General Feedback
What do you think of our email service? This is the spot for good, bad, or neutral feedback about our main product.
You can also leave feedback on specific features like Inbound Routing, Message Event Logs, or Email Analytics.
If you have feedback that you believe requires an immediate response, don’t post here. Submit a support ticket or email help@mailgun.com. Feel free to interact with other users if you agree, disagree, or found a solution to their feedback.
Please be courteous of others and upvote if you believe strongly enough in an idea!
6 results found
-
The CSFR token has expired
error "The CSFR token has expired"
1 vote -
Fix application and contact forms: no addresses qualify as valid business address
I can't contact you or sign up for your service because your forms reject both my AOL and Gmail business email address - saying they aren't valid business addresses. My AOL business email address has been active for 20 years! I live in the US. What is a qualified email address to you?
1 vote -
Allow user invites during free trial
If a business person makes an account and wants to give access to a tech person, it's needlessly frictionful and probably bad for security that the free trial prevents user invites and encourages sharing login credentials.
1 vote -
Search in Account Security
Implement a way to search for users within the Account Security page, to make removing access or verifying access easier.
1 vote -
Provide More Verbose Response When Attempting to use SAML SSO on non Scale Plans
If a plan was on Scale and used SAML SSO, then downgraded to a lower plan while SAML was enabled, attempting to log into Mailgun via SAML returns a 500 error. This can be confusing to customers who are not aware that SAML SSO is exclusive to Scale plan
1 vote -
API Key Permissions/Restrictions to Reduce the Impact of a Leaked Key
Security Feature:
It should be possible to restrict the call types that your API key is able to make in order to reduce the impact of a leaked/breached key.
For example, if my API key is accidentally exposed, an attacker could then go on to exfiltrate data from my account.
If it were possible to lock down your API key so that it can only make certain call types, the impact of such a breach would be drastically reduced.
For example, I could lock down my key so that it is only permitted to add/send emails to a particular mailing…
6 votes
- Don't see your idea?