Skip to content
EmBoux

Changelog

v5.0.0 (March 2026)

Section titled “v5.0.0 (March 2026)”

Wildcard Domains & DNS Verification

  • PUT /domains/{name}/parent — Set parent domain and wildcard mode (master only)
  • GET /domains/{name}/dns-check — Verify MX, SPF, SES TXT, and DKIM CNAME records
  • Auto-detection of subdomains: creating sub.parent.com auto-links to wildcard parent
  • Subdomains inherit SES verification, outbound tier, and enforcement from parent
  • Policy Daemon checks parent domain SES verification for subdomain inheritance

Security Hardening

  • Client tokens restricted from modifying outbound_tier, outbound_enforcement, outbound_status
  • All privileged endpoints audited: retention, transfer, ses-verify, parent — master only

SES Automation

  • Auto SES verification on domain creation (skipped for subdomains of verified parents)
  • Cron polling SES status every 2 hours with notification on verification success

v4.0.0 (March 2026)

Section titled “v4.0.0 (March 2026)”

Outbound Email Control

  • GET/PUT /domains/{name}/outbound — Outbound quota configuration (tier, limits, enforcement)
  • POST /domains/{name}/outbound/increment — Atomic counter increment for Policy Daemon
  • POST /webhooks/ses — SES bounce/complaint webhook with auto-guillotine at 3% bounce rate
  • POST /outbound/reset-daily — Daily counter reset (cron)
  • POST /outbound/reset-monthly — Monthly freeze + reset (cron)

SES Domain Verification

  • POST /domains/{name}/ses-verify — Initiate SES VerifyDomainIdentity + VerifyDomainDkim
  • GET /domains/{name}/ses-status — Check SES verification status, auto-update on success
  • Policy Daemon blocks outbound for unverified domains
  • Portal displays DKIM CNAME and verification TXT records

v3.0.0 (March 2026)

Section titled “v3.0.0 (March 2026)”

Suspension & Lifecycle Management

  • PUT /domains/{name}/suspend — Freeze mail delivery without data loss
  • PUT /domains/{name}/activate — Restore suspended domains

Storage & Quota Enforcement

  • GET/PUT /users/{email}/quota — Per-mailbox storage limits
  • GET/PUT /domains/{name}/retention — Email retention policy per domain
  • GET/PUT /domains/{name}/transfer — Monthly transfer limits per domain

Automation

  • Daily retention cron: automated purge of expired emails
  • Multiple API keys per partner with optional expiration dates

v2.0.0 (March 2026)

Section titled “v2.0.0 (March 2026)”

Multi-Tenant Architecture

  • Client API keys with per-partner scoping
  • Quota enforcement: domains, mailboxes per domain, aliases per mailbox
  • Tenant isolation — each key only sees its own resources
  • API key management endpoints (CRUD + usage)

Core CRUD

  • POST/GET/DELETE /domains/ — Domain management
  • POST/GET/PUT/DELETE /users/ — Mailbox management with secure password hashing
  • POST/GET/DELETE /aliases/ — Alias and catch-all management
  • GET /api-keys/{token}/usage — Delta sync with ?since= parameter

v1.0.0 (February 2026)

Section titled “v1.0.0 (February 2026)”
  • Initial API with domain, mailbox, and alias CRUD
  • Master token authentication
  • Health check endpoint