4 · Email (SMTP)

# ZajLibrary — implementation playbook

You are a **senior implementation assistant** working inside the user’s real development environment (terminal, editor, git repo). You are **not** a documentation writer, tutor, or library editor.

**Mission:** Execute the procedure described below in the user’s real project workspace — create or modify the files and run the commands it specifies. Do not just summarize it.

## Metadata
- title: 4 · Email (SMTP)
- url: https://library.zajapps.com/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/04-email/
- shelf: Build & Create
- doc_type: implementation playbook
- status: current
- kind: playbook
- category: tech-stack
- subcategory: laravel
- topic: codecanyon
- phase: 6
- step_number: 4
- est_time: 20–45 min
- description: Wire transactional email through the admin panel, and learn the Froiden-family trap where a CustomConfigProvider loads SMTP from the database regardless of APP_ENV — meaning the panel's "APP_ENV changed" warning banner lies and .env MAIL_* values are ignored at runtime.
- tags: codecanyon, laravel, smtp, email

## Execution rules (binding)
- This is step 4 of phase 6 (20–45 min) — do only this step, then stop at its `## Checklist`.
- Follow `## Steps` in order. Do not skip steps or declare the work complete early.
- Respect `:::note[Who does this]`: 👤 **User** steps (browser, downloads, OAuth, moving files) need the human — wait for or instruct them; 🤖 **Agent** steps you run in the shell.
- After every command, compare its output to the `# Expected:` comment or ✅ bullet beneath it. If it differs, **stop, show what you got, and ask how to proceed** — do not guess or rewrite the procedure.
- Honor `:::caution` / `:::note` callouts as hard gates (a step may forbid a command at this stage).
- Do not mark the step done until every `## Checklist` item is genuinely satisfied.
- Scope: implement only what this page describes — no refactors, added features, or later-phase work unless the page says so.
- When reporting progress, cite the `##` / `###` headings you completed or got blocked on.
- Secrets: never put API keys, passwords, or `.env` values in frontend code, commits, or chat logs — use server-side `.env` / config only, and keep `.env` gitignored.

---

# 4 · Email (SMTP)

## TL;DR

**Objective** — wire transactional email and prove it actually sends — the hard part is finding **where** SMTP resolves at runtime, because the most common vendor family loads it from the DB and the panel's warning banner lies about it.

:::note[User part + done-when]
**👤 User part** — fill the SMTP fields in the admin panel, click the panel's **"Test SMTP"** button, and confirm a real password-reset email lands in an inbox; an agent runs the source greps and writes the `.env` fallback but can't read your mailbox.

**Done when** the runtime source of truth is confirmed against source, "Test SMTP" passes, a real reset email arrives end-to-end, and `shared/.env` carries real `MAIL_*` fallbacks. &nbsp;·&nbsp; **⏱ 20–45 min** &nbsp;·&nbsp; 🔀 mixed (👤 panel + inbox, 🤖 greps + `.env`).
:::

## Background

Transactional email is a **MUST** — password resets, invoices, and notifications all depend on it, and section 1 of [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) warned you not to change the admin email until mail works. The hard part isn't the SMTP fields; it's knowing **where the app actually reads them from** — and on the most common CodeCanyon vendor family, the admin UI actively lies about that.

:::caution[SSH artisan uses `$PHP_BIN`]
Any artisan you run over SSH here (config cache, test sends) must use the `$PHP_BIN` resolved on [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/), never bare `php`.
:::

## Steps

### 1. Find the real source of truth

Before touching any field, decide where SMTP config actually resolves at runtime. The brand survey ([page 2](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/02-survey-and-brand/)) already flagged whether the vendor ships a `CustomConfigProvider`; confirm it now.

```mermaid
flowchart TD
    Q{"Does a CustomConfigProvider /<br/>SettingsProvider rewrite mail config<br/>at boot from a DB table?"}
    Q -->|Yes — Froiden family| DB["DB table is truth<br/>(email_settings).<br/>Configure the ADMIN PANEL.<br/>.env MAIL_* = fallback only"]
    Q -->|No admin Email tab at all| ENV["Configure shared/.env MAIL_*<br/>(see Phase 8 email infra)"]
    Q -->|Panel present, no provider| PANEL["Admin panel writes config<br/>directly — use it"]
```

<Steps>

1. **Grep for a provider that rewrites mail config at runtime.**

   ```bash
   grep -rn "mail\.mailers\.smtp\|Config::set.*mail" app/Providers/ app/Http/Middleware/ 2>/dev/null | head
   find app/ -name "*ConfigProvider*" -o -name "*SettingsProvider*" 2>/dev/null
   # Expected: a provider that calls Config::set('mail...'), or no match
   ```

   - ✅ If a provider calls `Config::set('mail.mailers.smtp.*', DB::table(...))`, the **database overrides `.env`** and the admin panel is the source of truth; otherwise `.env` is.

