Skip to content

Moderation, abuse controls & rate limiting #120

Description

@mehalyna

Task 9 — Moderation, abuse controls & rate limiting

Title: security: implement moderation features, rate limits and abuse detection

Deliverables

  • Rate limits:

    • Per-user message send throttle (e.g., 30 messages/min by default; configurable).
    • Express-interest/send-message endpoints stricter limit for first N minutes.
  • Reporting & moderation:

    • POST /api/conversations/{id}/report/ to flag conversation or message (store report, notify admin).
    • Admin endpoint to read reports and take action (remove message, ban user from messaging).
  • Profanity / malware filter:

    • Plug in basic text filter or flagging pipeline (could be a simple keyword blocklist for v1).
  • Tests for throttle and report endpoints.

Acceptance

  • Excessive sending results in 429.
  • Reporting endpoint persists reports and sends admin notification.

Dependencies

  • Auth & admin roles, Notification admin flows.

Notes

  • Document escalation path for admin.

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions