🚀 Phase 4: AI Usage Tracking, Security Hardening, and Risk Monitor Dashboard

backend/src/modules/auth/auth.controller.ts

@@ -20,6 +20,7 @@ import { LoginDto } from './dto/login.dto';
 import { JwtAuthGuard } from '../../common/guards/jwt-auth.guard';
 import { AuthGuard } from '@nestjs/passport';
 import { CurrentUser } from '../../common/decorators/current-user.decorator';
+import { Throttle } from '@nestjs/throttler';
 
 @Controller('auth')
 export class AuthController {
@@ -36,7 +37,9 @@ export class AuthController {
 
   /**
    * تسجيل الدخول
+   * Rate limiting: 5 requests per minute
    */
+  @Throttle({ default: { limit: 5, ttl: 60000 } })
   @Post('login')
   @HttpCode(HttpStatus.OK)
   async login(@Body() dto: LoginDto) {