FlamPix Gateway API
  1. Docs
FlamPix Gateway API
  • 📜 API Overview
  • Docs
    • 🔑 Authentication & HMAC Signing
    • 🪝 Webhook
    • 🧵 Deposit Status Strings
    • 🚦 API Limits
  • Raiz
    • Create Deposit
      POST
    • Get Deposit Status
      GET
    • Get User Info
      GET
    • Health Check
      GET
    • Transaction Status Update
  • Esquemas
    • Customer
    • DepositRequest
    • DepositResponse
    • UserInfoResponse
    • WebhookPayload
  1. Docs

🚦 API Limits

To ensure fair usage and maintain the stability of the FlamPix Gateway API, rate limiting is applied to all endpoints. These limits are enforced based on the IP address and, for authenticated routes, the Client ID.

📊 Gateway Limits (Public API)#

EnvironmentRate Limit (Sustained)WindowDescription
Production120 requests/min60sStandard limit for production traffic.
Sandbox30 requests/min60sLower limit for development and testing.
Note: Authenticated clients also have a specific rate_limit_per_minute configured in their account, which may be lower or higher than the global edge limit depending on the plan.

🛡️ Other API Limits#

EndpointRate LimitBurst HandlingNotes
General API1000 req/15min-General limit for non-critical internal APIs.
Account Info120 req/minFlexibleFor checking account existence or creating charges.

🚦 Understanding Rate Limiting#

Rate limiting controls how many requests a user can make within a specific time frame. When you exceed these limits, the API returns a 429 Too Many Requests status code.

Key Concepts#

1.
Rate Limit: The maximum number of requests allowed within a specific time window (e.g., 1 minute).
2.
Window: The duration of time in which the requests are counted.
3.
Reset: When the window expires, your request count is reset to zero.

Example Scenario (Sandbox)#

If you are using the Sandbox environment with a limit of 30 requests per minute:
1.
You can send up to 30 requests between 10:00:00 and 10:01:00.
2.
If you send a 31st request at 10:00:45, it will be rejected with a 429 error.
3.
You must wait until 10:01:00 for the counter to reset before sending more requests.

🔄 Handling Rate Limits#

If you receive a 429 Too Many Requests response, your application should stop sending requests for a short period.

Response Headers#

The API includes headers in every response to help you monitor your usage:
X-RateLimit-Limit: The maximum number of requests allowed in the current window.
X-RateLimit-Remaining: The number of requests you have left in the current window.
X-RateLimit-Reset: The time (in seconds) until the current window resets.
Retry-After: The number of seconds to wait before making a new request (only present on 429 responses).

Best Practices#

1.
Implement Backoff: If you hit a limit, use an exponential backoff strategy (wait 1s, then 2s, then 4s...) before retrying.
2.
Spread Requests: Avoid sending bursts of requests at the exact same second. Distribute them evenly over the minute.
3.
Cache Data: Cache responses locally whenever possible (e.g., user info, exchange rates) to reduce the number of calls.
4.
Use Webhooks: Instead of polling GET /deposits/:id repeatedly, rely on Webhooks to get real-time updates.
Modificado em 2025-12-22 21:51:24
Página anterior
🧵 Deposit Status Strings
Próxima página
Raiz
Built with