Amazon Simple Email Service

Adds or updates a sending authorization policy for the specified identity (email address or domain).

Sending authorization is a feature that enables an identity owner to authorize other senders to use its identities. For information about using sending authorization, see the Amazon SES Developer Guide.

This action is throttled at one request per second.

Request Syntax

client.put_identity_policy(
    Identity='string',
    PolicyName='string',
    Policy='string'
)

type Identity

string

param Identity

[REQUIRED]

The identity to which the policy will apply. You can specify an identity by using its name or by using its Amazon Resource Name (ARN). Examples: user@example.com , example.com , arn:aws:ses:us-east-1:123456789012:identity/example.com .

To successfully call this API, you must own the identity.

type PolicyName

string

param PolicyName

[REQUIRED]

The name of the policy.

The policy name cannot exceed 64 characters and can only include alphanumeric characters, dashes, and underscores.

type Policy

string

param Policy

[REQUIRED]

The text of the policy in JSON format. The policy cannot exceed 4 KB.

For information about the syntax of sending authorization policies, see the Amazon SES Developer Guide.

rtype

dict

returns

Response Syntax

{}

Response Structure

• (dict) --

  An empty element. Receiving this element indicates that the request completed successfully.

Returns the requested sending authorization policies for the given identity (email address or domain). The policies are returned as a map of policy names to policy contents. You can retrieve a maximum of 20 policies at a time.

Sending authorization is a feature that enables an identity owner to authorize other senders to use its identities. For information about using sending authorization, see the Amazon SES Developer Guide.

This action is throttled at one request per second.

Request Syntax

client.get_identity_policies(
    Identity='string',
    PolicyNames=[
        'string',
    ]
)

type Identity

string

param Identity

[REQUIRED]

The identity for which the policies will be retrieved. You can specify an identity by using its name or by using its Amazon Resource Name (ARN). Examples: user@example.com , example.com , arn:aws:ses:us-east-1:123456789012:identity/example.com .

To successfully call this API, you must own the identity.

type PolicyNames

list

param PolicyNames

[REQUIRED]

A list of the names of policies to be retrieved. You can retrieve a maximum of 20 policies at a time. If you do not know the names of the policies that are attached to the identity, you can use ListIdentityPolicies .

• (string) -- name of the policy.

rtype

dict

returns

Response Syntax

{
    'Policies': {
        'string': 'string'
    }
}

Response Structure

• (dict) --

  Represents a map of policy names to policies returned from a successful GetIdentityPolicies request.

  • Policies (dict) --

    A map of policy names to policies.

    • (string) -- name of the policy.

      • (string) -- JSON representation of a valid policy.

Returns a list of sending authorization policies that are attached to the given identity (email address or domain). This API returns only a list. If you want the actual policy content, you can use GetIdentityPolicies .

Sending authorization is a feature that enables an identity owner to authorize other senders to use its identities. For information about using sending authorization, see the Amazon SES Developer Guide.

This action is throttled at one request per second.

Request Syntax

client.list_identity_policies(
    Identity='string'
)

type Identity

string

param Identity

[REQUIRED]

The identity that is associated with the policy for which the policies will be listed. You can specify an identity by using its name or by using its Amazon Resource Name (ARN). Examples: user@example.com , example.com , arn:aws:ses:us-east-1:123456789012:identity/example.com .

To successfully call this API, you must own the identity.

rtype

dict

returns

Response Syntax

{
    'PolicyNames': [
        'string',
    ]
}

Response Structure

• (dict) --

  Represents a list of policy names returned from a successful ListIdentityPolicies request.

  • PolicyNames (list) --

    A list of names of policies that apply to the specified identity.

    • (string) -- name of the policy.

Deletes the specified sending authorization policy for the given identity (email address or domain). This API returns successfully even if a policy with the specified name does not exist.

Sending authorization is a feature that enables an identity owner to authorize other senders to use its identities. For information about using sending authorization, see the Amazon SES Developer Guide.

This action is throttled at one request per second.

Request Syntax

client.delete_identity_policy(
    Identity='string',
    PolicyName='string'
)

type Identity

string

param Identity

[REQUIRED]

The identity that is associated with the policy that you want to delete. You can specify the identity by using its name or by using its Amazon Resource Name (ARN). Examples: user@example.com , example.com , arn:aws:ses:us-east-1:123456789012:identity/example.com .

