← Back to Index

Complete Rate Limit Configuration

Generated from endpoint-bucket-mapping.csv, threshold-v3.csv, and values.yaml on 2026-02-18 16:01:12 UTC (commit: 48f4dc3)

About This Document

This document provides a comprehensive view of all API endpoints and their rate limits across different subscription tiers and workspace environments.

Subscription Tiers: - Develop: Developer plan - Entry-level subscription - Production: Production plan - Professional tier - Growth: Growth plan - Scaling tier - Enterprise: Enterprise plan - Custom tier

Workspace Environments: Each workspace includes three built-in environments: - Production: Live applications with full tier rate limits - Staging: Pre-release testing environment - Development: Development and testing environment

Rate Limit Format: - Format: {sustained} rpm / {burst} rps - Sustained: Maximum requests per minute (rpm) - consistent throughput - Burst: Maximum requests per second (rps) - handles short traffic spikes - N/A: Burst value not configured

Table Organization: - Endpoints are grouped by rate limit bucket - Multiple HTTP methods for the same path are shown in parentheses - Bucket name appears only once per group

Develop Tier

Kratos

Endpoint	Bucket	Development
`/admin/identities/{id} (GET)` `/admin/sessions/{id} (GET)`	`kratos-admin-low`	100 rpm / 5 rps
`/admin/courier/messages/{id} (GET)` `/admin/identities (GET)` `/admin/identities/by/external/{externalID} (GET)` `/admin/identities/{id}/sessions (GET)` `/admin/sessions (GET)` `/schemas (GET)` `/schemas/{id} (GET)` `/scim/{client}/v2/Groups (GET)` `/scim/{client}/v2/Groups/{id} (GET)` `/scim/{client}/v2/Schemas (GET)` `/scim/{client}/v2/Schemas/{id} (GET)` `/scim/{client}/v2/ServiceProviderConfig (GET)` `/scim/{client}/v2/Users (GET)` `/scim/{client}/v2/Users/{id} (GET)`	`kratos-admin-medium`	50 rpm / 3 rps
`/admin/courier/messages (GET)` `/admin/identities (PATCH, POST)` `/admin/identities/{id} (DELETE, PATCH, PUT)` `/admin/identities/{id}/credentials/{type} (DELETE)` `/admin/identities/{id}/sessions (DELETE)` `/admin/recovery/code (POST)` `/admin/recovery/link (POST)` `/admin/sessions/{id} (DELETE)` `/admin/sessions/{id}/extend (PATCH)` `/scim/{client}/v2/Groups (POST)` `/scim/{client}/v2/Groups/{id} (DELETE, PATCH, PUT)` `/scim/{client}/v2/Users (POST)` `/scim/{client}/v2/Users/{id} (DELETE, PATCH, PUT)`	`kratos-admin-high`	100 rpm / 5 rps
`/self-service/errors (GET)` `/self-service/fed-cm/parameters (GET)` `/self-service/login (GET)` `/self-service/login/flows (GET)` `/self-service/logout (GET)` `/self-service/methods/oidc/callback (GET)` `/self-service/recovery (GET)` `/self-service/recovery/flows (GET)` `/self-service/registration (GET)` `/self-service/registration/flows (GET)` `/self-service/settings (GET)` `/self-service/settings/flows (GET)` `/self-service/verification (GET)` `/self-service/verification/flows (GET)` `/sessions/whoami (GET)`	`kratos-public-low`	200 rpm / 10 rps
`/self-service/login/api (GET)` `/self-service/login/browser (GET, POST)` `/self-service/logout/api (DELETE)` `/self-service/logout/browser (GET)` `/self-service/methods/oidc/callback/{provider_id} (GET)` `/self-service/methods/oidc/organizations/{organization_id} (GET)` `/self-service/methods/saml/callback/{provider_id} (GET)` `/self-service/methods/saml/organizations/{organization_id} (GET)` `/self-service/recovery/api (GET)` `/self-service/recovery/browser (GET)` `/self-service/registration/api (GET)` `/self-service/registration/browser (GET)` `/self-service/settings/api (GET)` `/self-service/settings/browser (GET)` `/self-service/verification/api (GET)` `/self-service/verification/browser (GET)` `/sessions (GET)` `/sessions/token-exchange (GET)`	`kratos-public-medium`	100 rpm / 5 rps
`/self-service/fed-cm/token (POST)` `/self-service/login (POST)` `/self-service/recovery (POST)` `/self-service/registration (POST)` `/self-service/settings (POST)` `/self-service/verification (POST)` `/sessions (DELETE)` `/sessions/{id} (DELETE)`	`kratos-public-high`	50 rpm / 3 rps

