Add rate limiting to high-risk

Introduce centralized rate limiting by applying defined tiers (STRICT, STANDARD, LENIENT, MODERATE) to high-risk edge functions:
- export-user-data (STRICT, 5 req/min)
- send-contact-message (STANDARD, 20 req/min)
- validate-email-backend (LENIENT, 30 req/min)
- admin-delete-user, resend-deletion-code (MODERATE)
- additional standard targets identified (request-account-deletion, cancel-account-deletion) as per guidance

Implements:
- Wrapped handlers with withRateLimit using centralized rateLimiters
- Imported from shared rate limiter module
- Annotated with comments explaining tier rationale
- Updated three initial functions and extended coverage to admin/account management functions
- Added documentation guide for rate limiting usage

This aligns with the Rate Limiting Guide and centralizes rate limit configuration for consistency.

supabase/functions/resend-deletion-code/index.ts

@@ -1,9 +1,12 @@
 import { serve } from 'https://deno.land/std@0.168.0/http/server.ts';
 import { createClient } from 'https://esm.sh/@supabase/supabase-js@2';
 import { corsHeaders } from '../_shared/cors.ts';
+import { rateLimiters, withRateLimit } from '../_shared/rateLimiter.ts';
 import { edgeLogger, startRequest, endRequest } from '../_shared/logger.ts';
 
-serve(async (req) => {
+// Apply moderate rate limiting (10 req/min) to prevent deletion code spam
+// Protects against abuse while allowing legitimate resend requests
+serve(withRateLimit(async (req) => {
   const tracking = startRequest();
   
   if (req.method === 'OPTIONS') {
@@ -177,4 +180,4 @@ serve(async (req) => {
       }
     );
   }
-});
+}, rateLimiters.moderate, corsHeaders));