← Back to MailParse

Email Archival Guide for Backend Developers | MailParse

Email Archival implementation guide for Backend Developers. Step-by-step with MailParse.

Introduction

Email-archival is more than a compliance checkbox for backend developers. When you receive inbound messages from customers, partners, or automated systems, those emails become auditable records, searchable knowledge, and inputs to downstream workflows. The fastest path to reliable archival is to parse MIME into a structured JSON model, persist the raw and parsed forms, then index for low-latency search. With MailParse in front of your ingestion layer, you can accept instant email addresses, receive outbound webhooks or pollable REST, and work with a clean, typed payload that is ready for storing and indexing.

This guide shows server-side engineers how to build an email archival pipeline that is fault-tolerant, cost-efficient, and easy to extend. You will see patterns for object storage, relational metadata, and full-text indexing, plus actionable code snippets and operational metrics.

The Backend Developers Perspective on Email Archival

Archival is a data engineering problem disguised as messaging. Backend developers face a familiar set of constraints that map cleanly to a robust pipeline:

  • Throughput and burst handling - traffic is spiky. You need queues, idempotent consumers, and backpressure.
  • Data fidelity - store the raw RFC822 source for legal and replay, plus a parsed JSON representation for structured queries.
  • Indexing and search - headers, participants, subjects, and bodies must be indexed. Attachments often need metadata extraction and hash-based deduplication.
  • Retention and legal hold - policy-driven lifecycles with overrides for legal holds. Deletes must be audit logged.
  • Security - encryption at rest and in transit, content hashing, redact or tokenize PII, signed webhooks, and restricted egress.
  • Observability - measure ingestion latency, parse failure rates, index lag, and search latency. Export metrics to your APM.
  • Cost control - hot index for the last N days, warm object storage for long-term retention, and on-demand reindexing when needed.

Solution Architecture for Email Archival

The most resilient architecture separates ingestion, durable storage, and indexing. A typical pattern looks like this:

  • Inbound parsing service - receives email, parses MIME into JSON, and delivers via webhook or REST polling. MailParse sits here and normalizes the message.
  • Webhook receiver - validates signatures, enqueues work, and assigns a stable message id.
  • Object storage - immutable raw RFC822 and attachments, versioned and encrypted.
  • Relational metadata store - headers, participants, dates, hash fingerprints, and processing statuses in Postgres or MySQL.
  • Search index - OpenSearch or Elasticsearch for full-text and structured filters.
  • Background workers - extract text from HTML and attachments, compute hashes, enrich, and update the index.
  • Policy engine - applies retention rules and legal holds, and manages deletions with audit trails.

Key design principles:

  • Write-later indexing - acknowledge ingestion after durable store and metadata commit, then index asynchronously.
  • Idempotency - use a message_id or RFC822 Message-ID combined with a stable hash to guarantee dedupe.
  • Schema-first - define a JSON shape for parsed emails and keep it versioned in your repo.
  • Least privilege - separate write credentials for object storage, database, and index.

Implementation Guide

1) Configure inbound routes and security

Provision your inbound address or catch-all route in your parsing provider. Configure a webhook endpoint with a shared secret. MailParse will deliver structured payloads to that endpoint. Require TLS 1.2+, verify the sender IP if offered, and validate a request signature before processing.

2) Validate the webhook signature

Example in Node.js using HMAC SHA-256 and Express:

import crypto from 'crypto';
import express from 'express';

const app = express();
app.use(express.raw({ type: 'application/json' })); // raw body for HMAC

const WEBHOOK_SECRET = process.env.WEBHOOK_SECRET;

function verifySignature(req) {
  const sent = req.header('X-Webhook-Signature') || '';
  const digest = crypto.createHmac('sha256', WEBHOOK_SECRET)
    .update(req.body)
    .digest('hex');
  return crypto.timingSafeEqual(Buffer.from(sent, 'hex'), Buffer.from(digest, 'hex'));
}

app.post('/inbound-email', async (req, res) => {
  if (!verifySignature(req)) return res.status(401).send('invalid signature');
  const payload = JSON.parse(req.body.toString('utf8'));
  // enqueue for processing
  await queue.publish('email.ingest', payload);
  res.status(202).send('accepted');
});

app.listen(3000);

