Implements data model for incoming Mailgun events to use with your custom Mailgun webhooks.
This library can be used as the data model for the deserialization process with basically any JSON deserializer library of your choice. It even provides a handy function to verify its cryptographic signature.
Since it targets .NET Standard 1.3 and .NET Framework 4.5 it is compatible with a wide variety of platforms.
According to Mailgun they provide developer friendly transactional e-mail service. In spite of this claim there's still no official SDK for nearly any platform and their documentation often lacks basic information. However it's still one of the best options you have if you don't want to implement your own e-mail delivery service which can become very complex very quickly.
Once you have an account with them you can subscribe to various messaging events so when the appropriate event happens (eg. the e-mail was delivered or bounced) Mailgun will POST a JSON encoded object to the URL you provided.
This library was created to ease the burden of deserializing these events into POCOs and to provide an easy way to verify the cryptographic signature of an incoming packet.
Add this package as a dependency to your project using NuGet.
Here's a practical example using ASP.NET Core 3.1:
using Mailgun.Models.SignedEvent;
...
[Route("[controller]")]
[ApiController]
public class DeliveredController : ControllerBase
{
[HttpPost]
public async Task<ActionResult<SignedEvent>> PostDelivered([FromBody] SignedEvent signedEvent)
{
// ASP.NET Core framework will automagically deserialize JSON into signedEvent (see notes at the bottom regarding caveats)
if (!signedEvent.Signature.IsValid("your-api-key"))
{
// if the signature is invalid, return 401
return Unauthorized();
}
// do something meaningful with signedEvent.Event here
// finally return 201 so Mailgun knows POST has been successful. Otherwise it'll keep retrying
return CreatedAtAction(nameof(PostDelivered), null);
}
}
A SignedEvent
contains a Signature
and the actual Event
. While not mandatory it's recommended to check the signature to make sure it was actually signed by Mailgun.
Since the signature is created using the signing server's own time you can specify how old a signature can be to still be considered as valid. By default this is set to 10 minutes.
Mailgun generates JSON data using an unusual naming convention with dashes between words. This means that the verb is valid
will be encoded as is-valid
even though the convention is to encode names as camelCase (resulting in isValid
).
There are ways to configure most JSON serializers to handle this, but this topic is out of scope of this project.
Please note that these events can apparently change their structure anytime, so don't be surprised if the data you've just received contains new fields.
If you discover a change (which can only be an addition according to their documentation) you're welcome to open a PR.