Add new attribute allowed_sender_addresses (#10651)

Added new attribute called "allowed_sender_addresses" to send_email
binding. This allows the binding to be restricted in the possible values
for the sender of emails.

Author: edevil

.changeset/soft-flies-search.md

@@ -0,0 +1,6 @@
+---
+"miniflare": minor
+"wrangler": minor
+---
+
+Added new attribute "allowed_sender_addresses" to send email binding.

packages/miniflare/src/plugins/email/index.ts

@@ -17,6 +17,7 @@ const EmailBindingOptionsSchema = z
 		remoteProxyConnectionString: z
 			.custom<RemoteProxyConnectionString>()
 			.optional(),
+		allowed_sender_addresses: z.array(z.string()).optional(),
 	})
 	.and(
 		z.union([

packages/miniflare/src/workers/email/send_email.worker.ts

@@ -10,6 +10,7 @@ interface SendEmailEnv {
 	[CoreBindings.SERVICE_LOOPBACK]: Fetcher;
 	destination_address: string | undefined;
 	allowed_destination_addresses: string[] | undefined;
+	allowed_sender_addresses: string[] | undefined;
 }
 
 export class SendEmailBinding extends WorkerEntrypoint<SendEmailEnv> {
@@ -28,8 +29,17 @@ export class SendEmailBinding extends WorkerEntrypoint<SendEmailEnv> {
 			throw new Error(`email to ${to} not allowed`);
 		}
 	}
+	private checkSenderAllowed(from: string) {
+		if (
+			this.env.allowed_sender_addresses !== undefined &&
+			!this.env.allowed_sender_addresses.includes(from)
+		) {
+			throw new Error(`email from ${from} not allowed`);
+		}
+	}
 	async send(emailMessage: EmailMessage): Promise<void> {
 		this.checkDestinationAllowed(emailMessage.to);
+		this.checkSenderAllowed(emailMessage.from);
 
 		const rawEmail: ReadableStream<Uint8Array> = emailMessage[RAW_EMAIL];
 

packages/miniflare/test/plugins/email/index.spec.ts

@@ -263,6 +263,96 @@ This is a random email body.
 	t.is(res.status, 200);
 });
 
+test("Multiple allowed senders send_email binding works", async (t) => {
+	const mf = new Miniflare({
+		modules: true,
+		script: SEND_EMAIL_WORKER,
+		email: {
+			send_email: [
+				{
+					name: "SEND_EMAIL",
+					allowed_sender_addresses: [
+						"[email protected]",
+						"[email protected]",
+					],
+				},
+			],
+		},
+		compatibilityDate: "2025-03-17",
+	});
+
+	t.teardown(() => mf.dispose());
+
+	const res = await mf.dispatchFetch(
+		"http://localhost/?" +
+			new URLSearchParams({
+				to: "[email protected]",
+				from: "[email protected]",
+			}).toString(),
+		{
+			body: `To: someone <[email protected]>
+From: someone else <[email protected]>
+Message-ID: <[email protected]>
+MIME-Version: 1.0
+Content-Type: text/plain
+
+This is a random email body.
+`,
+			method: "POST",
+		}
+	);
+
+	t.is(await res.text(), "ok");
+	t.is(res.status, 200);
+});
+
+test("Sending email from a sender not in the allowed list does not work", async (t) => {
+	const mf = new Miniflare({
+		modules: true,
+		script: SEND_EMAIL_WORKER,
+		email: {
+			send_email: [
+				{
+					name: "SEND_EMAIL",
+					allowed_sender_addresses: [
+						"[email protected]",
+						"[email protected]",
+					],
+				},
+			],
+		},
+		compatibilityDate: "2025-03-17",
+	});
+
+	t.teardown(() => mf.dispose());
+
+	const res = await mf.dispatchFetch(
+		"http://localhost/?" +
+			new URLSearchParams({
+				to: "[email protected]",
+				from: "[email protected]",
+			}).toString(),
+		{
+			body: `To: someone <[email protected]>
+From: someone else <[email protected]>
+Message-ID: <[email protected]>
+MIME-Version: 1.0
+Content-Type: text/plain
+
+This is a random email body.
+`,
+			method: "POST",
+		}
+	);
+
+	t.true(
+		(await res.text()).startsWith(
+			"Error: email from [email protected] not allowed"
+		)
+	);
+	t.is(res.status, 500);
+});
+
 test("Multiple allowed send_email binding throws if destination is not equal", async (t) => {
 	const mf = new Miniflare({
 		modules: true,

