ITithub.directory
Directory
Payload Contact

Payload Contact

Staff PickFeaturedVerifiedOpen SourceAPI

Self-hosted contact form and inbox for Payload 3

www.navanem.com/projects/payload-contact-plugin

Last updated: June 2026

Self-hosted contact form plugin for Payload CMS 3.x. Add a themeable contact form to your site, collect submissions in an admin inbox with status tracking, block spam without CAPTCHA, and get optional email alerts on new messages, all stored in your own database.

Visit Website
7views
Developer Tools & DevOpsDeveloper ToolsOpen SourceSelf-HostedDeveloper ToolsTypeScriptReactCMSContact FormPrivacyPayload

About

Payload Contact (@navanem/payload-contact) is a free, self-hosted contact form plugin for Payload CMS 3.x. It gives you a complete contact channel without reaching for a third-party form service such as Formspree or Typeform. Every message lives in your own database and stays entirely within your stack.

The plugin ships a themeable React component with name, email, optional subject and message fields. Submissions land in a dedicated Payload collection with status tracking (new, read, replied), and a dashboard inbox view surfaces submission counts and recent messages. Spam is handled with a hidden honeypot field and per-IP rate limiting, so there is no CAPTCHA to annoy visitors.

A settings global controls form availability, message length limits, required fields and blocked keywords at runtime, so you can change behaviour without a redeploy. Version 0.2.0 adds optional SMTP email notifications for real-time alerts on new submissions. The plugin is MIT-licensed and created by Emanuel De Almeida in Geneva, Switzerland.

Positioning

Payload Contact positions itself as the privacy-first, self-hosted alternative to hosted form services such as Formspree, Typeform or Google Forms for teams already running Payload CMS. Instead of POSTing visitor data to a third-party endpoint, it keeps the entire submission lifecycle inside your Payload application.

  • No third-party form service — A complete contact channel native to your own app.
  • Your data, your database — Submissions are a native Payload collection, fully owned and queryable.
  • Native to Payload 3 — Installs as a first-class plugin, integrates with the admin UI and access control.
  • No CAPTCHA — Honeypot and rate limiting stop bots without friction for real visitors.
  • Open source & MIT-licensed — Free to use, extend and audit.

What You Get

  • A themeable React <ContactForm> component with name, email, optional subject and message fields
  • A validated submit endpoint at /api/contact-api/submit
  • An admin inbox: submissions stored in a dedicated collection with status tracking (new / read / replied)
  • A dashboard view with submission counts and recent messages
  • Optional SMTP email notifications on new submissions (v0.2.0+)
  • Runtime settings global: form availability, message length limits, required fields and blocked keywords, no redeploy required
  • Anti-spam built in: hidden honeypot field and per-IP rate limiting, no CAPTCHA
  • Salted IP hashing rather than raw IP storage, plus server-side length, required-field and keyword-blocklist validation
  • Install by vendoring the source or via pnpm add @navanem/payload-contact

Core Areas

Contact forms

A themeable React form that POSTs to a validated Payload endpoint

Inbox &amp; triage

Status workflow (new / read / replied) and a dashboard, all from the Payload admin

Notifications

Optional SMTP email alerts so new messages never sit unseen

Security &amp; anti-spam

Honeypot, sliding-window per-IP rate limiting, salted IP hashing and keyword blocklists

Developer experience

TypeScript-first, drop-in React component plus a documented submit API and runtime settings

Why It Matters

Almost every site needs a contact form, and most teams reach for a hosted service to get one. That convenience comes at a price: visitor messages flow through someone else's servers, you pay a recurring SaaS bill, and your contact data lives outside the platform you already run. For organisations that care about data ownership and GDPR, routing inbound enquiries through a third party is an awkward trade-off.

Payload Contact removes it. Because it runs inside your own Payload application, the whole lifecycle, submission, validation, storage, triage and notification, stays on infrastructure you control. There is no external request on the critical path, no visitor data leaving your domain, and no per-seat or per-submission fee. For Payload teams that want a reliable contact channel without the privacy and vendor-lock-in baggage of hosted form services, it is the natural, self-hosted answer.

Reviews

No reviews yet.

Log in to write a review

Related

Checkmate

Checkmate

Checkmate is an open-source, self-hosted uptime and infrastructure monitoring app by BlueWave Labs. It tracks uptime, response time, SSL, ports, Docker and server hardware, with status pages and alerts to Slack, Discord, Telegram, PagerDuty, email and more.

IT Operations & SysadminMonitoring & Observability
OpenWA

OpenWA

OpenWA is a free, open-source, self-hosted WhatsApp API gateway for developers. It exposes a REST API and a React dashboard to send and receive messages, manage groups and media, handle webhooks and run multiple WhatsApp sessions, with no vendor lock-in or paywalls.

Developer Tools & DevOpsDeveloper Tools
Payload Comments

Payload Comments

Self-hosted comments and reactions plugin for Payload CMS 3.x. Let visitors comment anonymously with mood emojis, threaded replies up to three levels deep, and reactions — all stored in your own database, with optional pre-publish moderation.

Developer Tools & DevOpsDeveloper ToolsStaff Pick