SMimeSigner policy

Good idea. In addition to S/MIME signing could also include DKIM signing and encrypting.

Hi,

I attach a patch with following changes :

• Introduces a new EmailAdjuster plugin: DkimSignerAdjuster, with configurable domain / selector and keys generation / DNS information
• Add a pre-send phase (needed to allow changes directly on fully-prepared symfony email, as described by symfony mailer's DkimSigner documentation)
• Introduces a new SigningHelper service (to factor methods like keys discovery/generation)

Fix configuration variables + improve dkim keys informations

Could someone review this code?
It concerns only DKIM signing, but could be useful and merged IMHO (more and more email providers block unsigned emails).

After testing on another project, I add test for DKIM domain on plugin's settings form.

I found this issue when I proposed a similar feature for a friendly module in the neighborhood and I think it worth mentoining it seems that the Symfony Mailer library may have a built-in event to add this feature: https://www.drupal.org/project/symfony_mailer_lite/issues/3424075#commen... ✨ Add support form DKIM signing Active

I haven't checked yet what other possibilities are available in this module.

Thanks @mxr576 for this. Could you try this module with #7 patch to confirm that it works ?

I have tested this patch and it works. The patch applies and DKIM validation passes.

Tested patch #7
Applies and works for me!

Great that the patch is working for some people. It's not something that I would commit. We don't want to add an extra phase that exposes the protected inner symfony email to everyone - it's protected for a reason😃.

See the link in the IS and perhaps also #8. We could provide an API function that allows registering of a signer function. That function would get called with the symfony email, however it's still protected for all other users.