Given that the fallback value for from_email (set via env var MAILER_SMTP_FROM_EMAIL) is the MAILER_SMTP_USER, if the user does not set the MAILER_SMTP_FROM_EMAIL environment variable then the from_email will actually be set to the server api-token.
Thanks for reporting this! It would probably be best to err on the side of caution and get rid of the fallback in favor of more explicit configuration.
Postmark tells users to use the same value for the username and password when configuring SMTP (https://postmarkapp.com/smtp-service)
Given that the fallback value for
from_email
(set via env varMAILER_SMTP_FROM_EMAIL
) is theMAILER_SMTP_USER
, if the user does not set theMAILER_SMTP_FROM_EMAIL
environment variable then thefrom_email
will actually be set to the server api-token.