feat: blocking booker email or domain#23969
Conversation
|
Important Review skippedDraft detected. Please check the settings in the CodeRabbit UI or the You can disable this status message by setting the ✨ Finishing touches🧪 Generate unit tests
Tip 👮 Agentic pre-merge checks are now available in preview!Pro plan users can now enable pre-merge checks in their settings to enforce checklists before merging PRs.
Please see the documentation for more information. Example: reviews:
pre_merge_checks:
custom_checks:
- name: "Undocumented Breaking Changes"
mode: "warning"
instructions: |
Pass/fail criteria: All breaking changes to public APIs, CLI flags, environment variables, configuration keys, database schemas, or HTTP/GraphQL endpoints must be documented in the "Breaking Change" section of the PR description and in CHANGELOG.md. Exclude purely internal or private changes (e.g., code not exported from package entry points or explicitly marked as internal).Please share your feedback with us on this Discord post. Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
The latest updates on your projects. Learn more about Vercel for GitHub. |
|
This PR is being marked as stale due to inactivity. |
|
Closed in favor of #24040 |
What does this PR do?
This PR introduces organization-level email and domain blocking functionality, allowing organization Admins and Owners to prevent specific email addresses or entire domains from making bookings. Blocked users experience a "shadow ban" where they see a fake success page but no real booking actions are triggered.
What's New
🚫 Spam Blocklist Management
🔒 Organization-Scoped Blocking
spam@example.com) or entire domains (@spammer.com)📊 Professional UI/UX
🗄️ Database Schema
organizationIdandactionfields to existing Watchlist tableREPORT(existing) andBLOCK(new) for different blocking behaviorsBlockedBookingmodel to track blocked booking attempts for compliance🔧 Technical Implementation
API Changes
New TRPC Endpoints
organizations.listSpamBlocklist- Get paginated blocklist entriesorganizations.createSpamBlocklistEntry- Add new blocked email/domainorganizations.deleteSpamBlocklistEntry- Remove blocklist entryDatabase Changes
organizationId(nullable) andactionenum fieldsSecurity & Privacy
Future Considerations
Testing
This feature provides organizations with powerful spam prevention tools while maintaining a professional user experience and following Cal.com's established design patterns.
Visual Demo (For contributors especially)
A visual demonstration is strongly recommended, for both the original and new change (video / image - any one).
Video Demo (if applicable):
Image Demo (if applicable):
Mandatory Tasks (DO NOT REMOVE)
How should this be tested?
Checklist