Interesting, didn’t think of auth to prevent spam, my thought process was to not limit spam, but filter it out by detection, thereby leaving little incentive for anyone to spam. 

And it could pbe done client side itself.