3) Persist raw and parsed forms

Store the raw RFC822 under immutable object storage, and store the parsed JSON for structured access. A common layout:

  • Object storage key: emails/<yyyy>/<mm>/<dd>/<message_uuid>/raw.eml
  • Object storage key: emails/<yyyy>/<mm>/<dd>/<message_uuid>/parsed.json
  • Attachment keys: emails/<...>/attachments/<sha256>/<filename>

Enable server-side encryption and bucket/object versioning. Keep the raw .eml write-only for the ingestion role.

4) Define the metadata schema

Use Postgres with JSONB to store normalized fields and support ad hoc queries:

CREATE TABLE email_messages (
  id UUID PRIMARY KEY,
  message_id TEXT,
  thread_id TEXT,
  from_addr TEXT,
  to_addrs TEXT[],
  cc_addrs TEXT[],
  bcc_addrs TEXT[],
  subject TEXT,
  sent_at TIMESTAMPTZ,
  received_at TIMESTAMPTZ DEFAULT now(),
  has_attachments BOOLEAN,
  size_bytes BIGINT,
  sha256 TEXT,
  raw_uri TEXT,
  parsed_uri TEXT,
  legal_hold BOOLEAN DEFAULT FALSE,
  tags TEXT[],
  parsed JSONB,
  status TEXT DEFAULT 'stored'
);

CREATE INDEX idx_email_messages_json ON email_messages USING GIN (parsed jsonb_path_ops);
CREATE INDEX idx_email_messages_fulltext ON email_messages
  USING GIN (to_tsvector('simple', coalesce(subject, '') || ' ' ||
    coalesce(parsed ->> 'text_body', '') || ' ' || coalesce(parsed ->> 'html_text', '')));

5) Extract and normalize content

Normalize the parsed JSON into canonical fields, for example:

  • Participants: lowercased emails and display names
  • Subject: strip Re: and Fwd: prefixes
  • Bodies: plain text body plus HTML-stripped body. Compute SHA-256 of body for dedupe.
  • Attachments: compute content hash, media type, size, and safe filename

6) Index for search

Index a compact document into OpenSearch. Keep bodies concise to control index size, and store attachments in object storage with a text extraction step only for supported types.

PUT email-archive
{
  "mappings": {
    "properties": {
      "id": {"type": "keyword"},
      "from": {"type": "keyword"},
      "to": {"type": "keyword"},
      "cc": {"type": "keyword"},
      "subject": {"type": "text"},
      "sent_at": {"type": "date"},
      "has_attachments": {"type": "boolean"},
      "body_text": {"type": "text"},
      "tags": {"type": "keyword"},
      "sha256": {"type": "keyword"}
    }
  }
}

7) Handle attachments safely

  • Quarantine attachments for scanning if needed, then move to a read-optimized bucket path.
  • Record hash and MIME type. Extract text from PDFs and DOCX using a worker with resource limits.
  • Attach extracted text to the index as a separate field like attachment_text for selective indexing.

8) Implement legal hold and retention

  • Retention policy via object lifecycle rules and a background task for database and index cleanup.
  • Legal hold overrides retention. Toggle legal_hold, disable delete jobs for those records.
  • Write an append-only audit table for delete events with reason, user, and timestamps.

9) Idempotency and replay

Use a deterministic idempotency key such as HMAC(message_id + from + sent_at). Upserts in the database, conditional puts to object storage, and index updates by document id make reprocessing safe. Keep a replay job that can reindex from parsed_uri for a time window.

10) Backfill and monitoring

  • Backfill from historical .mbox or .eml dumps through the same pipeline to keep parity.
  • Emit metrics: ingestion_lag_seconds, index_lag_seconds, parse_fail_rate, queue_depth, and storage_cost_per_gb.
  • Set SLOs like 95 percent of messages searchable within 60 seconds.