</Steps>

:::danger[Froiden family — the "APP_ENV changed" banner LIES]
SocietyPro / ResiDoro / Worksuite / RentalPro and siblings register a `CustomConfigProvider` (e.g. `app/Providers/CustomConfigProvider.php`) that **unconditionally** loads SMTP from the `email_settings` table on every request (only `demo`/`development` skip it). The banner — *"you changed `APP_ENV=codecanyon`… SMTP details below won't be taken from here"* — fires on a naive `env('APP_ENV') !== 'codecanyon'` check and has **nothing** to do with actual SMTP resolution. Ignore it: fill the admin panel, save, done. `.env MAIL_*` is ignored at runtime (fallback only).
:::

The lesson generalizes beyond this one banner:

:::tip[Treat every vendor UI warning as a hypothesis, not a fact]
The cost of trusting the banner was 30+ minutes of debugging `.env`; the cost of verifying it was one `grep` + one file read (2 minutes). When a vendor banner implies a code-path change ("do X or Y breaks"), grep for the real decision point before acting.
:::

### 2. Configure SMTP in the admin panel

`Admin → Config → SMTP` (or `Settings → Email`). This is a panel form a person fills and a panel button a person clicks — the test send and the inbox check are human-verified.

:::note[Who does this]
👤 **User** fills the SMTP fields, clicks the panel's **"Test SMTP"** button, and confirms the password-reset email arrives in a real inbox — a browser action plus a mailbox check only a person completes.
:::

<Steps>

1. **Fill the SMTP fields** from your Phase 4 SMTP credentials + brand profile.

   | Field | Value |
   |---|---|
   | Mail From Name | App name (brand profile) |
   | Mail From Email | `admin@[DOMAIN]` |
   | SMTP Host | e.g. `smtp.hostinger.com` |
   | SMTP Port | `587` (TLS) or `465` (SSL) |
   | Username / Password | mailbox creds — paste the password via the **clipboard bridge** from [page 3 §1](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) |
   | Encryption | `TLS` (587) / `SSL` (465) |

   - ✅ All fields are filled from real credentials; the password was pasted via the clipboard bridge.

2. **Save, then click the panel's own "Test SMTP" button** — not `artisan tinker`. Tinker sends through Laravel's *default* mailer, which a CLI context may not have reconfigured via the provider yet.

   - ✅ "Test SMTP" succeeds and the dashboard "SMTP details are not correct" banner **disappears** — that's your real success signal.

3. **Trigger a password-reset on a test account** and confirm the email arrives.

   - ✅ A real password-reset email lands end-to-end in the inbox.

</Steps>

:::note[No admin Email tab at all?]
Configure `shared/.env` directly (`MAIL_MAILER`, `MAIL_HOST`, `MAIL_PORT`, `MAIL_USERNAME`, `MAIL_PASSWORD`, `MAIL_ENCRYPTION`, `MAIL_FROM_ADDRESS`, `MAIL_FROM_NAME`). Provider selection (SendGrid, Mailgun, SES, Brevo, Resend, Titan) belongs to Phase 8 email infrastructure.
:::

### 3. Set a sensible `.env` fallback (defence in depth)

Even when the DB path is truth, leave **real** `MAIL_*` values in `shared/.env`. If the `email_settings` row is corrupted or the provider query fails, Laravel falls back to `.env`. Real values = mail still works; garbage values = mail breaks silently.

<Steps>

1. **Append the fallback idempotently** (Python-free here, but `grep -q` guards against duplicates; special-char passwords stay out of this block).

   ```bash
   grep -q "^MAIL_HOST=" shared/.env || cat >> shared/.env <<'EOF'
   # SMTP fallback (.env defaults; runtime config overridden by CustomConfigProvider from DB)
   MAIL_MAILER=smtp
   MAIL_HOST=smtp.hostinger.com
   MAIL_PORT=465
   MAIL_ENCRYPTION=ssl
   MAIL_FROM_ADDRESS=admin@[DOMAIN]
   MAIL_FROM_NAME="[APP_NAME]"
   EOF
   # Expected: the MAIL_* block is appended once (no duplicate on re-run)
   ```

   - ✅ `shared/.env` carries real `MAIL_*` fallback values, appended only once.

</Steps>

### 4. Review email templates & hygiene

<Steps>

1. **Review the email templates** (if the vendor exposes `Admin → Email Templates`) — welcome, password-reset, invoice, and notification — setting the sender name, logo, and footer to match your brand (the email header logo you uploaded on page 3 lives here on some vendors).

   - ✅ Sender name, logo, and footer match the brand on every reviewed template.

2. **Confirm no SMTP credentials are committed to git** — they belong in `shared/.env` on the server and your password manager only.

   - ✅ No SMTP secrets are tracked in git.

</Steps>

## Checklist

Do not mark this step done until **every** box below is checked.

- [ ] **🤖 Source confirmed** — where SMTP resolves at runtime (DB-via-provider vs `.env`) is confirmed; the Froiden banner was verified against source, not trusted.
- [ ] **👤 Panel SMTP saved** — "Test SMTP" passes and the dashboard error banner is gone.
- [ ] **👤 Reset email received** — a real password-reset email arrived end-to-end.
- [ ] **🤖 `.env` fallback set** — `shared/.env` carries **real** `MAIL_*` fallback values; no SMTP secrets in git.
- [ ] **👤 Templates reviewed** — sender, logo, footer reviewed if the vendor exposes them.

:::next[Next step]
[5 · Payments & plans](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/05-payments-and-plans/)
:::

# 4 · Email (SMTP)

> Source: https://library.zajapps.com/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/04-email/

## TL;DR

**Objective** — wire transactional email and prove it actually sends — the hard part is finding **where** SMTP resolves at runtime, because the most common vendor family loads it from the DB and the panel's warning banner lies about it.

