Max API request rate to https://api.connect.withsecure.com/ before throttling?

Mike_F · 2023-08-02T12:45:22+00:00

There was an error rendering this rich post.

Hi all

My companies application is needing to fire off many concurrent requests to the Elements API endpoint: https://api.connect.withsecure.com/, but we are currently experiencing denies due to throttling.

The API response is "Too many requests were sent from your IP".

Could you please provide the exact (numeric) rate ceiling, so that we do exceed it?

I'm trying to avoid my application failing unpredictably, and making all requests synchronous is taking far too long (>5 min).

Thank you!

Find more posts tagged with

API

Elements

Accepted answers

SergeH

Hello,
Currently the throttling is configured as 200 queries/5 min/IP address.
We are thinking if we could improve the current solution, so I am quite interested to hear how it fits your needs.

You can also contact me directly through PM if you prefer.

Serge

All comments

Mike_F

This is immensely helpful, thank you so much for the update! From first skim I can already see that it answers at least two of our use cases immediately.

Many thanks for your help with all my API questions, Serge!

P.S

My organization has recently bought and begun using the Elements Vulnerability Management. Any similar cookbook would also prove helpful for the VM API endpoint - should you have the time to produce one at a later date :)

SergeH

We have just introduced an Elements API Cookbook explaining how to implement polling detections without hitting the throttling problem: https://connect.withsecure.com/getting-started/elements-cookbook

The trick is simply to first get a list of the incidents that had been modified and then querying new detections only for these.

PS: This cookbook is a must read for anyone integrating with Elements API. It provide guidance how to implement typical use cases with Python code examples.

SergeH

This throttling limit is only for the incidents endpoints ( /incidents/v1) of Elements API.

Mike_F

Great, thank you Serge!

Is this limit you quote for all WithSecure endpoints?

Eg:

api.radar.f-secure.com/api/
/api.connect.withsecure.com/
…

Thank you for the detailed feedback so far!
Best
Michael

SergeH

JamesC

Hi @Mike_F Thank you for reaching out to WithSecure support.

We are checking with our product team and will update you as soon as I hear back.