import (
	dkim "github.com/toorop/go-dkim"
)

func main(){
	// email is the email to sign (byte slice)
	// privateKey the private key (pem encoded, byte slice )	
	options := dkim.NewSigOptions()
	options.PrivateKey = privateKey
	options.Domain = "mydomain.tld"
	options.Selector = "myselector"
	options.SignatureExpireIn = 3600
	options.BodyLength = 50
	options.Headers = []string{"from", "date", "mime-version", "received", "received"}
	options.AddSignatureTimestamp = true
	options.Canonicalization = "relaxed/relaxed"
	err := dkim.Sign(&email, options)
	// handle err..

	// And... that's it, 'email' is signed ! Amazing© !!!
}

Verify

import (
	dkim "github.com/toorop/go-dkim"
)

func main(){
	// email is the email to verify (byte slice)
	status, err := Verify(&email)
	// handle status, err (see godoc for status)
}

Todo

handle z tag (copied header fields used for diagnostic use)

# Functions

DNSOptLookupTXT

DNSOptLookupTXT sets the function to use to lookup TXT records.

GetHeader

GetHeader return a new DKIMHeader by parsing an email Note: according to RFC 6376 an email can have multiple DKIM Header in this case we return the last inserted or the last with d== mail from.

NewPubKeyResp

NewPubKeyResp parses DKIM record (usually from DNS).

NewPubKeyRespFromDNS

NewPubKeyRespFromDNS retrieves the TXT record from DNS based on the specified domain and selector and parses it.

NewSigOptions

NewSigOptions returns new sigoption with some defaults value.

Sign

Sign signs an email.

Verify

Verify verifies an email an return state: SUCCESS or PERMFAIL or TEMPFAIL, TESTINGSUCCESS, TESTINGPERMFAIL TESTINGTEMPFAIL or NOTSIGNED error: if an error occurs during verification.

# Constants

CRLF

No description provided by the author

FWS

No description provided by the author

MaxHeaderLineLength

No description provided by the author

NOTSIGNED

No description provided by the author

PERMFAIL

No description provided by the author

SUCCESS

No description provided by the author

TAB

No description provided by the author

TEMPFAIL

No description provided by the author

TESTINGPERMFAIL

No description provided by the author

TESTINGSUCCESS

No description provided by the author

TESTINGTEMPFAIL

No description provided by the author

# Variables

ErrBadDKimTagLBodyTooShort

ErrBadDKimTagLBodyTooShort bad l tag.

ErrBadMailFormat

ErrBadMailFormat unable to parse mail.

ErrBadMailFormatHeaders

ErrBadMailFormatHeaders bad headers format (not DKIM Header).

ErrCandNotParsePrivateKey

ErrCandNotParsePrivateKey when unable to parse private key.

ErrDkimHeaderBadFormat

ErrDkimHeaderBadFormat when errors found in DKIM header.

ErrDkimHeaderBTagNotFound

ErrDkimHeaderBTagNotFound when there's no b tag.

ErrDkimHeaderDomainMismatch

ErrDkimHeaderDomainMismatch if i tag is not a sub domain of d tag.

ErrDkimHeaderMissingRequiredTag

ErrDkimHeaderMissingRequiredTag when a required tag is missing.

ErrDkimHeaderNoFromInHTag

ErrDkimHeaderNoFromInHTag when from is missing in h tag.

ErrDkimHeaderNotFound

ErrDkimHeaderNotFound when there's no DKIM-Signature header in an email we have to verify.

ErrDkimVersionNotsupported

ErrDkimVersionNotsupported version not supported.

ErrSignBadAlgo

ErrSignBadAlgo Bad algorithm.

ErrSignBadCanonicalization

ErrSignBadCanonicalization If bad Canonicalization parameter.

ErrSignDomainRequired

ErrSignDomainRequired when there is no domain defined in config.

ErrSignHeaderShouldContainsFrom

ErrSignHeaderShouldContainsFrom If Headers is specified it should at least contain 'from'.

ErrSignPrivateKeyRequired

ErrSignPrivateKeyRequired when there not private key in config.

ErrSignSelectorRequired

ErrSignSelectorRequired when there is no Selcteir defined in config.

ErrVerifyBadKey

ErrVerifyBadKey when we can't parse pubkey.

ErrVerifyBadKeyType

ErrVerifyBadKeyType bad type for pub key (only rsa is accepted).

ErrVerifyBodyHash

ErrVerifyBodyHash when body hash doesn't verify.

ErrVerifyInappropriateHashAlgo

ErrVerifyInappropriateHashAlgo when h tag in pub key doesn't contain hash algo from a tag of DKIM header.

ErrVerifyKeyUnavailable

ErrVerifyKeyUnavailable when service (dns) is anavailable.

ErrVerifyNoKey

ErrVerifyNoKey when no key is found on DNS record.

ErrVerifyNoKeyForSignature

ErrVerifyNoKeyForSignature no key.

ErrVerifyRevokedKey

ErrVerifyRevokedKey key(s) for this selector is revoked (p is empty).

ErrVerifySignatureHasExpired

ErrVerifySignatureHasExpired when signature has expired.

ErrVerifyTagVMustBeTheFirst

ErrVerifyTagVMustBeTheFirst if present the v tag must be the firts in the record.

ErrVerifyVersionMusBeDkim1

ErrVerifyVersionMusBeDkim1 if présent flag v (version) must be DKIM1.

# Structs

DKIMHeader

No description provided by the author

DNSOptions

DNSOptions holds settings for looking up DNS records.

PubKeyRep

PubKeyRep represents a parsed version of public key record.

SigOptions

sigOptions represents signing options.

# Interfaces

DNSOpt

DNSOpt represents an optional setting for looking up DNS records.