Hydra

Endpoint	Bucket	Development
`/admin/clients/{id} (GET)` `/admin/oauth2/auth/requests/consent (GET)` `/admin/oauth2/auth/requests/consent/accept (PUT)` `/admin/oauth2/auth/requests/consent/reject (PUT)` `/admin/oauth2/auth/requests/device/accept (PUT)` `/admin/oauth2/auth/requests/login (GET)` `/admin/oauth2/auth/requests/login/accept (PUT)` `/admin/oauth2/auth/requests/login/reject (PUT)` `/admin/oauth2/auth/requests/logout (GET)` `/admin/oauth2/auth/requests/logout/accept (PUT)` `/admin/oauth2/auth/requests/logout/reject (PUT)` `/admin/oauth2/auth/sessions/consent (GET)` `/admin/oauth2/introspect (POST)` `/oauth2/device/verify (GET)` `/oauth2/register/{id} (GET)`	`hydra-admin-low`	40 rpm / 3 rps
`/admin/clients (GET)` `/admin/keys/{set} (GET)` `/admin/keys/{set}/{kid} (GET)` `/admin/trust/grants/jwt-bearer/issuers (GET)` `/admin/trust/grants/jwt-bearer/issuers/{id} (GET)` `/credentials (POST)`	`hydra-admin-medium`	20 rpm / 2 rps
`/admin/clients (POST)` `/admin/clients/{id} (DELETE, PATCH, PUT)` `/admin/clients/{id}/lifespans (PUT)` `/admin/keys/{set} (DELETE, POST, PUT)` `/admin/keys/{set}/{kid} (DELETE, PUT)` `/admin/oauth2/auth/sessions/consent (DELETE)` `/admin/oauth2/auth/sessions/login (DELETE)` `/admin/oauth2/tokens (DELETE)` `/admin/trust/grants/jwt-bearer/issuers (POST)` `/admin/trust/grants/jwt-bearer/issuers/{id} (DELETE)`	`hydra-admin-high`	20 rpm / 2 rps
`/.well-known/jwks.json (GET)` `/.well-known/openid-configuration (GET)` `/.well-known/ory/webauthn.js (GET)` `/oauth2/consent (GET)` `/oauth2/device/auth (POST)` `/oauth2/fallbacks/logout/callback (GET)`	`hydra-public-low`	60 rpm / 3 rps
`/oauth2/auth (GET, POST)` `/oauth2/revoke (POST)` `/oauth2/sessions/logout (GET, POST)` `/oauth2/token (POST)` `/userinfo (GET)`	`hydra-public-medium`	40 rpm / 3 rps
`/oauth2/register (POST)` `/oauth2/register/{id} (DELETE, PUT)`	`hydra-public-high`	20 rpm / 2 rps

Keto

Endpoint	Bucket	Development
`/opl/syntax/check (POST)` `/relation-tuples (GET)` `/relation-tuples/expand (GET)`	`keto-admin-medium`	100 rpm / 5 rps
`/admin/relation-tuples (DELETE, PATCH, PUT)` `/namespaces (GET)` `/ory.keto.relation_tuples.v1alpha2.WriteService/TransactRelationTuples (POST)`	`keto-admin-high`	60 rpm / 3 rps
`/ory.keto.relation_tuples.v1alpha2.CheckService/BatchCheck (POST)` `/ory.keto.relation_tuples.v1alpha2.CheckService/Check (POST)` `/relation-tuples/batch/check (POST)` `/relation-tuples/check (GET, POST)` `/relation-tuples/check/openapi (GET, POST)`	`keto-public-low`	120 rpm / 7 rps

