← Back to MailParse

Email to JSON for SaaS Founders | MailParse

Email to JSON guide for SaaS Founders. Converting raw email messages into clean, structured JSON for application consumption tailored for Founders building SaaS products that need email processing features.

Introduction: Why email-to-JSON matters for SaaS founders

Email is a universal protocol that your customers already use. For SaaS founders, turning raw email messages into clean, structured JSON unlocks workflows like support ticket intake, approvals, billing alerts, automated onboarding, and user content ingestion. JSON is the lingua franca of modern applications, so converting email to JSON makes it simple to route messages into microservices, trigger webhooks, store normalized metadata, and index content for search. Founders gain leverage by treating inbound email as a first-class event stream, rather than a human-only inbox.

Whether you are building a helpdesk, a notification hub, a procurement tool, or a collaboration platform, a reliable email-to-JSON pipeline helps your product accept data from any sender with minimal friction. It reduces ambiguity and simplifies integration with your application layer, databases, and queues. When you need instant email addresses, structured output, and delivery via webhook or REST polling, MailParse can accelerate this capability with minimal setup.

Email to JSON fundamentals for SaaS founders

MIME, headers, and message parts

Email messages follow the MIME standard. Each message includes headers (From, To, Subject, Message-Id, Date, SPF, DKIM, Received lines), a body that may be plain text or HTML, and optional attachments. Messages can be single-part or multi-part with nested boundaries. Content can be encoded with base64 or quoted-printable, and character sets can vary widely. Reliable email-to-JSON conversion depends on normalizing these differences and preserving fidelity.

Recommended JSON schema

Design a JSON schema that balances completeness and practicality. A starter schema for most SaaS use cases:

{
  "id": "string",                  // internal ID
  "messageId": "string",           // RFC Message-Id
  "date": "2026-04-27T12:34:56Z",  // ISO-8601
  "from": {
    "name": "string",
    "address": "alice@example.com"
  },
  "to": [{"name": "string", "address": "support@product.com"}],
  "cc": [{"name": "string", "address": "ops@product.com"}],
  "replyTo": [{"name": "string", "address": "alice@example.com"}],
  "subject": "string",
  "text": "normalized UTF-8 plain text",
  "html": "<p>normalized HTML</p>",
  "attachments": [{
    "filename": "invoice.pdf",
    "contentType": "application/pdf",
    "size": 123456,
    "digestSha256": "hex-string",
    "storage": {
      "bucket": "string",
      "key": "string",
      "url": "https://..."
    }
  }],
  "headers": { "X-Custom": "value" },   // canonicalized key-value
  "thread": {
    "inReplyTo": "string",
    "references": ["string", "string"]
  },
  "auth": {
    "spf": "pass|fail|softfail|neutral",
    "dkim": "pass|fail|none",
    "dmarc": "pass|fail|none"
  },
  "raw": {
    "size": 98765,
    "storageKey": "string"            // pointer to RFC822 blob for auditing
  },
  "tenant": "string",                 // if multi-tenant
  "tags": ["support", "billing"],
  "receivedAt": "2026-04-27T12:34:56Z"
}

Ensure every message normalizes text to UTF-8, preserves HTML, and stores attachments in object storage with deterministic digests. Maintain a pointer to the raw RFC822 message for traceability. Keep authentication results to inform downstream decision making.

Threading and deduplication

Use Message-Id, In-Reply-To, and References for conversation grouping. Deduplicate by combining Message-Id with a normalized checksum of headers and the body. Different MTAs sometimes mutate whitespace or minor headers, so rely on stable fields and normalized content to avoid duplicate records.

Practical implementation

Inbound email capture patterns

  • Subaddressing for multi-tenant routing: customer+tenant-a@yourdomain.com helps you map emails to accounts without provisioning per-tenant mailboxes.
  • Per-user dynamic aliases: generate unique addresses per invitation, document, or ticket to enforce idempotency and simplify authorization.
  • Provider options: use AWS SES inbound, SendGrid Inbound Parse, or Postmark Inbound to receive messages. These services post raw email to your webhook or deliver to S3 for processing.
  • Custom domain for trust: route @mail.yourproduct.com and publish SPF, DKIM, and DMARC to improve authenticity and deliverability.

