API Reference

Email Security

Submissions

Copy Markdown

Open in Claude

Open in ChatGPT

Open in Cursor

---

Copy Markdown

View as Markdown

Get reclassify submissions

client.EmailSecurity.Submissions.List(ctx, params) (*V4PagePaginationArray[SubmissionListResponse], error)

GET/accounts/{account_id}/email-security/submissions

This endpoint returns information for submissions to made to reclassify emails.

Security

API Email + API Key

The previous authorization scheme for interacting with the Cloudflare API, used in conjunction with a Global API key.

Example:X-Auth-Email: user@example.com

The previous authorization scheme for interacting with the Cloudflare API. When possible, use API tokens instead of Global API keys.

Example:X-Auth-Key: 144c9defac04969c7bfad8efaa8ea194

ParametersExpand Collapse

params SubmissionListParams

AccountID param.Field[string]

Path param: Account Identifier

maxLength32

minLength32

CustomerStatus param.Field[SubmissionListParamsCustomerStatus]optional

Query param

const SubmissionListParamsCustomerStatusEscalated SubmissionListParamsCustomerStatus = "escalated"

const SubmissionListParamsCustomerStatusReviewed SubmissionListParamsCustomerStatus = "reviewed"

const SubmissionListParamsCustomerStatusUnreviewed SubmissionListParamsCustomerStatus = "unreviewed"

End param.Field[Time]optional

Query param: The end of the search date range. Defaults to now if not provided.

formatdate-time

OriginalDisposition param.Field[SubmissionListParamsOriginalDisposition]optional

Query param

const SubmissionListParamsOriginalDispositionMalicious SubmissionListParamsOriginalDisposition = "MALICIOUS"

const SubmissionListParamsOriginalDispositionSuspicious SubmissionListParamsOriginalDisposition = "SUSPICIOUS"

const SubmissionListParamsOriginalDispositionSpoof SubmissionListParamsOriginalDisposition = "SPOOF"

const SubmissionListParamsOriginalDispositionSpam SubmissionListParamsOriginalDisposition = "SPAM"

const SubmissionListParamsOriginalDispositionBulk SubmissionListParamsOriginalDisposition = "BULK"

const SubmissionListParamsOriginalDispositionNone SubmissionListParamsOriginalDisposition = "NONE"

OutcomeDisposition param.Field[SubmissionListParamsOutcomeDisposition]optional

Query param

const SubmissionListParamsOutcomeDispositionMalicious SubmissionListParamsOutcomeDisposition = "MALICIOUS"

const SubmissionListParamsOutcomeDispositionSuspicious SubmissionListParamsOutcomeDisposition = "SUSPICIOUS"

const SubmissionListParamsOutcomeDispositionSpoof SubmissionListParamsOutcomeDisposition = "SPOOF"

const SubmissionListParamsOutcomeDispositionSpam SubmissionListParamsOutcomeDisposition = "SPAM"

const SubmissionListParamsOutcomeDispositionBulk SubmissionListParamsOutcomeDisposition = "BULK"

const SubmissionListParamsOutcomeDispositionNone SubmissionListParamsOutcomeDisposition = "NONE"

Page param.Field[int64]optional

Query param: The page number of paginated results.

formatint32

minimum1

PerPage param.Field[int64]optional

Query param: The number of results per page.

formatint32

minimum1

Query param.Field[string]optional

Query param

RequestedDisposition param.Field[SubmissionListParamsRequestedDisposition]optional

Query param

const SubmissionListParamsRequestedDispositionMalicious SubmissionListParamsRequestedDisposition = "MALICIOUS"

const SubmissionListParamsRequestedDispositionSuspicious SubmissionListParamsRequestedDisposition = "SUSPICIOUS"

const SubmissionListParamsRequestedDispositionSpoof SubmissionListParamsRequestedDisposition = "SPOOF"

const SubmissionListParamsRequestedDispositionSpam SubmissionListParamsRequestedDisposition = "SPAM"

const SubmissionListParamsRequestedDispositionBulk SubmissionListParamsRequestedDisposition = "BULK"

const SubmissionListParamsRequestedDispositionNone SubmissionListParamsRequestedDisposition = "NONE"

Start param.Field[Time]optional

Query param: The beginning of the search date range. Defaults to now - 30 days if not provided.

formatdate-time

Status param.Field[string]optional

Query param

SubmissionID param.Field[string]optional

Query param

Type param.Field[SubmissionListParamsType]optional

Query param

const SubmissionListParamsTypeTeam SubmissionListParamsType = "TEAM"

const SubmissionListParamsTypeUser SubmissionListParamsType = "USER"

