global::spf
Implementation of the Sender Policy Framework (SPF), described by RFC 4408. (https://www.ietf.org/rfc/rfc4408.txt)
fn check
fn check(header: String) -> Status
fn check(header: String, policy: String) -> Status
details
Check spf record following the Sender Policy Framework (RFC 7208). A wrapper with the policy set to “strict” by default. see https://datatracker.ietf.org/doc/html/rfc7208
Args
header- “spf” | “auth” | “both” | “none”
Return
deny(code550_7_23 | code550_7_24)- an error occurred during lookup. (returned even when a softfail is received using the “strict” policy)next()- the operation succeeded.
Effective smtp stage
rcpt and onwards.
Errors
- The
headerargument is not valid.
Note
spf::check only checks for the sender’s identity, not the helo value.
Examples
#{
mail: [
rule "check spf relay" || spf::check(allowed_hosts),
]
}
#{
mail: [
// if this check succeed, it wil return `next`.
// if it fails, it might return `deny` with a custom code
// (X.7.24 or X.7.25 for example)
//
// if you want to use the return status, just put the spf::check
// function on the last line of your rule.
rule "check spf 1" || {
log("debug", `running sender policy framework on ${ctx::mail_from()} identity ...`);
spf::check("spf", "soft")
},
// policy is set to "strict" by default.
rule "check spf 2" || spf::check("both"),
],
}
fn check_raw
fn check_raw() -> Map
details
WARNING: Low level API, use spf::check instead.
Check spf record following the Sender Policy Framework (RFC 7208). see https://datatracker.ietf.org/doc/html/rfc7208
Return
map- the result of the spf check, contains theresult,mechanismandproblemkeys.
Effective smtp stage
rcpt and onwards.
Note
spf::check only checks for the sender’s identity, not the helo value.
Examples
#{
mail: [
rule "check spf relay" || {
const spf = spf::check_raw();
log("info", `spf results: ${spf.result}, mechanism: ${spf.mechanism}, problem: ${spf.problem}`)
},
]
}