:::note[User part + done-when]
**👤 User part** — fill the SMTP fields in the admin panel, click the panel's **"Test SMTP"** button, and confirm a real password-reset email lands in an inbox; an agent runs the source greps and writes the `.env` fallback but can't read your mailbox.

**Done when** the runtime source of truth is confirmed against source, "Test SMTP" passes, a real reset email arrives end-to-end, and `shared/.env` carries real `MAIL_*` fallbacks. &nbsp;·&nbsp; **⏱ 20–45 min** &nbsp;·&nbsp; 🔀 mixed (👤 panel + inbox, 🤖 greps + `.env`).
:::

## Background

Transactional email is a **MUST** — password resets, invoices, and notifications all depend on it, and section 1 of [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) warned you not to change the admin email until mail works. The hard part isn't the SMTP fields; it's knowing **where the app actually reads them from** — and on the most common CodeCanyon vendor family, the admin UI actively lies about that.

:::caution[SSH artisan uses `$PHP_BIN`]
Any artisan you run over SSH here (config cache, test sends) must use the `$PHP_BIN` resolved on [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/), never bare `php`.
:::

## Steps

### 1. Find the real source of truth

Before touching any field, decide where SMTP config actually resolves at runtime. The brand survey ([page 2](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/02-survey-and-brand/)) already flagged whether the vendor ships a `CustomConfigProvider`; confirm it now.

```mermaid
flowchart TD
    Q{"Does a CustomConfigProvider /<br/>SettingsProvider rewrite mail config<br/>at boot from a DB table?"}
    Q -->|Yes — Froiden family| DB["DB table is truth<br/>(email_settings).<br/>Configure the ADMIN PANEL.<br/>.env MAIL_* = fallback only"]
    Q -->|No admin Email tab at all| ENV["Configure shared/.env MAIL_*<br/>(see Phase 8 email infra)"]
    Q -->|Panel present, no provider| PANEL["Admin panel writes config<br/>directly — use it"]
```

<Steps>

1. **Grep for a provider that rewrites mail config at runtime.**

   ```bash
   grep -rn "mail\.mailers\.smtp\|Config::set.*mail" app/Providers/ app/Http/Middleware/ 2>/dev/null | head
   find app/ -name "*ConfigProvider*" -o -name "*SettingsProvider*" 2>/dev/null
   # Expected: a provider that calls Config::set('mail...'), or no match
   ```

   - ✅ If a provider calls `Config::set('mail.mailers.smtp.*', DB::table(...))`, the **database overrides `.env`** and the admin panel is the source of truth; otherwise `.env` is.

</Steps>

:::danger[Froiden family — the "APP_ENV changed" banner LIES]
SocietyPro / ResiDoro / Worksuite / RentalPro and siblings register a `CustomConfigProvider` (e.g. `app/Providers/CustomConfigProvider.php`) that **unconditionally** loads SMTP from the `email_settings` table on every request (only `demo`/`development` skip it). The banner — *"you changed `APP_ENV=codecanyon`… SMTP details below won't be taken from here"* — fires on a naive `env('APP_ENV') !== 'codecanyon'` check and has **nothing** to do with actual SMTP resolution. Ignore it: fill the admin panel, save, done. `.env MAIL_*` is ignored at runtime (fallback only).
:::

The lesson generalizes beyond this one banner:

:::tip[Treat every vendor UI warning as a hypothesis, not a fact]
The cost of trusting the banner was 30+ minutes of debugging `.env`; the cost of verifying it was one `grep` + one file read (2 minutes). When a vendor banner implies a code-path change ("do X or Y breaks"), grep for the real decision point before acting.
:::

### 2. Configure SMTP in the admin panel

`Admin → Config → SMTP` (or `Settings → Email`). This is a panel form a person fills and a panel button a person clicks — the test send and the inbox check are human-verified.

:::note[Who does this]
👤 **User** fills the SMTP fields, clicks the panel's **"Test SMTP"** button, and confirms the password-reset email arrives in a real inbox — a browser action plus a mailbox check only a person completes.
:::

<Steps>

1. **Fill the SMTP fields** from your Phase 4 SMTP credentials + brand profile.

   | Field | Value |
   |---|---|
   | Mail From Name | App name (brand profile) |
   | Mail From Email | `admin@[DOMAIN]` |
   | SMTP Host | e.g. `smtp.hostinger.com` |
   | SMTP Port | `587` (TLS) or `465` (SSL) |
   | Username / Password | mailbox creds — paste the password via the **clipboard bridge** from [page 3 §1](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) |
   | Encryption | `TLS` (587) / `SSL` (465) |

   - ✅ All fields are filled from real credentials; the password was pasted via the clipboard bridge.

2. **Save, then click the panel's own "Test SMTP" button** — not `artisan tinker`. Tinker sends through Laravel's *default* mailer, which a CLI context may not have reconfigured via the provider yet.

   - ✅ "Test SMTP" succeeds and the dashboard "SMTP details are not correct" banner **disappears** — that's your real success signal.

3. **Trigger a password-reset on a test account** and confirm the email arrives.

   - ✅ A real password-reset email lands end-to-end in the inbox.

