Rate Limiting
FeedbackPulse implements rate limiting across all endpoints to prevent abuse and ensure fair usage.
Rate Limits by Endpointโ
Public Pagesโ
| Endpoint | Limit | Window |
|---|---|---|
| Feedback Form (view) | 60 req | 1 minute |
| Feedback Form (submit) | 10 req | 1 minute |
| OTP Verification | 5 req | 10 minutes |
| Feedback Wall | 120 req | 1 minute |
| Product Hub | 60 req | 1 minute |
| Roadmap (view) | 60 req | 1 minute |
| Roadmap (vote) | 10 req | 1 minute |
| Roadmap (request) | 10 req | 1 minute |
| Changelog | 60 req | 1 minute |
| Widget | 120 req | 1 minute |
Authenticationโ
| Endpoint | Limit | Window |
|---|---|---|
| Login/Register | 5 req | 1 minute |
| 2FA Verify | 3 req | 5 minutes |
| Password Reset | 5 req | 1 minute |
| Email Verification | 6 req | 1 minute |
API v2โ
| Endpoint | Limit | Window |
|---|---|---|
| All API endpoints | 60 req | 1 minute (per tenant) |
GDPRโ
| Endpoint | Limit | Window |
|---|---|---|
| Data Export | 10 req | 1 hour |
| Data Deletion | 5 req | 1 hour |
Per-Campaign Rate Limitingโ
Campaigns also have their own rate limits:
- Rate Limit Per IP -- configurable per campaign (default: 10)
- Rate Limit Window -- configurable in minutes (default: 1)
Rate Limit Responseโ
When rate limited, you receive a 429 Too Many Requests response:
{
"message": "Too Many Attempts.",
"retry_after": 42
}
Headers:
Retry-After: 42
X-RateLimit-Limit: 60
X-RateLimit-Remaining: 0