vcaremd
GuidesAPI Reference
Guides
API StatusOperational
  • Overview
  • Authentication
  • Quickstart
  • Rate Limits
  • Idempotency
  • Pagination
  • Error Handling
  • Versioning
  • API Keys
  • Webhooks Security
  • IP Allowlisting
API StatusOperational
  • Overview
  • Authentication
  • Quickstart
  • Rate Limits
  • Idempotency
  • Pagination
  • Error Handling
  • Versioning
  • API Keys
  • Webhooks Security
  • IP Allowlisting
  1. Docs
  2. Getting Started
  3. Rate Limits & Errors

Rate Limits & Errors

Understand request quotas, response headers, and how to handle common API errors.

Rate limits

Production keys are limited to 600 requests per minute per organization. Sandbox keys are limited to 120 requests per minute.

  • X-RateLimit-Limit — maximum requests allowed in the window
  • X-RateLimit-Remaining — requests left in the current window
  • X-RateLimit-Reset — Unix timestamp when the window resets

When you exceed the limit, the API returns 429 Too Many Requests. Wait until the reset time or implement exponential backoff before retrying.

Error format

Errors are returned as JSON with a consistent shape:

{
  "error": {
    "code": "invalid_request",
    "message": "The request body is invalid.",
    "details": []
  }
}

Common error codes

CodeHTTPDescription
invalid_request400The request body or parameters are malformed.
unauthorized401Missing or invalid API key.
forbidden403The key is valid but lacks permission for this resource.
not_found404The requested resource does not exist.
rate_limit_exceeded429Too many requests in the current window.
internal_error500Unexpected server error. Retry with backoff.

Try the API

Use the interactive playground on the API reference page to send requests and inspect real responses.

Open API Reference