</Steps>

:::note[No admin Email tab at all?]
Configure `shared/.env` directly (`MAIL_MAILER`, `MAIL_HOST`, `MAIL_PORT`, `MAIL_USERNAME`, `MAIL_PASSWORD`, `MAIL_ENCRYPTION`, `MAIL_FROM_ADDRESS`, `MAIL_FROM_NAME`). Provider selection (SendGrid, Mailgun, SES, Brevo, Resend, Titan) belongs to Phase 8 email infrastructure.
:::

### 3. Set a sensible `.env` fallback (defence in depth)

Even when the DB path is truth, leave **real** `MAIL_*` values in `shared/.env`. If the `email_settings` row is corrupted or the provider query fails, Laravel falls back to `.env`. Real values = mail still works; garbage values = mail breaks silently.

<Steps>

1. **Append the fallback idempotently** (Python-free here, but `grep -q` guards against duplicates; special-char passwords stay out of this block).

   ```bash
   grep -q "^MAIL_HOST=" shared/.env || cat >> shared/.env <<'EOF'
   # SMTP fallback (.env defaults; runtime config overridden by CustomConfigProvider from DB)
   MAIL_MAILER=smtp
   MAIL_HOST=smtp.hostinger.com
   MAIL_PORT=465
   MAIL_ENCRYPTION=ssl
   MAIL_FROM_ADDRESS=admin@[DOMAIN]
   MAIL_FROM_NAME="[APP_NAME]"
   EOF
   # Expected: the MAIL_* block is appended once (no duplicate on re-run)
   ```

   - ✅ `shared/.env` carries real `MAIL_*` fallback values, appended only once.

</Steps>

### 4. Review email templates & hygiene

<Steps>

1. **Review the email templates** (if the vendor exposes `Admin → Email Templates`) — welcome, password-reset, invoice, and notification — setting the sender name, logo, and footer to match your brand (the email header logo you uploaded on page 3 lives here on some vendors).

   - ✅ Sender name, logo, and footer match the brand on every reviewed template.

2. **Confirm no SMTP credentials are committed to git** — they belong in `shared/.env` on the server and your password manager only.

   - ✅ No SMTP secrets are tracked in git.

</Steps>

## Checklist

Do not mark this step done until **every** box below is checked.

- [ ] **🤖 Source confirmed** — where SMTP resolves at runtime (DB-via-provider vs `.env`) is confirmed; the Froiden banner was verified against source, not trusted.
- [ ] **👤 Panel SMTP saved** — "Test SMTP" passes and the dashboard error banner is gone.
- [ ] **👤 Reset email received** — a real password-reset email arrived end-to-end.
- [ ] **🤖 `.env` fallback set** — `shared/.env` carries **real** `MAIL_*` fallback values; no SMTP secrets in git.
- [ ] **👤 Templates reviewed** — sender, logo, footer reviewed if the vendor exposes them.

:::next[Next step]
[5 · Payments & plans](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/05-payments-and-plans/)
:::

TL;DR

Objective — wire transactional email and prove it actually sends — the hard part is finding where SMTP resolves at runtime, because the most common vendor family loads it from the DB and the panel’s warning banner lies about it.

Background

Transactional email is a MUST — password resets, invoices, and notifications all depend on it, and section 1 of page 3 warned you not to change the admin email until mail works. The hard part isn’t the SMTP fields; it’s knowing where the app actually reads them from — and on the most common CodeCanyon vendor family, the admin UI actively lies about that.

Steps

1. Find the real source of truth

Before touching any field, decide where SMTP config actually resolves at runtime. The brand survey (page 2) already flagged whether the vendor ships a CustomConfigProvider; confirm it now.

flowchart TD
    Q{"Does a CustomConfigProvider /<br/>SettingsProvider rewrite mail config<br/>at boot from a DB table?"}
    Q -->|Yes — Froiden family| DB["DB table is truth<br/>(email_settings).<br/>Configure the ADMIN PANEL.<br/>.env MAIL_* = fallback only"]
    Q -->|No admin Email tab at all| ENV["Configure shared/.env MAIL_*<br/>(see Phase 8 email infra)"]
    Q -->|Panel present, no provider| PANEL["Admin panel writes config<br/>directly — use it"]

Grep for a provider that rewrites mail config at runtime.

grep -rn "mail\.mailers\.smtp\|Config::set.*mail" app/Providers/ app/Http/Middleware/ 2>/dev/null | head
find app/ -name "*ConfigProvider*" -o -name "*SettingsProvider*" 2>/dev/null
# Expected: a provider that calls Config::set('mail...'), or no match

✅ If a provider calls Config::set('mail.mailers.smtp.*', DB::table(...)), the database overrides .env and the admin panel is the source of truth; otherwise .env is.

The lesson generalizes beyond this one banner:

2. Configure SMTP in the admin panel

Admin → Config → SMTP (or Settings → Email). This is a panel form a person fills and a panel button a person clicks — the test send and the inbox check are human-verified.

Fill the SMTP fields from your Phase 4 SMTP credentials + brand profile.

Field	Value
Mail From Name	App name (brand profile)
Mail From Email	`admin@[DOMAIN]`
SMTP Host	e.g. `smtp.hostinger.com`
SMTP Port	`587` (TLS) or `465` (SSL)
Username / Password	mailbox creds — paste the password via the clipboard bridge from page 3 §1
Encryption	`TLS` (587) / `SSL` (465)

✅ All fields are filled from real credentials; the password was pasted via the clipboard bridge.