To successfully call this API, you must own the identity.

type PolicyName

string

param PolicyName

[REQUIRED]

The name of the policy to be deleted.

rtype

dict

returns

Response Syntax

{}

Response Structure

• (dict) --

  An empty element. Receiving this element indicates that the request completed successfully.

{'ReturnPathArn': 'string', 'SourceArn': 'string'}

Composes an email message based on input data, and then immediately queues the message for sending.

There are several important points to know about SendEmail :

• You can only send email from verified email addresses and domains; otherwise, you will get an "Email address not verified" error. If your account is still in the Amazon SES sandbox, you must also verify every recipient email address except for the recipients provided by the Amazon SES mailbox simulator. For more information, go to the Amazon SES Developer Guide.

• The total size of the message cannot exceed 10 MB. This includes any attachments that are part of the message.

• Amazon SES has a limit on the total number of recipients per message. The combined number of To:, CC: and BCC: email addresses cannot exceed 50. If you need to send an email message to a larger audience, you can divide your recipient list into groups of 50 or fewer, and then call Amazon SES repeatedly to send the message to each group.

• For every message that you send, the total number of recipients (To:, CC: and BCC:) is counted against your sending quota - the maximum number of emails you can send in a 24-hour period. For information about your sending quota, go to the Amazon SES Developer Guide.

Request Syntax

client.send_email(
    Source='string',
    Destination={
        'ToAddresses': [
            'string',
        ],
        'CcAddresses': [
            'string',
        ],
        'BccAddresses': [
            'string',
        ]
    },
    Message={
        'Subject': {
            'Data': 'string',
            'Charset': 'string'
        },
        'Body': {
            'Text': {
                'Data': 'string',
                'Charset': 'string'
            },
            'Html': {
                'Data': 'string',
                'Charset': 'string'
            }
        }
    },
    ReplyToAddresses=[
        'string',
    ],
    ReturnPath='string',
    SourceArn='string',
    ReturnPathArn='string'
)

type Source

string

param Source

[REQUIRED]

The email address that is sending the email. This email address must be either individually verified with Amazon SES, or from a domain that has been verified with Amazon SES. For information about verifying identities, see the Amazon SES Developer Guide.

If you are sending on behalf of another user and have been permitted to do so by a sending authorization policy, then you must also specify the SourceArn parameter. For more information about sending authorization, see the Amazon SES Developer Guide.

In all cases, the email address must be 7-bit ASCII. If the text must contain any other characters, then you must use MIME encoded-word syntax (RFC 2047) instead of a literal string. MIME encoded-word syntax uses the following form: =?charset?encoding?encoded-text?= . For more information, see RFC 2047.

type Destination

dict

param Destination

[REQUIRED]

The destination for this email, composed of To:, CC:, and BCC: fields.

• ToAddresses (list) --

  The To: field(s) of the message.

  • (string) --

• CcAddresses (list) --

  The CC: field(s) of the message.

  • (string) --

• BccAddresses (list) --

  The BCC: field(s) of the message.

  • (string) --

type Message

dict

param Message

[REQUIRED]

The message to be sent.

• Subject (dict) -- [REQUIRED]

  The subject of the message: A short summary of the content, which will appear in the recipient's inbox.

  • Data (string) -- [REQUIRED]

    The textual data of the content.

  • Charset (string) --

    The character set of the content.

• Body (dict) -- [REQUIRED]

  The message body.

  • Text (dict) --

    The content of the message, in text format. Use this for text-based email clients, or clients on high-latency networks (such as mobile devices).

    • Data (string) -- [REQUIRED]

      The textual data of the content.

    • Charset (string) --

      The character set of the content.

  • Html (dict) --

    The content of the message, in HTML format. Use this for email clients that can process HTML. You can include clickable links, formatted text, and much more in an HTML message.

    • Data (string) -- [REQUIRED]

      The textual data of the content.

    • Charset (string) --

      The character set of the content.

type ReplyToAddresses

list

param ReplyToAddresses

The reply-to email address(es) for the message. If the recipient replies to the message, each reply-to address will receive the reply.