Production Tier

Kratos

Endpoint	Bucket	Development	Staging	Production
`/admin/identities/{id} (GET)` `/admin/sessions/{id} (GET)`	`kratos-admin-low`	200 rpm / 10 rps	200 rpm / 10 rps	400 rpm / 15 rps
`/admin/courier/messages/{id} (GET)` `/admin/identities (GET)` `/admin/identities/by/external/{externalID} (GET)` `/admin/identities/{id}/sessions (GET)` `/admin/sessions (GET)` `/schemas (GET)` `/schemas/{id} (GET)` `/scim/{client}/v2/Groups (GET)` `/scim/{client}/v2/Groups/{id} (GET)` `/scim/{client}/v2/Schemas (GET)` `/scim/{client}/v2/Schemas/{id} (GET)` `/scim/{client}/v2/ServiceProviderConfig (GET)` `/scim/{client}/v2/Users (GET)` `/scim/{client}/v2/Users/{id} (GET)`	`kratos-admin-medium`	100 rpm / 5 rps	100 rpm / 5 rps	200 rpm / 10 rps
`/admin/courier/messages (GET)` `/admin/identities (PATCH, POST)` `/admin/identities/{id} (DELETE, PATCH, PUT)` `/admin/identities/{id}/credentials/{type} (DELETE)` `/admin/identities/{id}/sessions (DELETE)` `/admin/recovery/code (POST)` `/admin/recovery/link (POST)` `/admin/sessions/{id} (DELETE)` `/admin/sessions/{id}/extend (PATCH)` `/scim/{client}/v2/Groups (POST)` `/scim/{client}/v2/Groups/{id} (DELETE, PATCH, PUT)` `/scim/{client}/v2/Users (POST)` `/scim/{client}/v2/Users/{id} (DELETE, PATCH, PUT)`	`kratos-admin-high`	200 rpm / 10 rps	200 rpm / 10 rps	400 rpm / 15 rps
`/self-service/errors (GET)` `/self-service/fed-cm/parameters (GET)` `/self-service/login (GET)` `/self-service/login/flows (GET)` `/self-service/logout (GET)` `/self-service/methods/oidc/callback (GET)` `/self-service/recovery (GET)` `/self-service/recovery/flows (GET)` `/self-service/registration (GET)` `/self-service/registration/flows (GET)` `/self-service/settings (GET)` `/self-service/settings/flows (GET)` `/self-service/verification (GET)` `/self-service/verification/flows (GET)` `/sessions/whoami (GET)`	`kratos-public-low`	400 rpm / 15 rps	400 rpm / 15 rps	2400 rpm / 80 rps
`/self-service/login/api (GET)` `/self-service/login/browser (GET, POST)` `/self-service/logout/api (DELETE)` `/self-service/logout/browser (GET)` `/self-service/methods/oidc/callback/{provider_id} (GET)` `/self-service/methods/oidc/organizations/{organization_id} (GET)` `/self-service/methods/saml/callback/{provider_id} (GET)` `/self-service/methods/saml/organizations/{organization_id} (GET)` `/self-service/recovery/api (GET)` `/self-service/recovery/browser (GET)` `/self-service/registration/api (GET)` `/self-service/registration/browser (GET)` `/self-service/settings/api (GET)` `/self-service/settings/browser (GET)` `/self-service/verification/api (GET)` `/self-service/verification/browser (GET)` `/sessions (GET)` `/sessions/token-exchange (GET)`	`kratos-public-medium`	200 rpm / 10 rps	200 rpm / 10 rps	400 rpm / 15 rps
`/self-service/fed-cm/token (POST)` `/self-service/login (POST)` `/self-service/recovery (POST)` `/self-service/registration (POST)` `/self-service/settings (POST)` `/self-service/verification (POST)` `/sessions (DELETE)` `/sessions/{id} (DELETE)`	`kratos-public-high`	100 rpm / 5 rps	100 rpm / 5 rps	200 rpm / 10 rps

Hydra

Endpoint	Bucket	Development	Staging	Production
`/admin/clients/{id} (GET)` `/admin/oauth2/auth/requests/consent (GET)` `/admin/oauth2/auth/requests/consent/accept (PUT)` `/admin/oauth2/auth/requests/consent/reject (PUT)` `/admin/oauth2/auth/requests/device/accept (PUT)` `/admin/oauth2/auth/requests/login (GET)` `/admin/oauth2/auth/requests/login/accept (PUT)` `/admin/oauth2/auth/requests/login/reject (PUT)` `/admin/oauth2/auth/requests/logout (GET)` `/admin/oauth2/auth/requests/logout/accept (PUT)` `/admin/oauth2/auth/requests/logout/reject (PUT)` `/admin/oauth2/auth/sessions/consent (GET)` `/admin/oauth2/introspect (POST)` `/oauth2/device/verify (GET)` `/oauth2/register/{id} (GET)`	`hydra-admin-low`	80 rpm / 4 rps	80 rpm / 4 rps	250 rpm / 10 rps
`/admin/clients (GET)` `/admin/keys/{set} (GET)` `/admin/keys/{set}/{kid} (GET)` `/admin/trust/grants/jwt-bearer/issuers (GET)` `/admin/trust/grants/jwt-bearer/issuers/{id} (GET)` `/credentials (POST)`	`hydra-admin-medium`	40 rpm / 3 rps	40 rpm / 3 rps	80 rpm / 4 rps
`/admin/clients (POST)` `/admin/clients/{id} (DELETE, PATCH, PUT)` `/admin/clients/{id}/lifespans (PUT)` `/admin/keys/{set} (DELETE, POST, PUT)` `/admin/keys/{set}/{kid} (DELETE, PUT)` `/admin/oauth2/auth/sessions/consent (DELETE)` `/admin/oauth2/auth/sessions/login (DELETE)` `/admin/oauth2/tokens (DELETE)` `/admin/trust/grants/jwt-bearer/issuers (POST)` `/admin/trust/grants/jwt-bearer/issuers/{id} (DELETE)`	`hydra-admin-high`	40 rpm / 3 rps	40 rpm / 3 rps	80 rpm / 4 rps
`/.well-known/jwks.json (GET)` `/.well-known/openid-configuration (GET)` `/.well-known/ory/webauthn.js (GET)` `/oauth2/consent (GET)` `/oauth2/device/auth (POST)` `/oauth2/fallbacks/logout/callback (GET)`	`hydra-public-low`	120 rpm / 7 rps	120 rpm / 7 rps	250 rpm / 10 rps
`/oauth2/auth (GET, POST)` `/oauth2/revoke (POST)` `/oauth2/sessions/logout (GET, POST)` `/oauth2/token (POST)` `/userinfo (GET)`	`hydra-public-medium`	80 rpm / 4 rps	80 rpm / 4 rps	320 rpm / 10 rps
`/oauth2/register (POST)` `/oauth2/register/{id} (DELETE, PUT)`	`hydra-public-high`	40 rpm / 3 rps	40 rpm / 3 rps	80 rpm / 4 rps

