Rate Limits

Rate limits are determined by your API access plan. Each plan specifies a maximum number of requests per minute (RPM). Exceeding the limit returns a 429 Too Many Requests response.

How Limits Work

• Limits are applied per API key.
• Each plan has an requests_per_minute (RPM) setting configured by the admin.
• Higher-tier plans have higher RPM limits.
• Bulk order limit (bulk_max_items) controls how many items per add_bulk request.
• Rate limits reset every minute.

Rate Limit Headers

Each API response includes headers with your current rate limit status:

X-RateLimit-Limit: 60
X-RateLimit-Remaining: 45
X-RateLimit-Reset: 1622448000

Handling Rate Limits

When you exceed the limit, the API returns HTTP 429. Implement exponential backoff:

function apiRequest($data) {
    $response = curl_exec($ch);
    $httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);

    if ($httpCode === 429) {
        $retryAfter = 1; // seconds
        sleep($retryAfter);
        return apiRequest($data); // retry
    }
    return json_decode($response, true);
}

API Usage Logs

Your Developer Portal logs every API request with the following details:

• Timestamp — When the request was made
• Endpoint — The API URL called
• Action — The action parameter used
• Status Code — HTTP response code (200, 400, 403, etc.)
• Latency — Response time in milliseconds
• IP Address — The requesting IP

You can filter logs by endpoint, action, status code, and date range. Export logs to CSV from the Developer Portal.

Plan Features

Your API access plan determines which features are enabled:

• SMM API — enable_smm: allows services, add, add_bulk, status, balance actions
• VTU API — enable_vtu: allows all vtu_* actions
• SMM Discount — percentage discount on SMM service rates
• VTU Discounts — per-category discounts on airtime, data, SME, cable, electricity, education, and recharge card