craftcms / contact-form
Add a simple contact form to your Craft CMS site
Installs: 400 630
Dependents: 17
Suggesters: 0
Security: 0
Stars: 294
Watchers: 20
Forks: 93
Open Issues: 17
Type:craft-plugin
Requires
- php: ^8.0.2
- craftcms/cms: ^4.0.0-beta.1|^5.0.0-beta.1
Requires (Dev)
- craftcms/ecs: dev-main
- craftcms/phpstan: dev-main
- craftcms/rector: dev-main
- 3.x-dev
- 3.1.0
- 3.0.1
- 3.0.0
- 3.0.0-beta.2
- 3.0.0-beta.1
- v2.x-dev
- 2.5.3
- 2.5.2
- 2.5.1
- 2.5.0
- 2.4.1
- 2.4.0
- 2.3.0
- 2.2.7
- 2.2.6
- 2.2.5
- 2.2.4
- 2.2.3
- 2.2.2
- 2.2.1
- 2.2.0
- 2.1.1
- 2.1.0
- 2.0.3
- 2.0.2
- 2.0.1
- 2.0.0
- dev-dependabot/composer/craftcms/cms-4.4.12
- dev-dependabot/composer/guzzlehttp/psr7-2.5.0
- dev-bugfix/contact-form-escape-HTML-104
This package is auto-updated.
Last update: 2025-01-15 04:24:21 UTC
README
This plugin allows you to add an email contact form to your website.
Requirements
This plugin requires Craft CMS 4.0.0+ or 5.0.0+.
Installation
You can install this plugin from the Plugin Store or with Composer.
From the Plugin Store
Go to the Plugin Store in your project’s Control Panel and search for “Contact Form”. Then click on the “Install” button in its modal window.
With Composer
Open your terminal and run the following commands:
# go to the project directory cd /path/to/my-project.test # tell Composer to load the plugin composer require craftcms/contact-form # tell Craft to install the plugin php craft plugin/install contact-form
Usage
Your contact form template can look something like this:
{% macro errorList(errors) %} {% if errors %} {{ ul(errors, {class: 'errors'}) }} {% endif %} {% endmacro %} {% set submission = submission ?? null %} <form method="post" action="" accept-charset="UTF-8"> {{ csrfInput() }} {{ actionInput('contact-form/send') }} {{ redirectInput('contact/thanks') }} <h3><label for="from-name">Your Name</label></h3> {{ input('text', 'fromName', submission.fromName ?? '', { id: 'from-name', autocomplete: 'name', }) }} {{ submission ? _self.errorList(submission.getErrors('fromName')) }} <h3><label for="from-email">Your Email</label></h3> {{ input('email', 'fromEmail', submission.fromEmail ?? '', { id: 'from-email', autocomplete: 'email', }) }} {{ submission ? _self.errorList(submission.getErrors('fromEmail')) }} <h3><label for="subject">Subject</label></h3> {{ input('text', 'subject', submission.subject ?? '', { id: 'subject', }) }} {{ submission ? _self.errorList(submission.getErrors('subject')) }} <h3><label for="message">Message</label></h3> {{ tag('textarea', { text: submission.message ?? '', id: 'message', name: 'message', rows: 10, cols: 40, }) }} {{ submission ? _self.errorList(submission.getErrors('message')) }} <button type="submit">Send</button> </form>
The only required fields are fromEmail
and message
. Everything else is optional.
Redirecting after submit
If you have a redirect
hidden input, the user will get redirected to it upon successfully sending the email. The following variables can be used within the URL/path you set:
{fromName}
{fromEmail}
{subject}
For example, if you wanted to redirect to a contact/thanks
page and pass the sender’s name to it, you could set the input like this:
{{ redirectInput('contact/thanks?from={fromName}') }}
On your contact/thanks.html
template, you can access that from
parameter using craft.app.request.getQueryParam()
:
<p>Thanks for sending that in, {{ craft.app.request.getQueryParam('from') }}!</p>
Note that if you don’t include a redirect
input, the current page will get reloaded.
Displaying flash messages
When a contact form is submitted, the plugin will set a notice
(Craft 4) or success
(Craft 5+) flash message on the user session. You can display it in your template like this:
{% if craft.app.session.hasFlash('success') %} <p class="message success">{{ craft.app.session.getFlash('success') }}</p> {% elseif craft.app.session.hasFlash('error') %} <p class="message error">{{ craft.app.session.getFlash('error') }}</p> {% endif %}
Adding additional fields
You can add additional fields to your form by splitting your message
field into multiple fields, using an array syntax for the input names:
<h3><label for="message">Message</label></h3> <textarea rows="10" cols="40" id="message" name="message[body]">{{ submission.message.body ?? '' }}</textarea> <h3><label for="phone">Your phone number</label></h3> <input id="phone" type="text" name="message[Phone]" value=""> <h3>What services are you interested in?</h3> <label><input type="checkbox" name="message[Services][]" value="Design"> Design</label> <label><input type="checkbox" name="message[Services][]" value="Development"> Development</label> <label><input type="checkbox" name="message[Services][]" value="Strategy"> Strategy</label> <label><input type="checkbox" name="message[Services][]" value="Marketing"> Marketing</label>
If you have a primary “Message” field, you should name it message[body]
, like in that example.
