dkimverify

a gem for verifying DKIM signatures in Ruby

this gem does not sign mail messages (but a PR to enable it would likely be accepted, I just have no use for it.)

this gem doesn't work right yet!!!

how to use

the `verify!` method will return:

- `true` if the signature verifies
- `false` if no signature is present, and,
- raise `Dkim::DkimError` (or a child error) if the signature is present but does not verify.

loading emails from a string is not yet implemented, but would be really easy (send me a PR!)




with a debt of gratitude to:
----------------------------

  - [pydkim](https://github.com/ghewgill/pydkim) by @ghewgill which I used as a reference implementation
  - [mail](https://github.com/mikel/mail) by @mikel
  - [carsonreinke's fork of the jhawthorne's dkim gem](https://github.com/carsonreinke/dkim/tree/feature_verification) which I wish I had found before I started this.
  - [rfc6376 authors](https://tools.ietf.org/html/rfc6376)

not yet implemented
-------------------
checking expiration dates (x=, t=)
accounting for length limits (l= tag)
tests (which I really ought to add)
checking multiple dkim signature header lines (probably easy)
dealing with the "simple" canonicalization method (because I need to strip out the `mail` gem and instead write my own RFC822 parser that is better for maintaining the exact original string)

by
--

Jeremy B. Merrill  
The New York Times  
January 2017