Skip to content
Documentation

Best Practices

  • Token management: Cache accessToken and signatureToken securely. Refresh only when expired.
  • Rate limits: Expect global rate limits and stricter auth limits; handle 429 with backoff.
  • Idempotency: For create operations, avoid replaying the same request unless necessary.
  • Request signing: Always sign write requests using the normalized JSON body.
  • Security: Use HTTPS, store tokens in secure storage, and rotate API keys regularly.