ReturnsExpand Collapse

type SubmissionListResponse struct{…}

DeprecatedRequestedTs Time

deprecated as of 2026-04-01, use requested_at instead.

formatdate-time

SubmissionID string

CustomerStatus SubmissionListResponseCustomerStatusoptional

One of the following:

const SubmissionListResponseCustomerStatusEscalated SubmissionListResponseCustomerStatus = "escalated"

const SubmissionListResponseCustomerStatusReviewed SubmissionListResponseCustomerStatus = "reviewed"

const SubmissionListResponseCustomerStatusUnreviewed SubmissionListResponseCustomerStatus = "unreviewed"

EscalatedAs SubmissionListResponseEscalatedAsoptional

One of the following:

const SubmissionListResponseEscalatedAsMalicious SubmissionListResponseEscalatedAs = "MALICIOUS"

const SubmissionListResponseEscalatedAsMaliciousBec SubmissionListResponseEscalatedAs = "MALICIOUS-BEC"

const SubmissionListResponseEscalatedAsSuspicious SubmissionListResponseEscalatedAs = "SUSPICIOUS"

const SubmissionListResponseEscalatedAsSpoof SubmissionListResponseEscalatedAs = "SPOOF"

const SubmissionListResponseEscalatedAsSpam SubmissionListResponseEscalatedAs = "SPAM"

const SubmissionListResponseEscalatedAsBulk SubmissionListResponseEscalatedAs = "BULK"

const SubmissionListResponseEscalatedAsEncrypted SubmissionListResponseEscalatedAs = "ENCRYPTED"

const SubmissionListResponseEscalatedAsExternal SubmissionListResponseEscalatedAs = "EXTERNAL"

const SubmissionListResponseEscalatedAsUnknown SubmissionListResponseEscalatedAs = "UNKNOWN"

const SubmissionListResponseEscalatedAsNone SubmissionListResponseEscalatedAs = "NONE"

EscalatedAt Timeoptional

formatdate-time

EscalatedBy stringoptional

EscalatedSubmissionID stringoptional

OriginalDisposition SubmissionListResponseOriginalDispositionoptional

One of the following:

const SubmissionListResponseOriginalDispositionMalicious SubmissionListResponseOriginalDisposition = "MALICIOUS"

const SubmissionListResponseOriginalDispositionMaliciousBec SubmissionListResponseOriginalDisposition = "MALICIOUS-BEC"

const SubmissionListResponseOriginalDispositionSuspicious SubmissionListResponseOriginalDisposition = "SUSPICIOUS"

const SubmissionListResponseOriginalDispositionSpoof SubmissionListResponseOriginalDisposition = "SPOOF"

const SubmissionListResponseOriginalDispositionSpam SubmissionListResponseOriginalDisposition = "SPAM"

const SubmissionListResponseOriginalDispositionBulk SubmissionListResponseOriginalDisposition = "BULK"

const SubmissionListResponseOriginalDispositionEncrypted SubmissionListResponseOriginalDisposition = "ENCRYPTED"

const SubmissionListResponseOriginalDispositionExternal SubmissionListResponseOriginalDisposition = "EXTERNAL"

const SubmissionListResponseOriginalDispositionUnknown SubmissionListResponseOriginalDisposition = "UNKNOWN"

const SubmissionListResponseOriginalDispositionNone SubmissionListResponseOriginalDisposition = "NONE"

OriginalEdfHash stringoptional

OriginalPostfixID stringoptional

Outcome stringoptional

OutcomeDisposition SubmissionListResponseOutcomeDispositionoptional

One of the following:

const SubmissionListResponseOutcomeDispositionMalicious SubmissionListResponseOutcomeDisposition = "MALICIOUS"

const SubmissionListResponseOutcomeDispositionMaliciousBec SubmissionListResponseOutcomeDisposition = "MALICIOUS-BEC"

const SubmissionListResponseOutcomeDispositionSuspicious SubmissionListResponseOutcomeDisposition = "SUSPICIOUS"

const SubmissionListResponseOutcomeDispositionSpoof SubmissionListResponseOutcomeDisposition = "SPOOF"

const SubmissionListResponseOutcomeDispositionSpam SubmissionListResponseOutcomeDisposition = "SPAM"

const SubmissionListResponseOutcomeDispositionBulk SubmissionListResponseOutcomeDisposition = "BULK"

const SubmissionListResponseOutcomeDispositionEncrypted SubmissionListResponseOutcomeDisposition = "ENCRYPTED"

const SubmissionListResponseOutcomeDispositionExternal SubmissionListResponseOutcomeDisposition = "EXTERNAL"

const SubmissionListResponseOutcomeDispositionUnknown SubmissionListResponseOutcomeDisposition = "UNKNOWN"

const SubmissionListResponseOutcomeDispositionNone SubmissionListResponseOutcomeDisposition = "NONE"