Save, then click the panel’s own “Test SMTP” button — not artisan tinker. Tinker sends through Laravel’s default mailer, which a CLI context may not have reconfigured via the provider yet.
- ✅ “Test SMTP” succeeds and the dashboard “SMTP details are not correct” banner disappears — that’s your real success signal.
Trigger a password-reset on a test account and confirm the email arrives.
- ✅ A real password-reset email lands end-to-end in the inbox.

3. Set a sensible `.env` fallback (defence in depth)

Even when the DB path is truth, leave real MAIL_* values in shared/.env. If the email_settings row is corrupted or the provider query fails, Laravel falls back to .env. Real values = mail still works; garbage values = mail breaks silently.

Append the fallback idempotently (Python-free here, but grep -q guards against duplicates; special-char passwords stay out of this block).

grep -q "^MAIL_HOST=" shared/.env || cat >> shared/.env <<'EOF'
# SMTP fallback (.env defaults; runtime config overridden by CustomConfigProvider from DB)
MAIL_MAILER=smtp
MAIL_HOST=smtp.hostinger.com
MAIL_PORT=465
MAIL_ENCRYPTION=ssl
MAIL_FROM_ADDRESS=admin@[DOMAIN]
MAIL_FROM_NAME="[APP_NAME]"
EOF
# Expected: the MAIL_* block is appended once (no duplicate on re-run)

✅ shared/.env carries real MAIL_* fallback values, appended only once.

4. Review email templates & hygiene

Review the email templates (if the vendor exposes Admin → Email Templates) — welcome, password-reset, invoice, and notification — setting the sender name, logo, and footer to match your brand (the email header logo you uploaded on page 3 lives here on some vendors).
- ✅ Sender name, logo, and footer match the brand on every reviewed template.
Confirm no SMTP credentials are committed to git — they belong in shared/.env on the server and your password manager only.
- ✅ No SMTP secrets are tracked in git.

Checklist

Do not mark this step done until every box below is checked.

🤖 Source confirmed — where SMTP resolves at runtime (DB-via-provider vs .env) is confirmed; the Froiden banner was verified against source, not trusted.
👤 Panel SMTP saved — “Test SMTP” passes and the dashboard error banner is gone.
👤 Reset email received — a real password-reset email arrived end-to-end.
🤖 .env fallback set — shared/.env carries real MAIL_* fallback values; no SMTP secrets in git.
👤 Templates reviewed — sender, logo, footer reviewed if the vendor exposes them.

5 · Payments & plans

# ZajLibrary — implementation playbook

You are a **senior implementation assistant** working inside the user’s real development environment (terminal, editor, git repo). You are **not** a documentation writer, tutor, or library editor.

**Mission:** Execute the procedure described below in the user’s real project workspace — create or modify the files and run the commands it specifies. Do not just summarize it.

## Metadata
- title: 4 · Email (SMTP)
- url: https://library.zajapps.com/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/04-email/
- shelf: Build & Create
- doc_type: implementation playbook
- status: current
- kind: playbook
- category: tech-stack
- subcategory: laravel
- topic: codecanyon
- phase: 6
- step_number: 4
- est_time: 20–45 min
- description: Wire transactional email through the admin panel, and learn the Froiden-family trap where a CustomConfigProvider loads SMTP from the database regardless of APP_ENV — meaning the panel's "APP_ENV changed" warning banner lies and .env MAIL_* values are ignored at runtime.
- tags: codecanyon, laravel, smtp, email

## Execution rules (binding)
- This is step 4 of phase 6 (20–45 min) — do only this step, then stop at its `## Checklist`.
- Follow `## Steps` in order. Do not skip steps or declare the work complete early.
- Respect `:::note[Who does this]`: 👤 **User** steps (browser, downloads, OAuth, moving files) need the human — wait for or instruct them; 🤖 **Agent** steps you run in the shell.
- After every command, compare its output to the `# Expected:` comment or ✅ bullet beneath it. If it differs, **stop, show what you got, and ask how to proceed** — do not guess or rewrite the procedure.
- Honor `:::caution` / `:::note` callouts as hard gates (a step may forbid a command at this stage).
- Do not mark the step done until every `## Checklist` item is genuinely satisfied.
- Scope: implement only what this page describes — no refactors, added features, or later-phase work unless the page says so.
- When reporting progress, cite the `##` / `###` headings you completed or got blocked on.
- Secrets: never put API keys, passwords, or `.env` values in frontend code, commits, or chat logs — use server-side `.env` / config only, and keep `.env` gitignored.

---

# 4 · Email (SMTP)

## TL;DR

**Objective** — wire transactional email and prove it actually sends — the hard part is finding **where** SMTP resolves at runtime, because the most common vendor family loads it from the DB and the panel's warning banner lies about it.

:::note[User part + done-when]
**👤 User part** — fill the SMTP fields in the admin panel, click the panel's **"Test SMTP"** button, and confirm a real password-reset email lands in an inbox; an agent runs the source greps and writes the `.env` fallback but can't read your mailbox.

**Done when** the runtime source of truth is confirmed against source, "Test SMTP" passes, a real reset email arrives end-to-end, and `shared/.env` carries real `MAIL_*` fallbacks. &nbsp;·&nbsp; **⏱ 20–45 min** &nbsp;·&nbsp; 🔀 mixed (👤 panel + inbox, 🤖 greps + `.env`).
:::

## Background

Transactional email is a **MUST** — password resets, invoices, and notifications all depend on it, and section 1 of [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) warned you not to change the admin email until mail works. The hard part isn't the SMTP fields; it's knowing **where the app actually reads them from** — and on the most common CodeCanyon vendor family, the admin UI actively lies about that.

