Resend Channel API

AI-generated, awaiting review View as Markdown

Import from @flue/resend.

Exports

export {
  createResendChannel,
  type ChannelRoute,
  type JsonValue,
  type ResendChannel,
  type ResendChannelOptions,
  type ResendHandlerResult,
  type ResendWebhookDelivery,
  type ResendWebhookEvent,
  type ResendWebhookHandlerInput,
  type WebhookEvent,
  type WebhookEventPayload,
};

`createResendChannel()`

function createResendChannel<E extends Env = Env>(
  options: ResendChannelOptions<E>,
): ResendChannel<E>;

Creates one stateless Resend webhook channel. The callback runs only after the official Resend client verifies the exact request body and signed Svix headers.

`ResendChannelOptions`

interface ResendChannelOptions<E extends Env = Env> {
  client: Resend;
  webhookSecret: string;
  bodyLimit?: number;
  webhook(input: ResendWebhookHandlerInput<E>): ResendHandlerResult;
}

Field	Description
`client`	Project-owned official Resend SDK client.
`webhookSecret`	Signing secret for this Resend webhook endpoint.
`bodyLimit`	Maximum request-body size in bytes. Defaults to 1 MiB.
`webhook`	Receives each verified webhook event.

The constructor throws TypeError for a missing compatible client, empty signing secret, missing callback, or non-positive integer body limit.

Handler input

interface ResendWebhookHandlerInput<E extends Env = Env> {
  c: Context<E>;
  event: ResendWebhookEvent;
  delivery: ResendWebhookDelivery;
}

interface ResendWebhookDelivery {
  id: string;
  timestamp: string;
}

c is the authentic Hono context. delivery.id is the signed svix-id Resend documents for application-owned deduplication. delivery.timestamp is the signed Unix timestamp string from svix-timestamp.

Resend provides at-least-once delivery and does not guarantee ordering. The channel exposes delivery metadata but does not persist deduplication state or reorder events.

Handler result

type JsonValue = null | boolean | number | string | JsonValue[] | { [key: string]: JsonValue };

type ResendHandlerResult =
  | undefined
  | JsonValue
  | Response
  | Promise<undefined | JsonValue | Response>;

Returning nothing produces an empty 200. A JSON-compatible value becomes a JSON response. A normal Hono or Fetch Response passes through unchanged. A thrown callback propagates to the framework error handler.

Resend treats only 200 as a successful delivery and retries other statuses. Returning a non-200 Response therefore requests redelivery. The package does not impose a handler deadline.

`ResendChannel`

interface ResendChannel<E extends Env = Env> {
  readonly routes: readonly ChannelRoute<E>[];
}

interface ChannelRoute<E extends Env = Env> {
  readonly method: string;
  readonly path: string;
  readonly handler: Handler<E>;
}

routes contains one POST /webhook declaration. A file named channels/resend.ts is served at POST /channels/resend/webhook relative to the flue() mount.

The package does not expose conversation-key helpers. In particular, message_id identifies one email message rather than a stable thread root. Applications define any message grouping or reply-thread identity appropriate to their own persistence and authorization model.

`ResendWebhookEvent`

type ResendWebhookEvent = WebhookEventPayload;

ResendWebhookEvent is exactly the official Resend WebhookEventPayload union. The channel never reshapes a verified delivery: it forwards the provider payload verbatim with its native snake_case type, created_at, and event-specific data fields. switch (event.type) narrows each modeled variant:

Email: email.sent, email.scheduled, email.delivered, email.delivery_delayed, email.complained, email.bounced, email.opened, email.clicked, email.received, email.failed, and email.suppressed
Contacts: contact.created, contact.updated, and contact.deleted
Domains: domain.created, domain.updated, and domain.deleted

email.received contains message metadata and attachment descriptors, not the complete body or attachment content. Retrieve those later through the project-owned Resend client.

A verified event whose type is newer than the installed resend version is still forwarded at runtime — it is simply typed as the current official union rather than dropped or wrapped in a Flue-owned envelope. The channel never emits a type: 'unknown' shape. Inspect event.type defensively to handle an event your installed resend version predates.

Verification

The route requires application/json plus non-empty svix-id, svix-timestamp, and svix-signature headers. svix-timestamp must be a positive integer.

The channel retains the exact request bytes, decodes them as strict UTF-8, and calls:

client.webhooks.verify({
  payload,
  headers: {
    id: delivery.id,
    timestamp: delivery.timestamp,
    signature,
  },
  webhookSecret,
});

The official SDK verifies the signature and timestamp before application code runs. Unsupported media types receive 415; oversized bodies receive 413; missing or malformed headers, invalid UTF-8, and failed verification receive 400. A verified payload is rejected with 400 only when it is not an object or carries no non-empty string type; the channel applies no further Flue shape schema and does not re-validate the event families the official types already describe.

Application boundary

Receiving domains and MX records, webhook registration, API keys and signing secrets, deduplication, ordering recovery, message persistence, full body and attachment retrieval, outbound mail, replies, and model tools remain application concerns.

The SDK’s public declarations reference Buffer and React email types, so TypeScript consumers require @types/node and @types/react. Both peers are declaration-only and add no Node or React runtime code to a Worker bundle. The official client and verification path execute in Node and workerd without nodejs_compat.

See Resend setup for the project-owned client, message retrieval, delivery handling, and offline testing guidance.