Rate Limiting

WineDirect enforces API rate limits for its APIs. Rate limit configuration consists of a per minute request limit per webservice account on all read endpoints. Limits are currently set to but subject to change (you can always refer to the "x-rate-limit-limit" header to view the up-to-date limits):

  • Number of maximum concurrent requests per username per second: 6 requests
  • Number of maximum requests per username at the last minute: 300 requests

There also may be endpoints with higher limits than others (again, refer to the headers for those exact limits).

We return rate limit headers in our API responses to allow developers to monitor their API usage.

Header Name Description
The maximum number of requests you're permitted to make per rate limit window.
The number of requests remaining in the current rate limit window.
The time at which the current rate limit window resets in UTC epoch seconds.


If you exceed your rate limit, your request will be rejected. An "HTTP 429 (Too Many Requests)" response will be returned. You must then wait until the end of the current rate limit window before making any more requests, which we'd suggest building logic into your application for.