Webhook and API Integration Examples

Backend-developers can wire the parser into any stack. Below are concise examples that work across languages and infrastructure.

Python worker for storage and indexing

import hashlib, json, os
from datetime import datetime
from opensearchpy import OpenSearch
import boto3
import psycopg2

s3 = boto3.client('s3')
os_client = OpenSearch([{'host': os.getenv('OS_HOST'), 'port': 9200}], http_auth=(os.getenv('OS_USER'), os.getenv('OS_PASS')))
pg = psycopg2.connect(os.getenv('PG_DSN'))

def store_email(payload):
  msg_id = payload['id']
  raw_bytes = payload['raw']  # base64 or bytes depending on provider
  parsed = payload['parsed']

  sha = hashlib.sha256(raw_bytes if isinstance(raw_bytes, bytes) else raw_bytes.encode()).hexdigest()
  key_prefix = f"emails/{datetime.utcnow():%Y/%m/%d}/{msg_id}"
  s3.put_object(Bucket=os.getenv('BUCKET'), Key=f"{key_prefix}/raw.eml", Body=raw_bytes)
  s3.put_object(Bucket=os.getenv('BUCKET'), Key=f"{key_prefix}/parsed.json", Body=json.dumps(parsed).encode())

  with pg, pg.cursor() as cur:
    cur.execute("""
      INSERT INTO email_messages (id, message_id, from_addr, to_addrs, subject, sent_at, has_attachments,
        size_bytes, sha256, raw_uri, parsed_uri, parsed)
      VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)
      ON CONFLICT (id) DO UPDATE SET sha256 = EXCLUDED.sha256
    """, (
      msg_id, parsed.get('headers', {}).get('Message-ID'), parsed['from']['address'],
      [r['address'] for r in parsed.get('to', [])],
      parsed.get('subject'), parsed.get('date'), bool(parsed.get('attachments')),
      parsed.get('size', 0), sha,
      f"s3://{os.getenv('BUCKET')}/{key_prefix}/raw.eml",
      f"s3://{os.getenv('BUCKET')}/{key_prefix}/parsed.json",
      json.dumps(parsed)
    ))

  doc = {
    "id": msg_id,
    "from": parsed['from']['address'],
    "to": [r['address'] for r in parsed.get('to', [])],
    "subject": parsed.get('subject'),
    "body_text": parsed.get('text_body') or "",
    "sent_at": parsed.get('date'),
    "has_attachments": bool(parsed.get('attachments')),
    "sha256": sha
  }
  os_client.index(index="email-archive", id=msg_id, body=doc)

Go signature validation helper

func VerifySignature(body []byte, sent string, secret string) bool {
  mac := hmac.New(sha256.New, []byte(secret))
  mac.Write(body)
  expected := hex.EncodeToString(mac.Sum(nil))
  return hmac.Equal([]byte(strings.ToLower(sent)), []byte(expected))
}

Integration with Existing Tools

You do not need to rewrite your stack to adopt email archival. Drop the webhook into your API layer or a lightweight ingestion microservice, then wire to the technologies you already trust.

  • Object storage - Amazon S3 with KMS, Google Cloud Storage, or Azure Blob Storage. Use lifecycle transitions to Glacier or Archive tiers after 30-90 days.
  • Search - OpenSearch, Elasticsearch, or Typesense for fast queries and aggregations. Use index templates and ILM for hot-warm-cold patterns.
  • Database - Postgres with JSONB for flexible, queryable metadata and GIN indexes. MySQL with generated columns also works.
  • Queues - SQS, Pub/Sub, Kafka or RabbitMQ to smooth bursts and implement retries with backoff.
  • Observability - OpenTelemetry traces for end-to-end latency, Prometheus and Grafana dashboards, or Datadog monitors on queue depth and error rates.
  • Security workflows - DLP scanning, SIEM forwarding, and KMS key rotation. Tokenize PII where possible and maintain mapping in a restricted vault.

