List keys for all domains
List domain keys, and optionally filter by signing domain or selector.
A 200 response
Response Schema: application/json
required | Array of objects |
object |
A 401 response
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
{- "items": [
- {
- "dns_record": {
- "cached": [
- "cached dns value"
], - "is_active": true,
- "name": "s1._domainkey.authority.domain.tld",
- "record_type": "TXT",
- "valid": "VALID",
- "value": "expected dns value"
}, - "selector": "s1",
- "signing_domain": "authority.domain.tld"
}, - {
- "dns_record": {
- "cached": [
- "cached dns value"
], - "name": "s2._domainkey.authority.domain.tld",
- "record_type": "TXT",
- "valid": "UNKNOWN",
- "value": "expected dns value"
}, - "selector": "s2",
- "signing_domain": "authority.domain.tld"
}
], - "paging": {
}
}Create a domain key
Create a domain key. Note that once private keys are created or imported they are never exported. Alternatively, you can import an existing PEM file containing a RSA private key in PKCS #1, ASn.1 DER format. Note, the pem can be passed as a file attachment or as a form-string parameter.
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
{- "signing_domain": "example.com",
- "selector": "s1",
- "dns_record": {
- "record_type": "TXT",
- "valid": "unknown",
- "value": "k=rsa; p=<public_key>",
- "cached": [ ],
- "name": "s1._domainkey.example.com"
}
}Activate a domain key
Activate a key to be used to DKIM sign emails with. Note: dns records must be valid for a domain key to be activated
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
- 404
{- "active": true,
- "message": "domain key activated",
- "authority": "authority.domain.tld",
- "selector": "selector"
}List domain keys
List all domain keys for your domain, including active/inactive and valid/invalid ones.
A 200 response
Response Schema: application/json
required | Array of objects |
object |
A 401 response
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
{- "items": [
- {
- "dns_record": {
- "cached": [
- "cached dns value"
], - "is_active": true,
- "name": "s1._domainkey.authority.domain.tld",
- "record_type": "TXT",
- "valid": "VALID",
- "value": "expected dns value"
}, - "selector": "s1",
- "signing_domain": "authority.domain.tld"
}, - {
- "dns_record": {
- "cached": [
- "cached dns value"
], - "name": "s2._domainkey.authority.domain.tld",
- "record_type": "TXT",
- "valid": "UNKNOWN",
- "value": "expected dns value"
}, - "selector": "s2",
- "signing_domain": "authority.domain.tld"
}
]
}Deactivate a domain key
Deactivating for a specified authority and/or selector means a key won't be used for signing email anymore, even if they are valid.
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
- 404
{- "message": "domain key deactivated",
- "selector": "selector",
- "authority": "authority.domain.tld",
- "active": true
}Update DKIM authority
You can delegate the domain authority to an other domain. Domain's authority is set to itself by default.
Request Body schema: multipart/form-datarequired
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
- 404
{- "changed": true,
- "message": "string",
- "sending_dns_records": [
- {
- "value": "string",
- "is_active": true,
- "cached": [
- "string"
], - "name": "string",
- "priority": "string",
- "record_type": "string",
- "valid": "string"
}
]
}Update a DKIM selector
Selector is the unique identifier of your key. It has to be different from other keys selector.
- curl
- Go
- Node.js
- PHP
- Java
- Python
- C#
- Ruby
- 200
- 401
- 404
{- "message": "Domain DKIM authority changed"
}