• (string) --

type ReturnPath

string

param ReturnPath

The email address to which bounces and complaints are to be forwarded when feedback forwarding is enabled. If the message cannot be delivered to the recipient, then an error message will be returned from the recipient's ISP; this message will then be forwarded to the email address specified by the ReturnPath parameter. The ReturnPath parameter is never overwritten. This email address must be either individually verified with Amazon SES, or from a domain that has been verified with Amazon SES.

type SourceArn

string

param SourceArn

This parameter is used only for sending authorization. It is the ARN of the identity that is associated with the sending authorization policy that permits you to send for the email address specified in the Source parameter.

For example, if the owner of example.com (which has ARN arn:aws:ses:us-east-1:123456789012:identity/example.com ) attaches a policy to it that authorizes you to send from user@example.com , then you would specify the SourceArn to be arn:aws:ses:us-east-1:123456789012:identity/example.com , and the Source to be user@example.com .

For more information about sending authorization, see the Amazon SES Developer Guide.

type ReturnPathArn

string

param ReturnPathArn

This parameter is used only for sending authorization. It is the ARN of the identity that is associated with the sending authorization policy that permits you to use the email address specified in the ReturnPath parameter.

For example, if the owner of example.com (which has ARN arn:aws:ses:us-east-1:123456789012:identity/example.com ) attaches a policy to it that authorizes you to use feedback@example.com , then you would specify the ReturnPathArn to be arn:aws:ses:us-east-1:123456789012:identity/example.com , and the ReturnPath to be feedback@example.com .

For more information about sending authorization, see the Amazon SES Developer Guide.

rtype

dict

returns

Response Syntax

{
    'MessageId': 'string'
}

Response Structure

• (dict) --

  Represents a unique message ID returned from a successful SendEmail request.

  • MessageId (string) --

    The unique message identifier returned from the SendEmail action.

{'FromArn': 'string', 'ReturnPathArn': 'string', 'SourceArn': 'string'}

Sends an email message, with header and content specified by the client. The SendRawEmail action is useful for sending multipart MIME emails. The raw text of the message must comply with Internet email standards; otherwise, the message cannot be sent.

There are several important points to know about SendRawEmail :

• You can only send email from verified email addresses and domains; otherwise, you will get an "Email address not verified" error. If your account is still in the Amazon SES sandbox, you must also verify every recipient email address except for the recipients provided by the Amazon SES mailbox simulator. For more information, go to the Amazon SES Developer Guide.

• The total size of the message cannot exceed 10 MB. This includes any attachments that are part of the message.

• Amazon SES has a limit on the total number of recipients per message. The combined number of To:, CC: and BCC: email addresses cannot exceed 50. If you need to send an email message to a larger audience, you can divide your recipient list into groups of 50 or fewer, and then call Amazon SES repeatedly to send the message to each group.

• The To:, CC:, and BCC: headers in the raw message can contain a group list. Note that each recipient in a group list counts towards the 50-recipient limit.

• For every message that you send, the total number of recipients (To:, CC: and BCC:) is counted against your sending quota - the maximum number of emails you can send in a 24-hour period. For information about your sending quota, go to the Amazon SES Developer Guide.

• If you are using sending authorization to send on behalf of another user, SendRawEmail enables you to specify the cross-account identity for the email's "Source," "From," and "Return-Path" parameters in one of two ways: you can pass optional parameters SourceArn , FromArn , and/or ReturnPathArn to the API, or you can include the following X-headers in the header of your raw email:

  • X-SES-SOURCE-ARN

  • X-SES-FROM-ARN

  • X-SES-RETURN-PATH-ARN

For the most common sending authorization use case, we recommend that you specify the SourceIdentityArn and do not specify either the FromIdentityArn or ReturnPathIdentityArn . (The same note applies to the corresponding X-headers.) If you only specify the SourceIdentityArn , Amazon SES will simply set the "From" address and the "Return Path" address to the identity specified in SourceIdentityArn . For more information about sending authorization, see the Amazon SES Developer Guide.

Request Syntax

client.send_raw_email(
    Source='string',
    Destinations=[
        'string',
    ],
    RawMessage={
        'Data': b'bytes'
    },
    FromArn='string',
    SourceArn='string',
    ReturnPathArn='string'
)

type Source

string

param Source

The identity's email address. If you do not provide a value for this parameter, you must specify a "From" address in the raw text of the message. (You can also specify both.)

