We use LDAP posix scheme where each user is given it's own primary group
of the same name. There are also mail aliases in LDAP.

SOGo is setup with two LDAP user sources, one for users
(&(objectclass=gosaMailAccount)(uid=)), and one for mail aliases
(&(objectclass=posixgroup)(mail=)). That work great.

Sharing of calendars and address books for mail groups are working is
expected.

But, If I want to share calendar or address book for specific user, I
search for it, SOGo finds it and shows as a user which is Ok, I click
add and close both windows. Then if I open permission window again - the
user is shown as group. In the database this acl is written as "@user"
which means group.

I've looked what ldap queries are made on each step and found:

• when I look for user the are two queries, one is looking for group
  (ANDed with search filter for groups) and second looking for user (ANDed
  with search filter for users. This is how it should work.
• When I found user and click to add it SOGo "forgets" that she already
  know the object is a user and makes two (or one) more queries like
  this:
• first: (cn=user)
• second: (uid=user)

Note there is NO filter ANDed. In my case it finds primary group "user"
for user "user".