https://github.com/Feuerhamster/mailform

The lightweight self-hosted email service for contact forms and more!
https://github.com/Feuerhamster/mailform

api email email-relay self-hosted smtp

Last synced: 2 days ago
JSON representation

The lightweight self-hosted email service for contact forms and more!

• Host: GitHub
• URL: https://github.com/Feuerhamster/mailform
• Owner: Feuerhamster
• License: apache-2.0
• Created: 2021-06-08T16:41:17.000Z (over 3 years ago)
• Default Branch: master
• Last Pushed: 2024-03-04T19:40:12.000Z (8 months ago)
• Last Synced: 2024-03-04T21:01:31.350Z (8 months ago)
• Topics: api, email, email-relay, self-hosted, smtp
• Language: TypeScript
• Homepage:
• Size: 87.9 KB
• Stars: 100
• Watchers: 4
• Forks: 9
• Open Issues: 2
• Metadata Files:
  • Readme: README.md
  • License: license.txt

Awesome Lists containing this project

README

        
# 📨 MailForm

> The lightweight email service for contact forms and more!

This is basically a minimal self-hosted open source alternative to [Formspree](https://formspree.io/) and [SendGrid](https://sendgrid.com/).

Unlike other mail services (that often gives you an API key for backends), this self-hosted mail service is designed to be accessed directly from a frontend, but also offers you the option to use it as a mail service with configurable API keys.

### Features

- Access via API or HTML form with redirects

- Configurable CORS and Origin restriction

- ReCaptcha and hCaptcha support

- Custom rate limits for every target

- Optional API keys

### Planned features

- [ ] Email Templates

- [x] File Uploads for attachments

- [x] ReCaptcha and hCaptcha support

### Used frameworks & libraries

- [Express](https://expressjs.com/)

- [Typescript](https://www.typescriptlang.org/)

- [Nodemailer](https://nodemailer.com/about/)

- [Validate.js](https://validatejs.org/)

- [rate-limiter-flexible](https://www.npmjs.com/package/rate-limiter-flexible)

- [axios](https://github.com/axios/axios)

## 💽 Installation

### Docker

```shell

git clone https://github.com/Feuerhamster/mailform.git

cd mailform

docker build -t Feuerhamster/mailform .

docker run Feuerhamster/mailform

  -e PORT=3000

  -e PROXY=true

  -v /your/custom/path /app/targets

```

### Manually

*Requires NodeJS 14 or higher*

```shell

git clone https://github.com/Feuerhamster/mailform.git

cd mailform

npm install

npm run build

npm run start

```

## ⚙️Configuration

### Application

MailForm can be configured using environment variables.

**Environment variables:**

- `PORT` The port on which the application starts. If not provided, a random port will be selected.

- `TARGETS_DIR` Path to the directory with your target files. Default is `/targets` of the project root.

- `PROXY` A boolean that enables the "trust proxy" option of Express. **Enable this if you're using MailForm behind a reverse proxy like NGINX!** Default value is false.

### Targets

Targets are your different endpoints each with its own rate limits and smtp provider.

They are JSON files placed in the `/targets` directory. 

**Example target:**

```json

{

    "smtp": "smtps://username:[email protected]",

    "origin": "my-website.com",

    "recipients": ["[email protected]"],

    "rateLimit": {

        "timespan": 300,

        "requests": 1

    },

    "captcha": {

        "provider": "hcaptcha",

        "secret": "xxx"

    }

}

```

**Available fields:**

- `smtp` *required* | A valid SMTP(S) url.

- `origin` *optional* | A HTTP origin that is used for CORS and to restrict access. Default is * if not set.

- `recipients` *required* | An array of email addresses which should receive the email.

- `from` *optional* | The "from" field of an email. This is used as fallback if no "from" is provided in the request.

- `subjectPrefix` *optional* | A target-wide prefix for the email subject.

- `key` *optional* | A string used as API key if you want to restrict access to this target.

- `redirect` *optional*:

  - `success` *optional*: A valid relative or absolute URL to redirect the user if the mail was sent successful.

  - `error` *optional*: A valid relative or absolute URL to redirect the user if the mail can't be sent due to an error.

- `rateLimit` *required*:

    - `timespan` *required* | Timespan (in seconds) for the rate limiter to reset.

    - `requests` *required* | Allowed amount of requests in the given timespan.

- `captcha` *optional*:

  - `provider` *required if captcha* | The captcha provider ("recaptcha" or "hcaptcha").

  - `secret` *required if captcha* | Secret key for your captcha.

For the exact validations of the fields please see here: [target.ts](/src/models/target.ts)

## 📫 Usage

### Fields

Whether as formular data or json, the fields are the same.

- `from` *optional* | The email address of the sender. If this filed is not set, the "from" field of your target will be used.

- `firstName` *optional* | A classic first name filed which will be attached to the "from" field of the email.

- `lastName` *optional* | A classic last name filed which will be attached to the "from" field of the email.

- `subjectPrefix` *optional* | A Prefix for the email subject.

- `subject` *required* | The email subject.

- `body` *required* | The email body (supports HTML).

  

- `g-recaptcha-response` *only required if target use captcha* | Field for ReCaptcha response.

- `h-captcha-response` *only required if target use captcha* | Field for hCaptcha response.

For the exact validations of the fields please see here: [posts.ts](/src/models/post.ts)

**Important info:** If a redirect is configured for your target, it will always return the redirect, even if you make an API call.

If no redirect is set, http status codes will be returned.

### Captchas

MailForm supports both [ReCaptcha](https://www.google.com/recaptcha/) and [hCaptcha](https://www.hcaptcha.com/).

To use captchas, you have to configure it in your target.

On a request, the corresponding field (`g-recaptcha-response` for ReCaptcha or `h-captcha-response` for hCaptcha) have to be filled for validation.

If you use the captcha widget in a form, this will happen automatically.

If you use an API request, you have to fill it manually.

### HTML Form

**Example html form:**

```html

    

    

    

    

    

    


    


```

To work properly, you may want to configure a redirect in the target.

### API

Simply make a request to `/:target` (replace with your target's file name).

If you have set an API key, add the HTTP Authorization header with type `Bearer` and then the key.

Make sure to also use the right origin (if not set automatically because the request is from a backend).

> ⚠ Since the file upload feature got added, there is an Issue with `application/json`. Please use multipart form or form urlencoded for API requests. I am working on a rewrite where this gets fixed.

**Example request:** 

```http request

POST https://mailform.yourserver.com/your-target-file-name

Origin: your-configured-origin.com

Content-Type: application/json

Authorization: Bearer your-optional-api-key

{

  "from": "[email protected]",

  "subject": "your subect",

  "body": "your message",

}

```

**Possible status codes:**

- `200` Email was successfully sent.

- `401` Authentication failed: API key not present or wrong.

- `403` Forbidden because of wrong origin header.

- `404` Target not found.

- `500` Sending the email failed.

## 👋 Contribution

Feel free to create issues and pull requests if you want!

Please keep up with the code style and discuss new features beforehand with the project owner.