:::caution[SSH artisan uses `$PHP_BIN`]
Any artisan you run over SSH here (config cache, test sends) must use the `$PHP_BIN` resolved on [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/), never bare `php`.
:::

## Steps

### 1. Find the real source of truth

Before touching any field, decide where SMTP config actually resolves at runtime. The brand survey ([page 2](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/02-survey-and-brand/)) already flagged whether the vendor ships a `CustomConfigProvider`; confirm it now.

```mermaid
flowchart TD
    Q{"Does a CustomConfigProvider /<br/>SettingsProvider rewrite mail config<br/>at boot from a DB table?"}
    Q -->|Yes — Froiden family| DB["DB table is truth<br/>(email_settings).<br/>Configure the ADMIN PANEL.<br/>.env MAIL_* = fallback only"]
    Q -->|No admin Email tab at all| ENV["Configure shared/.env MAIL_*<br/>(see Phase 8 email infra)"]
    Q -->|Panel present, no provider| PANEL["Admin panel writes config<br/>directly — use it"]
```

<Steps>

1. **Grep for a provider that rewrites mail config at runtime.**

   ```bash
   grep -rn "mail\.mailers\.smtp\|Config::set.*mail" app/Providers/ app/Http/Middleware/ 2>/dev/null | head
   find app/ -name "*ConfigProvider*" -o -name "*SettingsProvider*" 2>/dev/null
   # Expected: a provider that calls Config::set('mail...'), or no match
   ```

   - ✅ If a provider calls `Config::set('mail.mailers.smtp.*', DB::table(...))`, the **database overrides `.env`** and the admin panel is the source of truth; otherwise `.env` is.

</Steps>

:::danger[Froiden family — the "APP_ENV changed" banner LIES]
SocietyPro / ResiDoro / Worksuite / RentalPro and siblings register a `CustomConfigProvider` (e.g. `app/Providers/CustomConfigProvider.php`) that **unconditionally** loads SMTP from the `email_settings` table on every request (only `demo`/`development` skip it). The banner — *"you changed `APP_ENV=codecanyon`… SMTP details below won't be taken from here"* — fires on a naive `env('APP_ENV') !== 'codecanyon'` check and has **nothing** to do with actual SMTP resolution. Ignore it: fill the admin panel, save, done. `.env MAIL_*` is ignored at runtime (fallback only).
:::

The lesson generalizes beyond this one banner:

:::tip[Treat every vendor UI warning as a hypothesis, not a fact]
The cost of trusting the banner was 30+ minutes of debugging `.env`; the cost of verifying it was one `grep` + one file read (2 minutes). When a vendor banner implies a code-path change ("do X or Y breaks"), grep for the real decision point before acting.
:::

### 2. Configure SMTP in the admin panel

`Admin → Config → SMTP` (or `Settings → Email`). This is a panel form a person fills and a panel button a person clicks — the test send and the inbox check are human-verified.

:::note[Who does this]
👤 **User** fills the SMTP fields, clicks the panel's **"Test SMTP"** button, and confirms the password-reset email arrives in a real inbox — a browser action plus a mailbox check only a person completes.
:::

<Steps>

1. **Fill the SMTP fields** from your Phase 4 SMTP credentials + brand profile.

   | Field | Value |
   |---|---|
   | Mail From Name | App name (brand profile) |
   | Mail From Email | `admin@[DOMAIN]` |
   | SMTP Host | e.g. `smtp.hostinger.com` |
   | SMTP Port | `587` (TLS) or `465` (SSL) |
   | Username / Password | mailbox creds — paste the password via the **clipboard bridge** from [page 3 §1](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) |
   | Encryption | `TLS` (587) / `SSL` (465) |

   - ✅ All fields are filled from real credentials; the password was pasted via the clipboard bridge.

2. **Save, then click the panel's own "Test SMTP" button** — not `artisan tinker`. Tinker sends through Laravel's *default* mailer, which a CLI context may not have reconfigured via the provider yet.

   - ✅ "Test SMTP" succeeds and the dashboard "SMTP details are not correct" banner **disappears** — that's your real success signal.

3. **Trigger a password-reset on a test account** and confirm the email arrives.

   - ✅ A real password-reset email lands end-to-end in the inbox.

</Steps>

:::note[No admin Email tab at all?]
Configure `shared/.env` directly (`MAIL_MAILER`, `MAIL_HOST`, `MAIL_PORT`, `MAIL_USERNAME`, `MAIL_PASSWORD`, `MAIL_ENCRYPTION`, `MAIL_FROM_ADDRESS`, `MAIL_FROM_NAME`). Provider selection (SendGrid, Mailgun, SES, Brevo, Resend, Titan) belongs to Phase 8 email infrastructure.
:::

### 3. Set a sensible `.env` fallback (defence in depth)

Even when the DB path is truth, leave **real** `MAIL_*` values in `shared/.env`. If the `email_settings` row is corrupted or the provider query fails, Laravel falls back to `.env`. Real values = mail still works; garbage values = mail breaks silently.