Keto

Endpoint	Bucket	Development	Staging	Production
`/opl/syntax/check (POST)` `/relation-tuples (GET)` `/relation-tuples/expand (GET)`	`keto-admin-medium`	200 rpm / 10 rps	200 rpm / 10 rps	500 rpm / 20 rps
`/admin/relation-tuples (DELETE, PATCH, PUT)` `/namespaces (GET)` `/ory.keto.relation_tuples.v1alpha2.WriteService/TransactRelationTuples (POST)`	`keto-admin-high`	120 rpm / 7 rps	120 rpm / 7 rps	250 rpm / 10 rps
`/ory.keto.relation_tuples.v1alpha2.CheckService/BatchCheck (POST)` `/ory.keto.relation_tuples.v1alpha2.CheckService/Check (POST)` `/relation-tuples/batch/check (POST)` `/relation-tuples/check (GET, POST)` `/relation-tuples/check/openapi (GET, POST)`	`keto-public-low`	240 rpm / 10 rps	240 rpm / 10 rps	1500 rpm / 55 rps

Growth Tier

Kratos

Endpoint	Bucket	Development	Staging	Production
`/admin/identities/{id} (GET)` `/admin/sessions/{id} (GET)`	`kratos-admin-low`	200 rpm / 10 rps	200 rpm / 10 rps	1200 rpm / 45 rps
`/admin/courier/messages/{id} (GET)` `/admin/identities (GET)` `/admin/identities/by/external/{externalID} (GET)` `/admin/identities/{id}/sessions (GET)` `/admin/sessions (GET)` `/schemas (GET)` `/schemas/{id} (GET)` `/scim/{client}/v2/Groups (GET)` `/scim/{client}/v2/Groups/{id} (GET)` `/scim/{client}/v2/Schemas (GET)` `/scim/{client}/v2/Schemas/{id} (GET)` `/scim/{client}/v2/ServiceProviderConfig (GET)` `/scim/{client}/v2/Users (GET)` `/scim/{client}/v2/Users/{id} (GET)`	`kratos-admin-medium`	100 rpm / 5 rps	100 rpm / 5 rps	400 rpm / 15 rps
`/admin/courier/messages (GET)` `/admin/identities (PATCH, POST)` `/admin/identities/{id} (DELETE, PATCH, PUT)` `/admin/identities/{id}/credentials/{type} (DELETE)` `/admin/identities/{id}/sessions (DELETE)` `/admin/recovery/code (POST)` `/admin/recovery/link (POST)` `/admin/sessions/{id} (DELETE)` `/admin/sessions/{id}/extend (PATCH)` `/scim/{client}/v2/Groups (POST)` `/scim/{client}/v2/Groups/{id} (DELETE, PATCH, PUT)` `/scim/{client}/v2/Users (POST)` `/scim/{client}/v2/Users/{id} (DELETE, PATCH, PUT)`	`kratos-admin-high`	200 rpm / 10 rps	200 rpm / 10 rps	1200 rpm / 45 rps
`/self-service/errors (GET)` `/self-service/fed-cm/parameters (GET)` `/self-service/login (GET)` `/self-service/login/flows (GET)` `/self-service/logout (GET)` `/self-service/methods/oidc/callback (GET)` `/self-service/recovery (GET)` `/self-service/recovery/flows (GET)` `/self-service/registration (GET)` `/self-service/registration/flows (GET)` `/self-service/settings (GET)` `/self-service/settings/flows (GET)` `/self-service/verification (GET)` `/self-service/verification/flows (GET)` `/sessions/whoami (GET)`	`kratos-public-low`	400 rpm / 15 rps	400 rpm / 15 rps	7200 rpm / 240 rps
`/self-service/login/api (GET)` `/self-service/login/browser (GET, POST)` `/self-service/logout/api (DELETE)` `/self-service/logout/browser (GET)` `/self-service/methods/oidc/callback/{provider_id} (GET)` `/self-service/methods/oidc/organizations/{organization_id} (GET)` `/self-service/methods/saml/callback/{provider_id} (GET)` `/self-service/methods/saml/organizations/{organization_id} (GET)` `/self-service/recovery/api (GET)` `/self-service/recovery/browser (GET)` `/self-service/registration/api (GET)` `/self-service/registration/browser (GET)` `/self-service/settings/api (GET)` `/self-service/settings/browser (GET)` `/self-service/verification/api (GET)` `/self-service/verification/browser (GET)` `/sessions (GET)` `/sessions/token-exchange (GET)`	`kratos-public-medium`	200 rpm / 10 rps	200 rpm / 10 rps	800 rpm / 30 rps
`/self-service/fed-cm/token (POST)` `/self-service/login (POST)` `/self-service/recovery (POST)` `/self-service/registration (POST)` `/self-service/settings (POST)` `/self-service/verification (POST)` `/sessions (DELETE)` `/sessions/{id} (DELETE)`	`kratos-public-high`	100 rpm / 5 rps	100 rpm / 5 rps	600 rpm / 25 rps