If you want instant addresses and a reliable webhook without waiting on DNS or SMTP plumbing, MailParse can provision inbound addresses, convert MIME to structured JSON, and deliver via webhook or a REST polling API.

Parsing MIME into structured JSON

Founders typically start with a language they already use. Below are minimal parsing patterns that produce clean JSON.

Node.js using a robust parser

// package.json dependencies: "mailparser": "^3"
// Receive raw email (RFC822) as a string from your provider webhook
import express from "express";
import crypto from "crypto";
import { simpleParser } from "mailparser";

const app = express();
app.use(express.raw({ type: "*/*", limit: "25mb" }));

function verifySignature(req) {
  // Example only - verify HMAC from your provider
  const signature = req.headers["x-signature"];
  const expected = crypto
    .createHmac("sha256", process.env.WEBHOOK_SECRET)
    .update(req.body)
    .digest("hex");
  return signature === expected;
}

app.post("/inbound", async (req, res) => {
  if (!verifySignature(req)) return res.status(401).send("invalid signature");
  const raw = req.body.toString("utf8");
  const parsed = await simpleParser(raw);

  const json = {
    id: crypto.randomUUID(),
    messageId: parsed.messageId || null,
    date: parsed.date?.toISOString() || null,
    from: { name: parsed.from?.value[0]?.name || "", address: parsed.from?.value[0]?.address || "" },
    to: (parsed.to?.value || []).map(v => ({ name: v.name || "", address: v.address })),
    cc: (parsed.cc?.value || []).map(v => ({ name: v.name || "", address: v.address })),
    subject: parsed.subject || "",
    text: parsed.text || "",
    html: parsed.html || "",
    attachments: (parsed.attachments || []).map(a => ({
      filename: a.filename,
      contentType: a.contentType,
      size: a.size,
      digestSha256: crypto.createHash("sha256").update(a.content).digest("hex"),
      storage: { bucket: "email-attachments", key: `/${Date.now()}-${a.filename}` }
    })),
    headers: Object.fromEntries(parsed.headerLines.map(h => [h.key.toLowerCase(), h.line]))
  };

  // Store raw + JSON, enqueue downstream processing
  // await saveRaw(raw); await saveJson(json); await enqueue(json);
  res.status(202).send("accepted");
});

app.listen(3000);

Python with the standard library and a JSON mapping

import hmac, hashlib, json, os, uuid
from email import message_from_bytes
from email.policy import default
from flask import Flask, request

app = Flask(__name__)

def verify_signature(body, signature):
    expected = hmac.new(os.environ["WEBHOOK_SECRET"].encode(), body, hashlib.sha256).hexdigest()
    return hmac.compare_digest(signature, expected)

def to_json(msg):
    def addrlist(field):
        addrs = msg.get_all(field, []) or []
        from email.utils import getaddresses
        return [{"name": n, "address": a} for n, a in getaddresses(addrs)]
    return {
        "id": str(uuid.uuid4()),
        "messageId": msg.get("Message-Id"),
        "date": msg.get("Date"),
        "from": [{"name": "", "address": msg.get("From")}][0],
        "to": addrlist("To"),
        "cc": addrlist("Cc"),
        "subject": msg.get("Subject", ""),
        "text": msg.get_body(preferencelist=("plain")).get_content() if msg.is_multipart() else msg.get_content(),
        "html": msg.get_body(preferencelist=("html")).get_content() if msg.is_multipart() else None,
        "attachments": [
            {
                "filename": part.get_filename(),
                "contentType": part.get_content_type(),
                "size": len(part.get_payload(decode=True) or b""),
            }
            for part in msg.iter_attachments()
        ],
    }

