Our public API is guarded by a rate limiter using several techniques to prevent abuse. Calls to this API that are rate limited return a 429 status code along with relevant headers that indicate the remaining quota (X-RateLimit-Remaining-Org and X-RateLimit-Remaining-IP) and how long to wait until the next window specified in seconds (X-RateLimit-Reset-Seconds-Org and X-RateLimit-Reset-Seconds-IP). When rate limited, users should retry after a number of seconds equal to or greater than the maximum time of the last two X-RateLimit-Reset-Seconds-XXX headers.
These rate-limit headers are returned only by endpoints under api.split.io. Harness platform API endpoints (for example, endpoints under api.harness.io, such as /user/getaggregatedusers) do not return these headers. If you're migrating from deprecated Split API endpoints to Harness platform endpoints, you may notice that these headers are no longer included in responses.
API rate limiting and SDKsRate limiting applies only to this public API and does not affect the API used by the SDKs to serve feature evaluations.