For broader email infrastructure planning, see Email Infrastructure Checklist for SaaS Platforms and discovery ideas in Top Inbound Email Processing Ideas for SaaS Platforms. If you archive support mailboxes, also review Email Infrastructure Checklist for Customer Support Teams.

When pairing your ingestion layer with MailParse, you get predictable JSON for headers, bodies, and attachments, which reduces custom parsing code and stabilizes your storage and indexing schema.

Measuring Success

Backend engineers need objective metrics to know the archive is healthy and cost-effective. Track these KPIs:

  • Ingestion latency - time from provider receipt to durable storage commit. Target p95 under 2 seconds for webhooks.
  • Index freshness - time from durable commit to searchable. Target p95 under 60 seconds for hot data.
  • Parse failure rate - ratio of failed to total messages. Keep under 0.1 percent. Alert on spikes by attachment type or provider.
  • Search latency - p95 for common queries like subject or from filters. Target under 200 ms on hot shards.
  • Storage cost per GB - monitor monthly spend in object storage and index storage. Apply lifecycle rules to keep costs predictable.
  • Deduplication yield - percentage of messages deduped by hash or Message-ID. Helps quantify savings and data hygiene.
  • Policy compliance - number of messages past retention with legal_hold false. Should be zero.

Implement dashboards with SLOs and error budgets. Add tracing around webhook receipt, queue enqueue, storage write, and index update to isolate bottlenecks.

Conclusion

Email archival done right is a pipeline problem that backend developers are uniquely prepared to solve. Parse early, store both raw and structured copies, and index thoughtfully. Keep the write path fast and durable, the read path flexible, and the policy engine simple but auditable. If you adopt a parsing front end like MailParse, you spend less time wrangling MIME and more time delivering reliable retention, search, and legal hold capabilities to your organization.

FAQ

How do I ensure idempotent ingestion if a webhook retries?

Use a deterministic idempotency key derived from the message headers and content hash. Upsert in the database on primary key id, and use conditional object storage puts with If-None-Match. Update the index by document id, not by insert-only.

What should I index, and what should I leave in object storage?

Index subjects, participants, sent dates, and a trimmed plain text body. Keep large HTML bodies, inline images, and attachments in object storage. Only extract and index attachment text when you need it for search or compliance, and purge after a retention threshold if allowed.

How do I implement legal holds without risking accidental deletion?

Add a legal_hold boolean on the record, and gate delete jobs on that flag. Use object storage tags that mirror the database flag for defense in depth. Write every delete intent to an append-only audit table and require a minimum two-person review for holds removal in production.

Is polling viable compared to webhooks?

Yes, if your environment restricts inbound traffic. Polling trades latency for simplicity. Poll in small batches, record the last seen cursor, and apply the same idempotency rules. When possible, use webhooks for lower latency and cost.

How does this approach scale with millions of emails per day?

Horizontally. Scale the webhook receiver and workers behind a load balancer, shard by hash for queues, and partition hot indexes by day. Use object storage for near-infinite capacity and roll older indexes to warm nodes. Parsing at the edge with MailParse reduces CPU in your cluster and keeps the ingestion code path consistent at high volumes.

Related Articles

Email Deliverability Checklist for SaaS Platforms

This checklist helps SaaS teams ensure reliable email receipt by aligning domain strategy, DNS, SMTP security, MIME parsing, and webhook delivery with produc...

Email Infrastructure Checklist for SaaS Platforms

Use this checklist to design and operate a scalable email infrastructure for SaaS platforms that rely on inbound messages to drive product workflows. It cove...

Email Infrastructure Checklist for Customer Support Teams

This checklist helps customer support leaders build reliable email infrastructure that scales with ticket volume while protecting SLAs. It focuses on MX reco...

Ready to get started?

Start parsing inbound emails with MailParse today.

Get Started Free