πPROTECTION AGAINST MISUSE
When implementing the API, it is necessary to include safeguards against excessive number of requests from users, in particular DDoS/DoS attacks, by using mechanisms limiting the number of requests processed per unit of time. The values of those limits should be adapted to specific operating requirements and be subject to parametrisation. The number of requests for access to resources should be monitored using the mechanisms and meters available on the serverβs part. If a limit is exceeded, the server should return HTTP communication No 429 (Too Many Requests).
Last updated