An email sent with the above form might result in the following message:
• Name: John Doe
• Email: example@email.com
• Phone: (555) 123-4567
• Services: Design, Development
Hey guys, I really loved this simple contact form (I'm so tired of agencies
asking for everything but my social security number up front), so I trust
you guys know a thing or two about usability.
I run a small coffee shop and we want to start attracting more freelancer-
types to spend their days working from our shop (and sipping fine coffee!).
A clean new website with lots of social media integration would probably
help us out quite a bit there. Can you help us with that?
Hope to hear from you soon.
Cathy Chino
By default, there’s no restriction on which keys can be included on message
. You can limit which fields are allowed using the allowedMessageFields
setting in config/contact-form.php
:
<?php return [ 'allowedMessageFields' => ['Phone', 'Services'], ];
Overriding plugin settings
If you create a config file in your config/
folder called contact-form.php
, you can override
the plugin’s settings in the Control Panel. Since that config file is fully multi-environment aware, this is
a handy way to have different settings across multiple environments.
Here’s what that config file might look like along with a list of all of the possible values you can override.
<?php return [ 'toEmail' => 'bond@007.com', 'prependSubject' => '', 'prependSender' => '', 'allowAttachments' => false, 'successFlashMessage' => 'Message sent!' ];
Dynamically adding email recipients
You can programmatically add email recipients from your template by adding a hidden input field named toEmail
like so:
<input type="hidden" name="toEmail" value="{{ 'me@example.com'|hash }}">
If you want to add multiple recipients, you can provide a comma separated list of emails like so:
<input type="hidden" name="toEmail" value="{{ 'me@example.com,me2@example.com'|hash }}">
Then from your config/contact-form.php
config file, you’ll need to add a bit of logic:
<?php $config = []; $request = Craft::$app->request; if ( !$request->getIsConsoleRequest() && ($toEmail = $request->getValidatedBodyParam('toEmail')) !== null ) { $config['toEmail'] = $toEmail; } return $config;
In this example if toEmail
does not exist or fails validation (it was tampered with), the plugin will fallback to the “To Email” defined in the plugin settings, so you must have that defined as well.
File attachments
If you would like your contact form to accept file attachments, follow these steps:
- Go to Settings → Contact Form in the Control Panel, and make sure the plugin is set to allow attachments.
- Make sure your opening HTML
<form>
tag containsenctype="multipart/form-data"
. - Add a
<input type="file" name="attachment">
to your form. - If you want to allow multiple file attachments, use multiple
<input type="file" name="attachment[]" multiple>
inputs.
Ajax form submissions
You can optionally post contact form submissions over Ajax if you’d like. Just send a POST request to your site with all of the same data that would normally be sent:
$('#my-form').submit(function(ev) { // Prevent the form from actually submitting ev.preventDefault(); // Send it to the server $.post({ url: '/', dataType: 'json', data: $(this).serialize(), success: function(response) { $('#thanks').text(response.message).fadeIn(); }, error: function(jqXHR) { // The response body will be an object containing the following keys: // - `message` – A high level message for the response // - `submission` – An object containing data from the attempted submission // - `errors` – An object containing validation errors from the submission, indexed by attribute name alert(jqXHR.responseJSON.message); } }); });
The afterValidate
event
Modules and plugins can be notified when a submission is being validated, providing their own custom validation logic, using the afterValidate
event on the Submission
model:
use craft\contactform\models\Submission; use yii\base\Event; // ... Event::on(Submission::class, Submission::EVENT_AFTER_VALIDATE, function(Event $e) { /** @var Submission $submission */ $submission = $e->sender; // Make sure that `message[Phone]` was filled in if (empty($submission->message['Phone'])) { // Add the error // (This will be accessible via `message.getErrors('message.phone')` in the template.) $submission->addError('message.phone', 'A phone number is required.'); } });
The beforeSend
event
Modules and plugins can be notified right before a message is sent out to the recipients using the beforeSend
event. This is also an opportunity to flag the message as spam, preventing it from getting sent:
use craft\contactform\events\SendEvent; use craft\contactform\Mailer; use yii\base\Event; // ... Event::on(Mailer::class, Mailer::EVENT_BEFORE_SEND, function(SendEvent $e) { $isSpam = // custom spam detection logic... if ($isSpam) { $e->isSpam = true; } });
The afterSend
event
Modules and plugins can be notified right after a message is sent out to the recipients using the afterSend
event.
use craft\contactform\events\SendEvent; use craft\contactform\Mailer; use yii\base\Event; // ... Event::on(Mailer::class, Mailer::EVENT_AFTER_SEND, function(SendEvent $e) { // custom logic... });
Using a “Honeypot” field
Support for the honeypot captcha technique to fight spam has been moved to a separate plugin that complements this one.