PROTECTION AGAINST MISUSE

When implementing the API, it is necessary to include safeguards against excessive number of requests from users, in particular DDoS/DoS attacks, by using mechanisms limiting the number of requests processed per unit of time. The values of those limits should be adapted to specific operating requirements and be subject to parametrisation. The number of requests for access to resources should be monitored using the mechanisms and meters available on the server’s part. If a limit is exceeded, the server should return HTTP communication No 429 (Too Many Requests).

PreviousCROSS-ORIGIN RESOURCE SHARING

Last updated 1 year ago