By default, the string must be 7-bit ASCII. If the text must contain any other characters, then you must use MIME encoded-word syntax (RFC 2047) instead of a literal string. MIME encoded-word syntax uses the following form: =?charset?encoding?encoded-text?= . For more information, see RFC 2047.

Note

If you specify the Source parameter and have feedback forwarding enabled, then bounces and complaints will be sent to this email address. This takes precedence over any Return-Path header that you might include in the raw text of the message.

type Destinations

list

param Destinations

A list of destinations for the message, consisting of To:, CC:, and BCC: addresses.

• (string) --

type RawMessage

dict

param RawMessage

[REQUIRED]

The raw text of the message. The client is responsible for ensuring the following:

• Message must contain a header and a body, separated by a blank line.

• All required header fields must be present.

• Each part of a multipart MIME message must be formatted properly.

• MIME content types must be among those supported by Amazon SES. For more information, go to the Amazon SES Developer Guide.

• Content must be base64-encoded, if MIME requires it.

• Data (bytes) -- [REQUIRED]

  The raw data of the message. The client must ensure that the message format complies with Internet email standards regarding email header fields, MIME types, MIME encoding, and base64 encoding (if necessary).

  The To:, CC:, and BCC: headers in the raw message can contain a group list.

  If you are using SendRawEmail with sending authorization, you can include X-headers in the raw message to specify the "Source," "From," and "Return-Path" addresses. For more information, see the documentation for SendRawEmail .

  Warning

  Do not include these X-headers in the DKIM signature, because they are removed by Amazon SES before sending the email.

  For more information, go to the Amazon SES Developer Guide.

type FromArn

string

param FromArn

This parameter is used only for sending authorization. It is the ARN of the identity that is associated with the sending authorization policy that permits you to specify a particular "From" address in the header of the raw email.

Instead of using this parameter, you can use the X-header X-SES-FROM-ARN in the raw message of the email. If you use both the FromArn parameter and the corresponding X-header, Amazon SES uses the value of the FromArn parameter.

Note

For information about when to use this parameter, see the description of SendRawEmail in this guide, or see the Amazon SES Developer Guide.

type SourceArn

string

param SourceArn

This parameter is used only for sending authorization. It is the ARN of the identity that is associated with the sending authorization policy that permits you to send for the email address specified in the Source parameter.

For example, if the owner of example.com (which has ARN arn:aws:ses:us-east-1:123456789012:identity/example.com ) attaches a policy to it that authorizes you to send from user@example.com , then you would specify the SourceArn to be arn:aws:ses:us-east-1:123456789012:identity/example.com , and the Source to be user@example.com .

Instead of using this parameter, you can use the X-header X-SES-SOURCE-ARN in the raw message of the email. If you use both the SourceArn parameter and the corresponding X-header, Amazon SES uses the value of the SourceArn parameter.

Note

For information about when to use this parameter, see the description of SendRawEmail in this guide, or see the Amazon SES Developer Guide.

type ReturnPathArn

string

param ReturnPathArn

This parameter is used only for sending authorization. It is the ARN of the identity that is associated with the sending authorization policy that permits you to use the email address specified in the ReturnPath parameter.

For example, if the owner of example.com (which has ARN arn:aws:ses:us-east-1:123456789012:identity/example.com ) attaches a policy to it that authorizes you to use feedback@example.com , then you would specify the ReturnPathArn to be arn:aws:ses:us-east-1:123456789012:identity/example.com , and the ReturnPath to be feedback@example.com .

Instead of using this parameter, you can use the X-header X-SES-RETURN-PATH-ARN in the raw message of the email. If you use both the ReturnPathArn parameter and the corresponding X-header, Amazon SES uses the value of the ReturnPathArn parameter.

Note

For information about when to use this parameter, see the description of SendRawEmail in this guide, or see the Amazon SES Developer Guide.

rtype

dict

returns

Response Syntax

{
    'MessageId': 'string'
}

Response Structure

• (dict) --

  Represents a unique message ID returned from a successful SendRawEmail request.

  • MessageId (string) --

    The unique message identifier returned from the SendRawEmail action.