# Begin: Custom commands for incoming e-mails BEFORE decryption
log(1,'Begin: Custom commands for incoming e-mails BEFORE decryption');

# Begin: Decrypt forwarded e-mails
log(1,'Begin: Decrypt forwarded e-mails');

if (smime_encrypted()) {
	if (replace_rcpt('@original\.tld', '@forwarded.tld',1)) {
		log(1, 'Encrypted mail to @original.tld, check if we can decrypt with @forwarded-tld keys');
		if (decrypt_smime()) {
			@REMOVETAGS@
			log(1, 'S/MIME decrypted with user certificate');
			@TAGDECRYPTED@
			@TAGHEADERDECRYPTED@
			@SETDECRYPTED@
		} else if (decrypt_domain_smime()) {
			@REMOVETAGS@
			log(1, 'S/MIME decrypted using domain certificate');
			@TAGDECRYPTED@
			@TAGHEADERDECRYPTED@
			@SETDECRYPTED@
		} else {
			log(1, 'Decryption for @forwarded.tld FAILED, going on with decryption for @original.tld');
		}
		replace_rcpt('@forwarded\.tld', '@original.tld', 1);
	}
}

log(1,'End: Decrypt forwarded e-mails');
# End: Decrypt forwarded e-mails

log(1,'End: Custom commands for incoming e-mails BEFORE decryption');
# End: Custom commands for incoming e-mails BEFORE decryption