API rate limits
Last updated: 2026-06-01
The Drömlik API enforces per-tenant rate limits to keep the platform fair. Limits are generous for normal integration workloads, but you should design clients to back off when they hit a 429.
Limits
| Scope | Limit |
|---|---|
| Per API key | 60 requests per second, 3,000 per minute. |
| Per tenant (all keys combined) | 120 requests per second. |
Token endpoint (/get_token, /refresh_token) | 10 requests per minute. |
| Bulk endpoints (CDR export, extension bulk-create) | 5 concurrent requests. |
Headers returned on every response
X-RateLimit-Limit— the limit for this key.X-RateLimit-Remaining— requests left in the current window.X-RateLimit-Reset— UNIX timestamp when the window resets.
When you hit the limit
The API returns HTTP 429 Too Many Requests with a Retry-After header. Wait at least that many seconds before retrying. Implement exponential backoff for retries.
Need higher limits?
Contact Drömlik support with your use case. We routinely raise limits for verified production integrations.