The APIs have the following limits:
- Burst API calls limit - defines the maximum number of authenticated API calls allowed in a short time window (see below). The default value is 1,000 requests.
- Burst time window (min) - duration in minutes for which the above burst limit applies. The default value is 1 min.
- Daily total API calls limit - sets the max number of authenticated API calls allowed within a 24-hour period. The default value is 100,000 requests.
NB: Only authenticated and successful API calls are counted.
Each authenticated API response includes the following headers to help clients monitor and adjust their request rate dynamically:
- X-RateLimit-Limit - The maximum number of requests allowed in the time window.
- X-RateLimit-Remaining - The number of requests remaining in the current window.
- Retry-After - The number of seconds to wait before making another request (only on
429responses). - X-RateLimit-Reset - Timestamp (unix) when the time window will reset (only on
429responses).
If the limits are exceeded, the platform will return an HTTP 429 Too Many Attempts response. Example:
HTTP/1.1 429 Too Many Requests
Date: Thu, 05 Jun 2025 1552 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
X-RateLimit-Limit: 10
X-RateLimit-Remaining: 0
Retry-After: 56
X-RateLimit-Reset: 1749138888
Cache-Control: no-cache, private
X-App-Version: 3.71.1 (da8bcee0)
x-req-trace-id: Root=1-6841bd90-37bd976c67610fa7239a8e3b
{
"message": "Too Many Attempts."
}