API limitations

API requests limit

The requests made to Management API count towards the overall API calls limit set in the Fair Use Policy or your subscription plan. There is no limit on the total number of API calls you can make.

Rate limiting

Rate limits specify the number of requests you or your application can make to the Management API within a specific time window. There are two separate time windows, second and minute, allowing a different number of requests each. By default, the Management API enforces the following rate limits:

10 requests per second
400 requests per minute

The scope of API rate limits is per environment. Requests made with multiple API keys to a single environment count against a single rate limit.

When you reach the limit of a specific time window, the API will reject the request and respond with the 429 HTTP error

JSON

{
  "request_id": "80000004-0002-fd00-b63f-84710c7967bb",
  "error_code": 10000,
  "message": "API rate limit exceeded. Please retry your request later."
}

The error response will include the Retry-After header

that tells you how many seconds you need to wait before attempting further requests. Each failed request is perfectly safe to retry. If you begin to receive 429 HTTP errors

, reduce the frequency of your requests.

Avoid parallel requestsWe strongly advise against making multiple requests to the API in parallel. Doing so may cause unpredictable behavior and lead to inconsistencies in your content. We recommend that you wait for each request to finish before sending another one.

CDN-level protection

In addition to these limits, a CDN-level protective layer is applied by Fastly

to protect against disruptive traffic. These limitations for uncached requests are significantly higher and are not expected to impact normal usage:

300 requests per second
2,000 requests per 10 seconds
6,000 requests per minute

Rate limiting

By default, the Management API enforces the following rate limits:

10 requests per second

400 requests per minute