<Steps>

1. **Append the fallback idempotently** (Python-free here, but `grep -q` guards against duplicates; special-char passwords stay out of this block).

   ```bash
   grep -q "^MAIL_HOST=" shared/.env || cat >> shared/.env <<'EOF'
   # SMTP fallback (.env defaults; runtime config overridden by CustomConfigProvider from DB)
   MAIL_MAILER=smtp
   MAIL_HOST=smtp.hostinger.com
   MAIL_PORT=465
   MAIL_ENCRYPTION=ssl
   MAIL_FROM_ADDRESS=admin@[DOMAIN]
   MAIL_FROM_NAME="[APP_NAME]"
   EOF
   # Expected: the MAIL_* block is appended once (no duplicate on re-run)
   ```

   - ✅ `shared/.env` carries real `MAIL_*` fallback values, appended only once.

</Steps>

### 4. Review email templates & hygiene

<Steps>

1. **Review the email templates** (if the vendor exposes `Admin → Email Templates`) — welcome, password-reset, invoice, and notification — setting the sender name, logo, and footer to match your brand (the email header logo you uploaded on page 3 lives here on some vendors).

   - ✅ Sender name, logo, and footer match the brand on every reviewed template.

2. **Confirm no SMTP credentials are committed to git** — they belong in `shared/.env` on the server and your password manager only.

   - ✅ No SMTP secrets are tracked in git.

</Steps>

## Checklist

Do not mark this step done until **every** box below is checked.

- [ ] **🤖 Source confirmed** — where SMTP resolves at runtime (DB-via-provider vs `.env`) is confirmed; the Froiden banner was verified against source, not trusted.
- [ ] **👤 Panel SMTP saved** — "Test SMTP" passes and the dashboard error banner is gone.
- [ ] **👤 Reset email received** — a real password-reset email arrived end-to-end.
- [ ] **🤖 `.env` fallback set** — `shared/.env` carries **real** `MAIL_*` fallback values; no SMTP secrets in git.
- [ ] **👤 Templates reviewed** — sender, logo, footer reviewed if the vendor exposes them.

:::next[Next step]
[5 · Payments & plans](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/05-payments-and-plans/)
:::

# 4 · Email (SMTP)

> Source: https://library.zajapps.com/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/04-email/

## TL;DR

**Objective** — wire transactional email and prove it actually sends — the hard part is finding **where** SMTP resolves at runtime, because the most common vendor family loads it from the DB and the panel's warning banner lies about it.

:::note[User part + done-when]
**👤 User part** — fill the SMTP fields in the admin panel, click the panel's **"Test SMTP"** button, and confirm a real password-reset email lands in an inbox; an agent runs the source greps and writes the `.env` fallback but can't read your mailbox.

**Done when** the runtime source of truth is confirmed against source, "Test SMTP" passes, a real reset email arrives end-to-end, and `shared/.env` carries real `MAIL_*` fallbacks. &nbsp;·&nbsp; **⏱ 20–45 min** &nbsp;·&nbsp; 🔀 mixed (👤 panel + inbox, 🤖 greps + `.env`).
:::

## Background

Transactional email is a **MUST** — password resets, invoices, and notifications all depend on it, and section 1 of [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) warned you not to change the admin email until mail works. The hard part isn't the SMTP fields; it's knowing **where the app actually reads them from** — and on the most common CodeCanyon vendor family, the admin UI actively lies about that.

:::caution[SSH artisan uses `$PHP_BIN`]
Any artisan you run over SSH here (config cache, test sends) must use the `$PHP_BIN` resolved on [page 3](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/), never bare `php`.
:::

## Steps

### 1. Find the real source of truth

Before touching any field, decide where SMTP config actually resolves at runtime. The brand survey ([page 2](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/02-survey-and-brand/)) already flagged whether the vendor ships a `CustomConfigProvider`; confirm it now.

```mermaid
flowchart TD
    Q{"Does a CustomConfigProvider /<br/>SettingsProvider rewrite mail config<br/>at boot from a DB table?"}
    Q -->|Yes — Froiden family| DB["DB table is truth<br/>(email_settings).<br/>Configure the ADMIN PANEL.<br/>.env MAIL_* = fallback only"]
    Q -->|No admin Email tab at all| ENV["Configure shared/.env MAIL_*<br/>(see Phase 8 email infra)"]
    Q -->|Panel present, no provider| PANEL["Admin panel writes config<br/>directly — use it"]
```

<Steps>

1. **Grep for a provider that rewrites mail config at runtime.**

   ```bash
   grep -rn "mail\.mailers\.smtp\|Config::set.*mail" app/Providers/ app/Http/Middleware/ 2>/dev/null | head
   find app/ -name "*ConfigProvider*" -o -name "*SettingsProvider*" 2>/dev/null
   # Expected: a provider that calls Config::set('mail...'), or no match
   ```

   - ✅ If a provider calls `Config::set('mail.mailers.smtp.*', DB::table(...))`, the **database overrides `.env`** and the admin panel is the source of truth; otherwise `.env` is.