@app.post("/inbound")
def inbound():
    signature = request.headers.get("X-Signature")
    body = request.data
    if not verify_signature(body, signature):
        return ("invalid signature", 401)
    msg = message_from_bytes(body, policy=default)
    payload = to_json(msg)
    # store payload somewhere durable
    return (json.dumps(payload), 202)

Webhook delivery, idempotency, and retries

  • Idempotency: derive a stable key such as messageId + sha256(normalized body). Reject duplicates to avoid double-processing.
  • Signature verification: verify HMAC or RSA signatures for inbound providers. Reject unsigned requests.
  • Retries: treat webhook delivery as at-least-once. Implement exponential backoff and a dead-letter queue. Track last delivered offset for REST polling.
  • Latency: extracting large attachments can be slow. Stream to object storage and emit a completion event rather than blocking the webhook response.

Storage, indexing, and search

Store normalized JSON in your primary database, and raw RFC822 in object storage for audits. Index frequently queried fields like from.address, to.address, subject, and receivedAt. For full-text search, strip HTML to text, then index in OpenSearch or Postgres with tsvector. Attachments should be virus scanned, then stored under deterministic keys using SHA-256 digests.

If you prefer a managed approach to instant addressing and structured delivery, MailParse can deliver parsed JSON to your webhook while you focus on routing and business logic.

Tools and libraries founders use for email-to-JSON

  • Node.js: mailparser, postal-mime - robust MIME parsing and attachment handling.
  • Python: standard library email with policy=default, mail-parser, or flanker for header normalization.
  • Go: enmime, go-message for fast parsing.
  • Inbound providers: AWS SES inbound + S3, SendGrid Inbound Parse, Postmark Inbound. Each supports posting raw messages to a webhook or writing to storage.
  • Queues and orchestration: SQS, SNS, Kafka, or Redis Streams for durable, replayable pipelines.
  • Security and authenticity: SPF, DKIM, and DMARC validation in your pipeline. See the Email Deliverability Checklist for SaaS Platforms.
  • Managed service option: MailParse - instant addresses, MIME parsing to JSON, webhook delivery, and REST polling for straightforward integration.

For broader system design, review the Email Infrastructure Checklist for SaaS Platforms. It covers DNS, routing, authentication, storage, and monitoring choices that Founders routinely face.

Common mistakes SaaS founders make with email-to-JSON

  • Ignoring character sets and encodings: always normalize to UTF-8 and decode quoted-printable and base64 correctly before emitting JSON.
  • Trusting sender identity blindly: verify SPF, DKIM, and DMARC. Do not use unverified From addresses for authorization decisions.
  • No raw message retention: keep the RFC822 blob for audit, dispute resolution, and reprocessing after parser upgrades.
  • Poor idempotency: deduplicate using a stable key and store processing status. Support retry-safe handlers.
  • Attachment oversights: set size limits, virus scan, and fallback on secure storage. Do not inline massive attachments in JSON.
  • Skipped threading logic: use In-Reply-To and References to join messages into conversations. Heuristics on Subject alone are brittle.
  • No observability: log message IDs, parsing durations, and error rates. Instrument end-to-end latency and queue depth.

Deliverability and authenticity are critical, especially for platforms that accept external email. If this is new territory, start with the Email Deliverability Checklist for SaaS Platforms to avoid preventable issues.

Advanced patterns for production-grade email processing

Multi-tenant address strategies

Use tenant-aware routing. Sample patterns include tenant-key+event@product-mail.com or per-entity aliases like ticket-123@help.product.com. Maintain a registry that maps addresses to tenants, entities, or workflows. Emit structured tenant and tags fields into JSON for authorization and routing.

Schema versioning and reprocessing

Include schemaVersion in your JSON and store raw messages. When you upgrade parsers or introduce new fields, reprocess from raw, emit a new version, and run migration jobs idempotently. This approach keeps your data consistent across upgrades.

Event sourcing and outbox

Treat each inbound email as an immutable event. Write the normalized JSON, then publish domain events like TicketCreated or AttachmentReceived. Use an outbox pattern to guarantee delivery to downstream services, even during failures.

