Project Rate Limits
Ory Network currently enforces three rate limit policies based on the path of your request.
/sessions/whoami: a dedicated rate limit policy for session checks./identities: a dedicated rate limit policy for identity inserts and updates.*: rate limit policy for all remaining calls.
Each of these policies incorporates two types of rate limits:
- The
burstlimit, which regulates the maximum number of requests per second, allowing brief spikes in request volume. - The
sustainedlimit, controlling the number of requests over a one-minute period.
The table below outlines the rate limit thresholds for each subscription plan tier, as per these three policies:
| Subscription Plan | Path / Bucket | Rate Limits (burst/sustained) |
|---|---|---|
| Develop | /sessions/whoami: /identities: *: | 15 rps / 450 rpm 1 rps / 10 rpm 15 rps / 450 rpm |
| Essentials | /sessions/whoami: /identities: *: | 80 rps / 1800 rpm 10 rps / 300 rpm 40 rps / 900 rpm |
| Scale | /sessions/whoami: /identities: *: | 800 rps / 18000 rpm 20 rps / 600 rpm 400 rps / 9000 rpm |