forgejo-docs/docs/admin/email-setup.md

---
title: 'Email setup'
license: 'Apache-2.0'
origin_url: 'https://github.com/go-gitea/gitea/blob/e865de1e9d65dc09797d165a51c8e705d2a86030/docs/content/administration/email-setup.en-us.md'
---

Forgejo can be set to send emails such as a registration confirmation, either with [Sendmail](https://man7.org/linux/man-pages/man8/sendmail.8.html) (or compatible MTAs like Postfix and msmtp) or by connecting to an SMTP server.

## Using SMTP

Directly use SMTP server as relay. This option is useful if you don't want to set up MTA on your instance but you have an account at an email provider.

```ini
[mailer]
ENABLED        = true
FROM           = forgejo@example.com
PROTOCOL       = smtps
SMTP_ADDR      = mail.example.com
SMTP_PORT      = 587
USER           = forgejo@example.com
PASSWD         = mysecurepassword
```

Restart Forgejo for the configuration changes to take effect.

To send a test email to validate the settings, go to Forgejo > Site Administration > Configuration > SMTP Mailer Configuration.

For the full list of options check the [Config Cheat Sheet](../config-cheat-sheet/#mailer-mailer).

> **NOTE:** authentication is only supported when the SMTP server communication is encrypted with TLS or `HOST=localhost`. This is due to protections imposed by the Go internal libraries against STRIPTLS attacks. TLS encryption can be through:

- STARTTLS (also known as Opportunistic TLS) via port 587. Initial connection is done over cleartext, but then be upgraded over TLS if the server supports it.
- SMTPS connection (SMTP over TLS) via the default port 465. Connection to the server use TLS from the beginning.
- Forced SMTPS connection with `PROTOCOL=smtps`. (These are both known as Implicit TLS.)

Both `SMTPS` and `STARTTLS` combined with `IS_TLS_ENABLED=true` are known as Implicit TLS and is recommended by [RFC8314](https://tools.ietf.org/html/rfc8314#section-3) since 2018.

## Using Sendmail

Use `sendmail` command as mailer.

> **NOTE:** For Internet-facing sites consult the documentation of your MTA for instructions to send emails over TLS. Also set up SPF, DMARC, and DKIM DNS records to make emails sent be accepted as legitimate by various email providers.

```ini
[mailer]
ENABLED       = true
FROM          = forgejo@example.com
PROTOCOL      = sendmail
SENDMAIL_PATH = /usr/sbin/sendmail
SENDMAIL_ARGS = "--" ; most "sendmail" programs take options, "--" will prevent an email address being interpreted as an option.
```
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00			`---`
			`title: 'Email setup'`
Fix licensing problems 2023-03-03 01:44:11 -05:00			`license: 'Apache-2.0'`
sync with Gitea e865de1e9d65dc09797d165a51c8e705d2a86030 cd docs git diff d3982bcd814bac93e3cbce1c7eb749b17e413fbd..e865de1e9d65dc09797d165a51c8e705d2a86030 -- $(find . -type f -name 'en-us') 2024-04-21 09:56:01 -04:00			`origin_url: 'https://github.com/go-gitea/gitea/blob/e865de1e9d65dc09797d165a51c8e705d2a86030/docs/content/administration/email-setup.en-us.md'`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00			`---`

admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			`Forgejo can be set to send emails such as a registration confirmation, either with [Sendmail](https://man7.org/linux/man-pages/man8/sendmail.8.html) (or compatible MTAs like Postfix and msmtp) or by connecting to an SMTP server.`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
			`## Using SMTP`

admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			`Directly use SMTP server as relay. This option is useful if you don't want to set up MTA on your instance but you have an account at an email provider.`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
			```ini
			`[mailer]`
			`ENABLED = true`
Fix email user Naming is hard 8) Signed-off-by: André Jaenisch <andre.jaenisch@posteo.de> 2023-03-03 16:01:51 -05:00			`FROM = forgejo@example.com`
sync with Gitea abe8fe352711601fbcd24bf4505f7e0b81a93c5d git diff bd4c7ce578956d9839309b16753bd5505b63b2e3..abe8fe352711601fbcd24bf4505f7e0b81a93c5d -- $(find . -type f -name 'en-us') 2023-10-08 09:11:22 -04:00			`PROTOCOL = smtps`
email-setup.md: s/gitea/forgejo/ 2023-02-26 19:07:02 -05:00			`SMTP_ADDR = mail.example.com`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00			`SMTP_PORT = 587`
Fix email user Naming is hard 8) Signed-off-by: André Jaenisch <andre.jaenisch@posteo.de> 2023-03-03 16:01:51 -05:00			`USER = forgejo@example.com`
admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			`PASSWD = mysecurepassword`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00			```

email-setup.md: s/gitea/forgejo/ 2023-02-26 19:07:02 -05:00			`Restart Forgejo for the configuration changes to take effect.`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
email-setup.md: s/gitea/forgejo/ 2023-02-26 19:07:02 -05:00			`To send a test email to validate the settings, go to Forgejo > Site Administration > Configuration > SMTP Mailer Configuration.`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			`For the full list of options check the [Config Cheat Sheet](../config-cheat-sheet/#mailer-mailer).`
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			> NOTE: authentication is only supported when the SMTP server communication is encrypted with TLS or `HOST=localhost`. This is due to protections imposed by the Go internal libraries against STRIPTLS attacks. TLS encryption can be through:
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
			`- STARTTLS (also known as Opportunistic TLS) via port 587. Initial connection is done over cleartext, but then be upgraded over TLS if the server supports it.`
			`- SMTPS connection (SMTP over TLS) via the default port 465. Connection to the server use TLS from the beginning.`
sync with Gitea d3982bcd814bac93e3cbce1c7eb749b17e413fbd git diff abe8fe352711601fbcd24bf4505f7e0b81a93c5d..d3982bcd814bac93e3cbce1c7eb749b17e413fbd -- $(find . -type f -name 'en-us') 2024-02-24 15:20:29 -05:00			- Forced SMTPS connection with `PROTOCOL=smtps`. (These are both known as Implicit TLS.)
email-setup.md: verbatim copy 2023-02-26 19:01:41 -05:00
admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			Both `SMTPS` and `STARTTLS` combined with `IS_TLS_ENABLED=true` are known as Implicit TLS and is recommended by [RFC8314](https://tools.ietf.org/html/rfc8314#section-3) since 2018.
docs: admin/email-setup.md: reorder and trim incorrect sentence 2023-03-11 09:09:14 -05:00
			`## Using Sendmail`

			Use `sendmail` command as mailer.

admin: email: proofread and add links 2023-12-06 11:45:18 -05:00			`> NOTE: For Internet-facing sites consult the documentation of your MTA for instructions to send emails over TLS. Also set up SPF, DMARC, and DKIM DNS records to make emails sent be accepted as legitimate by various email providers.`
docs: admin/email-setup.md: reorder and trim incorrect sentence 2023-03-11 09:09:14 -05:00
			```ini
			`[mailer]`
			`ENABLED = true`
			`FROM = forgejo@example.com`
Replace “MAILER_TYPE” with “PROTOCOL” 2023-08-12 05:59:00 -04:00			`PROTOCOL = sendmail`
docs: admin/email-setup.md: reorder and trim incorrect sentence 2023-03-11 09:09:14 -05:00			`SENDMAIL_PATH = /usr/sbin/sendmail`
			`SENDMAIL_ARGS = "--" ; most "sendmail" programs take options, "--" will prevent an email address being interpreted as an option.`
			```