Background
As we’re trying to build a reporting system that is easily accessible to all types of users and victims of harassment there’s a risk malicious users will try to exploit it. We need to set up some anti-abuse measures in order to prevent bad actors from abusing the system . We will optimize these measures as we progress.
User Stories
As a responder I want to only receive valid reports so that I don’t waste a lot of time going through spam or unactionable reports.
Description
Only named users who meet the following criteria should be able to file reports:
- User account is > 3 hours old
- User account has > 0 edits
- User account is under rate limits (T345813)
- User account is not under any block
- User account has verified email
Acceptance Criteria
- In order to be able to submit a form, the reporting user account needs to meet ALL of the following criteria:
- User is named (not temporary)
- User account is > 3 hours old
- User account has > 0 edits
- User account is under rate limits
- User account is not under any block
- User account has verified email
- If at least one of the above criteria is not met:
- the form cannot be submitted and
- a generic error message is shown - This will be done in T338804