</Steps>

:::danger[Froiden family — the "APP_ENV changed" banner LIES]
SocietyPro / ResiDoro / Worksuite / RentalPro and siblings register a `CustomConfigProvider` (e.g. `app/Providers/CustomConfigProvider.php`) that **unconditionally** loads SMTP from the `email_settings` table on every request (only `demo`/`development` skip it). The banner — *"you changed `APP_ENV=codecanyon`… SMTP details below won't be taken from here"* — fires on a naive `env('APP_ENV') !== 'codecanyon'` check and has **nothing** to do with actual SMTP resolution. Ignore it: fill the admin panel, save, done. `.env MAIL_*` is ignored at runtime (fallback only).
:::

The lesson generalizes beyond this one banner:

:::tip[Treat every vendor UI warning as a hypothesis, not a fact]
The cost of trusting the banner was 30+ minutes of debugging `.env`; the cost of verifying it was one `grep` + one file read (2 minutes). When a vendor banner implies a code-path change ("do X or Y breaks"), grep for the real decision point before acting.
:::

### 2. Configure SMTP in the admin panel

`Admin → Config → SMTP` (or `Settings → Email`). This is a panel form a person fills and a panel button a person clicks — the test send and the inbox check are human-verified.

:::note[Who does this]
👤 **User** fills the SMTP fields, clicks the panel's **"Test SMTP"** button, and confirms the password-reset email arrives in a real inbox — a browser action plus a mailbox check only a person completes.
:::

<Steps>

1. **Fill the SMTP fields** from your Phase 4 SMTP credentials + brand profile.

   | Field | Value |
   |---|---|
   | Mail From Name | App name (brand profile) |
   | Mail From Email | `admin@[DOMAIN]` |
   | SMTP Host | e.g. `smtp.hostinger.com` |
   | SMTP Port | `587` (TLS) or `465` (SSL) |
   | Username / Password | mailbox creds — paste the password via the **clipboard bridge** from [page 3 §1](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/03-credentials-and-branding/) |
   | Encryption | `TLS` (587) / `SSL` (465) |

   - ✅ All fields are filled from real credentials; the password was pasted via the clipboard bridge.

2. **Save, then click the panel's own "Test SMTP" button** — not `artisan tinker`. Tinker sends through Laravel's *default* mailer, which a CLI context may not have reconfigured via the provider yet.

   - ✅ "Test SMTP" succeeds and the dashboard "SMTP details are not correct" banner **disappears** — that's your real success signal.

3. **Trigger a password-reset on a test account** and confirm the email arrives.

   - ✅ A real password-reset email lands end-to-end in the inbox.

</Steps>

:::note[No admin Email tab at all?]
Configure `shared/.env` directly (`MAIL_MAILER`, `MAIL_HOST`, `MAIL_PORT`, `MAIL_USERNAME`, `MAIL_PASSWORD`, `MAIL_ENCRYPTION`, `MAIL_FROM_ADDRESS`, `MAIL_FROM_NAME`). Provider selection (SendGrid, Mailgun, SES, Brevo, Resend, Titan) belongs to Phase 8 email infrastructure.
:::

### 3. Set a sensible `.env` fallback (defence in depth)

Even when the DB path is truth, leave **real** `MAIL_*` values in `shared/.env`. If the `email_settings` row is corrupted or the provider query fails, Laravel falls back to `.env`. Real values = mail still works; garbage values = mail breaks silently.

<Steps>

1. **Append the fallback idempotently** (Python-free here, but `grep -q` guards against duplicates; special-char passwords stay out of this block).

   ```bash
   grep -q "^MAIL_HOST=" shared/.env || cat >> shared/.env <<'EOF'
   # SMTP fallback (.env defaults; runtime config overridden by CustomConfigProvider from DB)
   MAIL_MAILER=smtp
   MAIL_HOST=smtp.hostinger.com
   MAIL_PORT=465
   MAIL_ENCRYPTION=ssl
   MAIL_FROM_ADDRESS=admin@[DOMAIN]
   MAIL_FROM_NAME="[APP_NAME]"
   EOF
   # Expected: the MAIL_* block is appended once (no duplicate on re-run)
   ```

   - ✅ `shared/.env` carries real `MAIL_*` fallback values, appended only once.

</Steps>

### 4. Review email templates & hygiene

<Steps>

1. **Review the email templates** (if the vendor exposes `Admin → Email Templates`) — welcome, password-reset, invoice, and notification — setting the sender name, logo, and footer to match your brand (the email header logo you uploaded on page 3 lives here on some vendors).

   - ✅ Sender name, logo, and footer match the brand on every reviewed template.

2. **Confirm no SMTP credentials are committed to git** — they belong in `shared/.env` on the server and your password manager only.

   - ✅ No SMTP secrets are tracked in git.

</Steps>

## Checklist

Do not mark this step done until **every** box below is checked.

- [ ] **🤖 Source confirmed** — where SMTP resolves at runtime (DB-via-provider vs `.env`) is confirmed; the Froiden banner was verified against source, not trusted.
- [ ] **👤 Panel SMTP saved** — "Test SMTP" passes and the dashboard error banner is gone.
- [ ] **👤 Reset email received** — a real password-reset email arrived end-to-end.
- [ ] **🤖 `.env` fallback set** — `shared/.env` carries **real** `MAIL_*` fallback values; no SMTP secrets in git.
- [ ] **👤 Templates reviewed** — sender, logo, footer reviewed if the vendor exposes them.

:::next[Next step]
[5 · Payments & plans](/tech-stack/laravel/codecanyon/build/playbooks/setup-new/06-superadmin/05-payments-and-plans/)
:::