RequestedAt Timeoptional

formatdate-time

RequestedBy stringoptional

RequestedDisposition SubmissionListResponseRequestedDispositionoptional

One of the following:

const SubmissionListResponseRequestedDispositionMalicious SubmissionListResponseRequestedDisposition = "MALICIOUS"

const SubmissionListResponseRequestedDispositionMaliciousBec SubmissionListResponseRequestedDisposition = "MALICIOUS-BEC"

const SubmissionListResponseRequestedDispositionSuspicious SubmissionListResponseRequestedDisposition = "SUSPICIOUS"

const SubmissionListResponseRequestedDispositionSpoof SubmissionListResponseRequestedDisposition = "SPOOF"

const SubmissionListResponseRequestedDispositionSpam SubmissionListResponseRequestedDisposition = "SPAM"

const SubmissionListResponseRequestedDispositionBulk SubmissionListResponseRequestedDisposition = "BULK"

const SubmissionListResponseRequestedDispositionEncrypted SubmissionListResponseRequestedDisposition = "ENCRYPTED"

const SubmissionListResponseRequestedDispositionExternal SubmissionListResponseRequestedDisposition = "EXTERNAL"

const SubmissionListResponseRequestedDispositionUnknown SubmissionListResponseRequestedDisposition = "UNKNOWN"

const SubmissionListResponseRequestedDispositionNone SubmissionListResponseRequestedDisposition = "NONE"

Status stringoptional

Subject stringoptional

Type stringoptional

Get reclassify submissions

Go

HTTP

TypeScript

Python

Go

Terraform

package main

import (
  "context"
  "fmt"

  "github.com/cloudflare/cloudflare-go"
  "github.com/cloudflare/cloudflare-go/email_security"
  "github.com/cloudflare/cloudflare-go/option"
)

func main() {
  client := cloudflare.NewClient(
    option.WithAPIKey("144c9defac04969c7bfad8efaa8ea194"),
    option.WithAPIEmail("user@example.com"),
  )
  page, err := client.EmailSecurity.Submissions.List(context.TODO(), email_security.SubmissionListParams{
    AccountID: cloudflare.F("023e105f4ecef8ad9ca31a8372d0c353"),
  })
  if err != nil {
    panic(err.Error())
  }
  fmt.Printf("%+v\n", page)
}

200 example

{
  "errors": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "messages": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "result": [
    {
      "requested_ts": "2019-12-27T18:11:19.117Z",
      "submission_id": "submission_id",
      "customer_status": "escalated",
      "escalated_as": "MALICIOUS",
      "escalated_at": "2019-12-27T18:11:19.117Z",
      "escalated_by": "escalated_by",
      "escalated_submission_id": "escalated_submission_id",
      "original_disposition": "MALICIOUS",
      "original_edf_hash": "original_edf_hash",
      "original_postfix_id": "original_postfix_id",
      "outcome": "outcome",
      "outcome_disposition": "MALICIOUS",
      "requested_at": "2019-12-27T18:11:19.117Z",
      "requested_by": "requested_by",
      "requested_disposition": "MALICIOUS",
      "status": "status",
      "subject": "subject",
      "type": "type"
    }
  ],
  "result_info": {
    "count": 1,
    "page": 1,
    "per_page": 20,
    "total_count": 2000
  },
  "success": true
}

Returns Examples

200 example

{
  "errors": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "messages": [
    {
      "code": 1000,
      "message": "message",
      "documentation_url": "documentation_url",
      "source": {
        "pointer": "pointer"
      }
    }
  ],
  "result": [
    {
      "requested_ts": "2019-12-27T18:11:19.117Z",
      "submission_id": "submission_id",
      "customer_status": "escalated",
      "escalated_as": "MALICIOUS",
      "escalated_at": "2019-12-27T18:11:19.117Z",
      "escalated_by": "escalated_by",
      "escalated_submission_id": "escalated_submission_id",
      "original_disposition": "MALICIOUS",
      "original_edf_hash": "original_edf_hash",
      "original_postfix_id": "original_postfix_id",
      "outcome": "outcome",
      "outcome_disposition": "MALICIOUS",
      "requested_at": "2019-12-27T18:11:19.117Z",
      "requested_by": "requested_by",
      "requested_disposition": "MALICIOUS",
      "status": "status",
      "subject": "subject",
      "type": "type"
    }
  ],
  "result_info": {
    "count": 1,
    "page": 1,
    "per_page": 20,
    "total_count": 2000
  },
  "success": true
}