Web Development Intermediate

What is API Rate Limiting?

A strategy for limiting the number of API requests a client can make within a specified time window to protect server resources.

API rate limiting prevents abuse and ensures fair resource sharing. Common algorithms include fixed window (100 requests/minute), sliding window (smoother distribution), token bucket (allows bursts), and leaky bucket (constant rate).

Rate limits are communicated via HTTP headers: X-RateLimit-Limit, X-RateLimit-Remaining, and Retry-After. Clients should implement exponential backoff when rate limited. API keys or JWT tokens identify clients for per-user limits.

Learn More About This Topic

API Basics: REST & JSON Explained

Related reading

Laravel Framework Fundamentals

Related reading

CodeIgniter Framework Fundamentals

Related reading

Related Terms

Progressive Web App (PWA)

A web application that uses modern web capabilities to deliver app-like experiences with offline support and push notifications.

A communication protocol that enables full-duplex, real-time data exchange between a browser and server over a single connection.

A widely-used server-side scripting language designed for web development that powers over 75% of websites including WordPress.

Static Site Generator (SSG)

A tool that generates a complete static HTML website from templates and content at build time, requiring no server-side processing.

Cross-Origin Resource Sharing (CORS)

An HTTP mechanism that allows web pages to request resources from a different domain than the one serving the page.

Google's metrics for measuring user experience quality, including loading speed, interactivity, and visual stability of web pages.

View All Web Development Terms →