## POST /api/v2/shared-hosting/{accountId}/email-forwarders **Create email forwarder** Create an email forwarder inside a shared-hosting account. Use this route only when the source domain is attached to this hosting account; verify that with `GET /api/v2/shared-hosting/{accountId}/domains` before writing. This route manages the hosting account's mail-forwarder bindings and does not enable or replace domain-level email routing. If the customer does not have shared hosting, or this domain is not attached to the hosting account, use `POST /api/v2/domains/{id}/email-forwarding` instead. Send `localPart`, `domain`, and one to twenty destination email addresses. ### Related Endpoints - `GET /api/v2/shared-hosting/{accountId}/email-forwarders`: List email forwarders - `DELETE /api/v2/shared-hosting/{accountId}/email-forwarders/{address}`: Delete email forwarder destinations - `GET /api/v2/shared-hosting/{accountId}/domains`: List hosting domains ### Headers - `Accept`: application/json - `Authorization`: Bearer YOUR_API_KEY - Required API scopes: `write:hosting`, `console:services` - `Content-Type`: application/json ### Parameters - `accountId` (path, string, required): Public shared-hosting account ID. Get it from GET /api/v2/shared-hosting `data[].id`. Do not invent this value; use the exact ID returned by the referenced API response. Example: `acct_01hxa3b4c5d6e7f8g9h0j1k2m3` ### Request Body - `localPart` (string, required): Address part before `@`. For `info@example.com`, send `info`. Example: `info` - `domain` (string, required): Hosted domain attached to this shared-hosting account. Get it from `GET /api/v2/shared-hosting/{accountId}/domains`. Example: `example.com` - `destinations` (array, required): Destination mailbox addresses. These are targets, not source addresses. Example: `["anna@example.net"]` ### Request Examples #### Forward to one recipient ```bash curl -X POST "https://cloud.hostup.se/api/v2/shared-hosting/acct_01hxa3b4c5d6e7f8g9h0j1k2m3/email-forwarders" \ -H "Authorization: Bearer YOUR_API_KEY" \ -H "Accept: application/json" \ -H "Content-Type: application/json" \ -d '{ "localPart": "info", "domain": "example.com", "destinations": [ "anna@example.net" ] }' ``` ```json { "localPart": "info", "domain": "example.com", "destinations": [ "anna@example.net" ] } ``` ### Response Schema - `id` (string, required) Example: `efwd_01hxa3b4c5d6e7f8g9h0j1k2m3` - `email` (string, required) - `domain` (string, required) - `localPart` (string, required) - `destinations` (array, required) ### Responses #### 201 - Email forwarder created. ```json { "id": "efwd_01hxa3b4c5d6e7f8g9h0j1k2m3", "email": "info@example.com", "domain": "example.com", "localPart": "info", "destinations": [ "anna@example.net" ] } ``` #### 400 - Invalid request. The response body is an RFC 7807 Problem Details document. ```json { "type": "https://developer.hostup.se/errors/invalid_request", "title": "Invalid request", "status": 400, "detail": "The request body failed validation.", "code": "invalid_request", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z", "errors": [ { "pointer": "/items/0/domainName", "detail": "`domainName` is required.", "code": "invalid_request" } ] } ``` #### 401 - Unauthorized. Authentication is required. ```json { "type": "https://developer.hostup.se/errors/unauthorized", "title": "Unauthorized", "status": 401, "detail": "Authentication is required.", "code": "unauthorized", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 403 - Forbidden. The caller lacks a required scope or does not own the resource. ```json { "type": "https://developer.hostup.se/errors/forbidden", "title": "Forbidden", "status": 403, "detail": "The caller lacks a required scope or does not own the resource.", "code": "forbidden", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 404 - Not found. The resource does not exist or is not owned by the caller. ```json { "type": "https://developer.hostup.se/errors/not_found", "title": "Not found", "status": 404, "detail": "The requested resource could not be found.", "code": "not_found", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 429 - Rate limited. Retry after the limit resets. 429 responses include `Retry-After` seconds plus `X-RateLimit-*` headers. ```json { "type": "https://developer.hostup.se/errors/rate_limit_exceeded", "title": "Too many requests", "status": 429, "detail": "Too many requests. Retry after the limit resets.", "code": "rate_limit_exceeded", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ``` #### 500 - Internal error. Retry later or contact support if the issue persists. ```json { "type": "https://developer.hostup.se/errors/internal_error", "title": "Internal server error", "status": 500, "detail": "An unexpected error occurred. Retry later or contact support if the issue persists.", "code": "internal_error", "instance": "/api/v2/resource", "requestId": "req_01hxa3b4c5d6e7f8g9h0j1k2m3", "timestamp": "2026-04-27T12:34:56.000Z" } ```