Reserved Email Addresses Code Example in 2024
List of 1250+ generic, admin, mailer-daemon, and no-reply usernames reserved for security concerns.
- Search page
- Table of Contents
List of 1250+ generic, admin, mailer-daemon, and no-reply usernames reserved for security concerns. Made for Forward Email.
Install
npm:
npm install reserved-email-addresses-list email-addresses
Usage
The string you are comparing with must be converted to lowercase and trimmed of whitespace. The reason we are converting to lowercase is because the dictionary of words we are comparing with are all lowercase, and in order to compare for strict equality, we must have matching case.
It is also highly recommended that you check for strict equality, and for a list of admin, mailer-daemon, and no-reply usernames, you should check for strict equality, starts with, or ends with comparisons as well.
const reservedEmailAddressesList = require('reserved-email-addresses-list');
const reservedAdminList = require('reserved-email-addresses-list/admin-list.json');
const emailAddresses = require('email-addresses');
const email = '"Admin***!!!"@example.com';
const parsed = emailAddresses.parseOneAddress(email);
if (parsed === null) throw new Error('Email was not a valid address');
const str = parsed.local.toLowerCase();
let reservedMatch = reservedEmailAddressesList.find(addr => addr === str);
if (!reservedMatch)
reservedMatch = reservedAdminList.find(
addr => addr === str || str.startsWith(addr) || str.endsWith(addr)
);
if (reservedMatch)
throw new Error(
'User must be a domain admin to create an alias with a reserved word (see https://forwardemail.net/reserved-email-addresses).'
);
Lists
- index.json - list of all reserved generic usernames (includes admin-list.json and no-reply-list.json)
- admin-list.json - list of all reserved admin and mailer-daemon usernames (includes no-reply-list.json)
- no-reply-list.json - list of all no-reply usernames
Formats
The default list index.json itself comes in a few different formats. The default import is an Array
, but also available are a Map
and Set
version of the list.
// Array version
const reservedEmailAddressesList = require('reserved-email-addresses-list');
// Also available with: require('reserved-email-addresses-list/array');
// Map version
const reservedEmailAddressesMap = require('reserved-email-addresses-list/map');
// Set version
const reservedEmailAddressesSet = require('reserved-email-addresses-list/set');
If you would like to create a Map or Set version of the other lists, simply require them first, and then convert to a Set
or Map
(see map.cjs, set.cjs, and other files in this repo for more insight how to do this).
References
- https://www.rfc-editor.org/rfc/rfc2142
- https://unix.stackexchange.com/q/65013
- https://webmasters.stackexchange.com/questions/104811/is-there-any-list-of-email-addresses-reserved-because-of-security-concerns-for-a?noredirect=1&lq=1
- https://support.google.com/a/answer/6093413?hl=en
- https://docs.google.com/spreadsheets/d/1Gj1LidTJgA1TgOjhxTaoQKaZTvV2-xZlvo9XEsBnZ5I/edit#gid=0
- https://gist.github.com/riaf/9067235
- https://gist.github.com/citrusui/d755cf6bf8374d413fe8f453fa40f0c6
- https://www.npmjs.com/package/reserved-usernames
- https://help.salesforce.com/articleView?id=pardot_admin_role_based_email_address.htm&type=5
- https://www.entrustdatacard.com/blog/2015/march/what-happened-with-livefi