Security hardening

  • HTML sanitization: sanitize HTML bodies to remove scripts and dangerous tags before rendering in the UI.
  • Attachment scanning: integrate ClamAV or a managed malware scanning service. Keep a quarantine queue for suspicious files.
  • Content filtering: enforce allowlists for acceptable content types, reject executable attachments by default.
  • Webhook authentication: require HMAC or signed JWT headers from inbound email providers and rotate secrets regularly.

Routing logic and workflows

Use rule engines or simple predicates to route email-to-JSON events. Examples: subject contains "invoice" - route to billing, attachments of type image/* - route to media ingestion, sender domain "vendor.com" - route to procurement. Persist decisions and enable audit logs that reference message IDs and rule evaluations.

Scaling and cost control

Prefer streaming uploads to object storage for large payloads. Employ worker pools for CPU heavy operations like OCR or PDF extraction. Implement backpressure by limiting concurrent parsing and prioritizing messages that impact customer-facing SLAs. For founders who want a dependable pipeline with predictable costs, MailParse removes SMTP complexity while providing scalable JSON delivery.

Looking for inspiration on product features enabled by inbound email, explore the Top Inbound Email Processing Ideas for SaaS Platforms. If your product exposes an API to parse customer emails, review the Top Email Parsing API Ideas for SaaS Platforms.

Conclusion

Email-to-JSON is a pragmatic foundation for SaaS products that need to accept external messages, automate workflows, and create structured data from unstructured inputs. Build a pipeline that decodes MIME reliably, normalizes text, secures attachments, and verifies authenticity. Plan for idempotency, retries, schema versioning, and observability. If your team prefers focusing on product logic rather than email plumbing, MailParse provides instant addresses, structured parsing, and delivery via webhook or REST so you can ship faster with confidence.

FAQ

Should we parse email synchronously in the webhook or asynchronously in workers?

Do minimal validation and storage in the webhook, then enqueue for asynchronous parsing. This strategy creates a short, reliable critical path and allows heavy tasks like attachment scanning or OCR to run in workers with retries. Return quickly to avoid provider timeouts and to keep your inbound pipeline resilient.

How do we verify that a message is authentic?

Validate SPF, DKIM, and DMARC. Preserve authentication results in your JSON. If a message fails checks, flag it for review or reduce trust in its headers. Avoid using unverified From addresses for authorization. Some providers add signed headers to webhooks - verify them before accepting the payload.

What is the best way to handle attachments in JSON?

Do not embed large attachments directly in JSON. Stream to object storage, store content-type, size, and a cryptographic digest, then include a pointer in your JSON. Scan for malware, enforce size limits, and apply allowlists for safe content types. This approach reduces payload size and improves security.

Do we need to store raw RFC822 messages?

Yes. Keep the raw message for audits, forensic analysis, and future reprocessing. As parsers improve or your schema evolves, you will want to regenerate structured JSON without losing fidelity. Raw storage is inexpensive and highly valuable during incident response.

Is REST polling better than webhooks for our architecture?

Webhooks are efficient and push-based, but they require public endpoints and signature verification. REST polling is simpler for closed networks or strict firewalls, and it is useful for controlled batch processing. Many teams implement both - webhooks for near real-time processing, polling for backfills and resilience during downtime.

Founders often search for terms like mailparse or email-to-json when planning this capability. Use the guidance above to design a robust pipeline, then adapt it to your product's workflows and performance goals.

Related Articles

Email Deliverability Checklist for SaaS Platforms

This checklist helps SaaS teams ensure reliable email receipt by aligning domain strategy, DNS, SMTP security, MIME parsing, and webhook delivery with produc...

Email Infrastructure Checklist for SaaS Platforms

Use this checklist to design and operate a scalable email infrastructure for SaaS platforms that rely on inbound messages to drive product workflows. It cove...

Email Infrastructure Checklist for Customer Support Teams

This checklist helps customer support leaders build reliable email infrastructure that scales with ticket volume while protecting SLAs. It focuses on MX reco...

Ready to get started?

Start parsing inbound emails with MailParse today.

Get Started Free