint. Happy to discuss possible ways to
incorporate those dependent features into the community project. Thanks
again.
Best Regards,
Kyle
On Mon, Feb 16, 2026 at 10:59 PM Pavol Mederly via midPoint <
midpoint at lists.evolveum.com> wrote:
> Dear Kyle,
>
> Thank you for the detailed proposal. We had an internal discussion about
> it and agreed that email approval is a valuable feature, but we have
> decided not to include it in the midPoint core.
>
> This decision is backed by our effort to minimize security risks and keep
> the core engine lean. Adding mailbox monitoring would introduce external
> dependencies and increase the attack surface.
>
> You could still develop the feature as a standalone application that
> monitors the mailbox and interacts with midPoint via the REST API. This
> modular approach is more secure and the deployment with modern
> containerized environments (Docker/K8s) is straightforward.
>
> If you move forward with this as an independent project, we would be happy
> to list it on our Community Related Projects
> <https://docs.evolveum.com/community/related-projects/> page to give it
> visibility.
>
> Best regards,
>
> --
> Pavol Mederly
> Interim Chief Product Officerevolveum.com
>
> On 02/02/2026 15:35, Kyle Chau via midPoint wrote:
>
> Dear MidPoint team,
>
> I am interested in implementing an email approval feature as my
> individual contribution to the project. Would you please provide some
> insight on whether this suggestion would be accepted as a core feature? The
> implementation, from my understanding, involves the following:
>
> - A sample message template that crafts the email approval content.
> - A new task type for enabling and scheduling the mailbox processing.
>
> I can contribute to the design and development of this feature for the
> next six months.
>
> You may refer to the following for a high-level illustration on the
> proposal. Thank you.
>
> Do let me know if you have any questions.
>
>
> https://github.com/KyleChaukccs/docs/blob/master/midpoint/features/planned/email-approval.adoc
>
>
> Best Regards,
> Kyle
>
> _______________________________________________
> midPoint mailing listmidPoint at lists.evolveum.comhttps://lists.evolveum.com/mailman/listinfo/midpoint
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> https://lists.evolveum.com/mailman/listinfo/midpoint
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20260223/1d94f52d/attachment.htm>
More information about the midPoint
mailing list