Skip to content

APIMGMT-1962: Enhance rate limiting documentation with route-specific backoff details and configuration options. Include YAML example for enabling backoff in API routes across multiple versions #1105

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
victor-mancera-sp wants to merge 1 commit into
base: main
Choose a base branch
from
Open

APIMGMT-1962: Enhance rate limiting documentation with route-specific backoff details and configuration options. Include YAML example for enabling backoff in API routes across multiple versions #1105

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
22 changes: 22 additions & 0 deletions docs/api/beta/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,28 @@ separately. If you exceed the rate limit, expect the following response from the

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
22 changes: 22 additions & 0 deletions docs/api/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,6 +24,28 @@

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

@ben-godin-sp ben-godin-sp May 15, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is good, but maybe expand this section with an explanation of what a backoff is, and when it is applied. Customers are very concerned about rate limiting; I'm still getting questions about the addition of client_id to the rate limit key.


Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

@ben-godin-sp ben-godin-sp May 15, 2026

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Like Claude mentioned, you should remove the Route-owner configuration section. Non-SailPoint devs don't need to know about the internals of sp-gateway.


Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

Check failure on line 47 in docs/api/rate-limit.md

View check run for this annotation

Claude / Claude Code Review

Internal-only route-owner configuration leaked into public docs 

The new **"Route-owner configuration"** subsection (added to all 6 `rate-limit.md` files) is internal SailPoint engineering content that doesn't belong on the public developer portal. It's explicitly addressed to "Route owners," references an internal repo path (`cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`) that external readers can't access, and exposes internal gateway knobs (`redisTimeoutMs`, the "gateway backoff rollout control" feature flag) that public API consumers can
Comment on lines +33 to +47

@claude claude Bot May 15, 2026

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🔴 The new "Route-owner configuration" subsection (added to all 6 rate-limit.md files) is internal SailPoint engineering content that doesn't belong on the public developer portal. It's explicitly addressed to "Route owners," references an internal repo path (cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml) that external readers can't access, and exposes internal gateway knobs (redisTimeoutMs, the "gateway backoff rollout control" feature flag) that public API consumers cannot configure. The preceding "Route-specific backoff" section already covers everything external consumers need — please remove this subsection from all 6 files and keep it in internal docs instead.

Extended reasoning...

What the bug is

The PR adds two new subsections to docs/api/rate-limit.md and its 5 versioned siblings (beta, v3, v2024, v2025, v2026). The first — Route-specific backoff — is appropriately scoped for external API consumers: it tells them Retry-After may be longer than the default reset window and instructs them to honor it and reduce concurrency. That part is fine.

The second — Route-owner configuration — is internal-only material that has been published to the public developer portal. The repository's own README states that developer.sailpoint.com is the public-facing developer portal, so the audience for these pages is external API consumers, not SailPoint engineers.

How the audience mismatch manifests

Four concrete tells in the added block show it's aimed at the wrong audience:

  1. Explicit addressee. The opening sentence says "Route owners can enable backoff in the API route specification…" — i.e., the SailPoint engineers who own gateway route specs, not the external developers reading this site.
  2. Internal repo path. "The authoritative route YAML is maintained in cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml." This is a private SailPoint engineering repo path. External readers cannot browse, clone, or modify that file.
  3. Internal implementation knobs. redisTimeoutMs ties documentation to the gateway's internal Redis-backed implementation. External consumers neither see nor control Redis behavior.
  4. Internal feature flag. "…and the gateway backoff rollout control is enabled" references an internal rollout/feature flag that external readers cannot inspect or toggle.

Why the preceding section is already sufficient

For the external audience, only the answer to "what do I do when this happens?" matters. That is fully covered by the prior subsection: clients still receive 429 Too Many Requests, must honor the Retry-After value, and should reduce concurrency / spread requests. Adding the YAML config block teaches external readers nothing actionable — they can't apply it.

Impact

  • Leaks internal architecture details (Redis, internal feature flag, internal route-spec YAML path) onto a public site.
  • Confuses external readers, who may attempt to apply a "configuration" they have no way to set.
  • Amplified 6× because the same block was duplicated across every version-specific rate-limit.md.

Step-by-step proof

  1. Open docs/api/rate-limit.md on the rendered site (developer.sailpoint.com). The README states this repo "contains the complete build, with assets, for everything seen on developer.sailpoint.com", so the page is public.
  2. Scroll past "Route-specific backoff" — appropriate, audience-neutral content.
  3. Reach the new "Route-owner configuration" subsection. As an external developer, ask: "How do I edit cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml?" Answer: you cannot — it lives in a SailPoint-internal repo.
  4. Ask: "How do I enable the gateway backoff rollout control?" Answer: you cannot — it is an internal SailPoint feature flag.
  5. Ask: "What do I do with redisTimeoutMs: 5?" Answer: nothing — you do not run SailPoint's gateway or its Redis.
  6. Repeat for the 5 other versioned copies (beta, v3, v2024, v2025, v2026) — the same internal-only block is duplicated everywhere.

How to fix

Remove the entire "Route-owner configuration" subsection (including its YAML code block and the trailing "Backoff is active only when…" paragraph) from all 6 files. Keep "Route-specific backoff", which is correctly scoped for the public audience. If the route-owner content is still needed by SailPoint engineers, host it in an internal docs location (internal Confluence, the cloud-api-client-common repo's README, etc.) rather than on the public developer portal.


:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
22 changes: 22 additions & 0 deletions docs/api/v2024/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,28 @@ separately. If you exceed the rate limit, expect the following response from the

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
22 changes: 22 additions & 0 deletions docs/api/v2025/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,28 @@ separately. If you exceed the rate limit, expect the following response from the

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
22 changes: 22 additions & 0 deletions docs/api/v2026/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,28 @@ separately. If you exceed the rate limit, expect the following response from the

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
22 changes: 22 additions & 0 deletions docs/api/v3/rate-limit.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,28 @@ separately. If you exceed the rate limit, expect the following response from the

- **Retry-After**: [seconds to wait before rate limit resets]

### Route-specific backoff

Some APIs may apply an additional route-specific backoff when the same client repeatedly exceeds rate limits across multiple intervals. When backoff is active, the API still returns `429 Too Many Requests`, but the `Retry-After` header may be longer than the standard rate-limit reset window.

Always wait for the full `Retry-After` value before sending another request. If your integration continues to exceed limits, reduce request concurrency or spread requests over a longer period so each `client_id` stays within the documented limits.

### Route-owner configuration

Route owners can enable backoff in the API route specification for routes that need escalating retry delays. The authoritative route YAML is maintained in `cloud-api-client-common/api-route-specs/sp-gateway-routes.yaml`.

```yaml
backOffConfig:
enabled: true
intervalThreshold: 3 # Distinct violated intervals before backoff triggers
tiers: [60, 300, 600, 1200] # Backoff durations per escalation tier, in seconds
violationWindow: 120 # Window for counting violated intervals, in seconds
tierMemoryWindow: 3600 # How long to remember the last tier after expiry, in seconds
redisTimeoutMs: 5 # Max time allowed per Redis backoff operation, in milliseconds
```

Backoff is active only when the route has `backOffConfig.enabled: true` and the gateway backoff rollout control is enabled. Omitted or non-positive values fall back to the gateway defaults.

:::info

Specific APIs may have different rate limiting. Refer to their specifications for this information.
Expand Down
Loading