Design Considerations
Rate Limits
Handshakes have enforced rate limits on all our APIs to ensure fair usage by all parties, and maintain the stability and performance of the API server.
Each individual API endpoint has its own rate limit. In the event that your application exceeds the rate limit, the API will return an error response (HTTP status code 429), and it will temporarily block further requests for a period of 10 minutes, after which your application can resume making requests.
Allowlisting
Allowlisting (previously known as whitelisting) is a form of endpoint security that helps organisations increase their application or network security. It helps to prevent adversary from running malicious traffic through your network.
If your organisation’s compliance policies requires allowlisting for egress connection, we recommend using a domain-based allowlisting.
We do not support the following modes of allow-listing:
Static IP addressIP address rangeCertificate