packages/wrangler/src/__tests__/init.test.ts

@@ -300,6 +300,7 @@ describe("init", () => {
 					name: "EMAIL_BINDING",
 					destination_address: "[email protected]",
 					allowed_destination_addresses: ["[email protected]"],
+					allowed_sender_addresses: ["[email protected]"],
 				},
 				{
 					type: "version_metadata",
@@ -474,6 +475,7 @@ describe("init", () => {
 			],
 			send_email: [
 				{
+					allowed_sender_addresses: ["[email protected]"],
 					allowed_destination_addresses: ["[email protected]"],
 					destination_address: "[email protected]",
 					name: "EMAIL_BINDING",
@@ -1004,6 +1006,7 @@ describe("init", () => {
 					name = \\"EMAIL_BINDING\\"
 					destination_address = \\"[email protected]\\"
 					allowed_destination_addresses = [ \\"[email protected]\\" ]
+					allowed_sender_addresses = [ \\"[email protected]\\" ]
 
 					[version_metadata]
 					binding = \\"Version_BINDING\\"

packages/wrangler/src/__tests__/versions/versions.view.test.ts

@@ -618,6 +618,7 @@ describe("versions view", () => {
 								name: "MAIL_3",
 								destination_address: "[email protected]",
 								allowed_destination_addresses: ["[email protected]", "[email protected]"],
+								allowed_sender_addresses: ["[email protected]", "[email protected]"],
 							},
 							{ type: "service", name: "SERVICE", service: "worker" },
 							{
@@ -740,6 +741,7 @@ describe("versions view", () => {
 				name = \\"MAIL_3\\"
 				destination_address = \\"[email protected]\\"
 				allowed_destination_addresses = [\\"[email protected]\\", \\"[email protected]\\"]
+				allowed_sender_addresses = [\\"[email protected]\\", \\"[email protected]\\"]
 
 				[[services]]
 				binding = \\"SERVICE\\"

packages/wrangler/src/config/environment.ts

@@ -723,6 +723,8 @@ export interface EnvironmentNonInheritable {
 		destination_address?: string;
 		/** If this binding should be restricted to a set of verified addresses */
 		allowed_destination_addresses?: string[];
+		/** If this binding should be restricted to a set of sender addresses */
+		allowed_sender_addresses?: string[];
 		/** Whether the binding should be remote or not */
 		remote?: boolean;
 	}[];

packages/wrangler/src/config/validation.ts

@@ -2956,6 +2956,14 @@ const validateSendEmailBinding: ValidatorFn = (diagnostics, field, value) => {
 		);
 		isValid = false;
 	}
+	if (!isOptionalProperty(value, "allowed_sender_addresses", "object")) {
+		diagnostics.errors.push(
+			`"${field}" bindings should, optionally, have a []string "allowed_sender_addresses" field but got ${JSON.stringify(
+				value
+			)}.`
+		);
+		isValid = false;
+	}
 	if (
 		"destination_address" in value &&
 		"allowed_destination_addresses" in value
@@ -2971,6 +2979,7 @@ const validateSendEmailBinding: ValidatorFn = (diagnostics, field, value) => {
 	}
 
 	validateAdditionalProperties(diagnostics, field, Object.keys(value), [
+		"allowed_sender_addresses",
 		"allowed_destination_addresses",
 		"destination_address",
 		"name",

packages/wrangler/src/deployment-bundle/create-worker-upload-form.ts

@@ -72,6 +72,7 @@ export type WorkerMetadataBinding =
 			name: string;
 			destination_address?: string;
 			allowed_destination_addresses?: string[];
+			allowed_sender_addresses?: string[];
 	  }
 	| {
 			type: "durable_object_namespace";
@@ -301,11 +302,16 @@ export function createWorkerUploadForm(worker: CfWorkerInit): FormData {
 			"allowed_destination_addresses" in emailBinding
 				? emailBinding.allowed_destination_addresses
 				: undefined;
+		const allowed_sender_addresses =
+			"allowed_sender_addresses" in emailBinding
+				? emailBinding.allowed_sender_addresses
+				: undefined;
 		metadataBindings.push({
 			name: emailBinding.name,
 			type: "send_email",
 			destination_address,
 			allowed_destination_addresses,
+			allowed_sender_addresses,
 		});
 	});
 

packages/wrangler/src/deployment-bundle/worker.ts

@@ -95,12 +95,8 @@ export type CfSendEmailBindings = {
 } & (
 	| { destination_address?: string }
 	| { allowed_destination_addresses?: string[] }
+	| { allowed_sender_addresses?: string[] }
 );
-// export interface CfSendEmailBindings {
-// 	name: string;
-// 	destination_address?: string | undefined;
-// 	allowed_destination_addresses?: string[] | undefined;
-// }
 
 /**
  * A binding to a wasm module (in service-worker format)