[feat] Auto-deny registration applications based on application contents #527
Labels
No labels
approved, awaiting change
bug
configuration
documentation
duplicate
enhancement
extremely low priority
feature request
Fix it yourself
help wanted
invalid
mastodon_api
needs docs
needs tests
not a bug
planned
pleroma_api
privacy
question
static_fe
triage
wontfix
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference: AkkomaGang/akkoma#527
Loading…
Reference in a new issue
No description provided.
Delete branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
The idea
Auto-deny registration requests containing handles or reasons matching regular expressions.
The reasoning
Low-effort spam sign-ups often use the same username or registration reasons across many instances. In admin chatrooms, we sometimes share registration reasons and usernames for malicious accounts. Being able to auto-deny registrations for accounts with handles or registration-reasons matching a given regex would help instances deal with unexpected waves of spambot registration.
Some instances, such as
botsin.space
, go one step further and require applicants to include a "magic string" in their reason to register. Being able to deny registration with a regex would simplify the ability to filter registrations.Ideally, such a feature could also be behind a toggle; during a spam wave, admins could turn it on for a less nuclear alternative to closing down registration entirely or moving to invite-only.
Note that this isn't foolproof; username-generators already exist, and I imagine that LLMs in the near future could read an instance's "about" page and generate a plausible-sounding registration reason with a magic string. More tools are still needed, but this can be a good start.
Have you searched for this feature request?