Hydra

Endpoint	Bucket	Development	Staging	Production
`/admin/clients/{id} (GET)` `/admin/oauth2/auth/requests/consent (GET)` `/admin/oauth2/auth/requests/consent/accept (PUT)` `/admin/oauth2/auth/requests/consent/reject (PUT)` `/admin/oauth2/auth/requests/device/accept (PUT)` `/admin/oauth2/auth/requests/login (GET)` `/admin/oauth2/auth/requests/login/accept (PUT)` `/admin/oauth2/auth/requests/login/reject (PUT)` `/admin/oauth2/auth/requests/logout (GET)` `/admin/oauth2/auth/requests/logout/accept (PUT)` `/admin/oauth2/auth/requests/logout/reject (PUT)` `/admin/oauth2/auth/sessions/consent (GET)` `/admin/oauth2/introspect (POST)` `/oauth2/device/verify (GET)` `/oauth2/register/{id} (GET)`	`hydra-admin-low`	80 rpm / 4 rps	80 rpm / 4 rps	2400 rpm / 80 rps
`/admin/clients (GET)` `/admin/keys/{set} (GET)` `/admin/keys/{set}/{kid} (GET)` `/admin/trust/grants/jwt-bearer/issuers (GET)` `/admin/trust/grants/jwt-bearer/issuers/{id} (GET)` `/credentials (POST)`	`hydra-admin-medium`	40 rpm / 3 rps	40 rpm / 3 rps	160 rpm / 7 rps
`/admin/clients (POST)` `/admin/clients/{id} (DELETE, PATCH, PUT)` `/admin/clients/{id}/lifespans (PUT)` `/admin/keys/{set} (DELETE, POST, PUT)` `/admin/keys/{set}/{kid} (DELETE, PUT)` `/admin/oauth2/auth/sessions/consent (DELETE)` `/admin/oauth2/auth/sessions/login (DELETE)` `/admin/oauth2/tokens (DELETE)` `/admin/trust/grants/jwt-bearer/issuers (POST)` `/admin/trust/grants/jwt-bearer/issuers/{id} (DELETE)`	`hydra-admin-high`	40 rpm / 3 rps	40 rpm / 3 rps	160 rpm / 7 rps
`/.well-known/jwks.json (GET)` `/.well-known/openid-configuration (GET)` `/.well-known/ory/webauthn.js (GET)` `/oauth2/consent (GET)` `/oauth2/device/auth (POST)` `/oauth2/fallbacks/logout/callback (GET)`	`hydra-public-low`	120 rpm / 7 rps	120 rpm / 7 rps	720 rpm / 30 rps
`/oauth2/auth (GET, POST)` `/oauth2/revoke (POST)` `/oauth2/sessions/logout (GET, POST)` `/oauth2/token (POST)` `/userinfo (GET)`	`hydra-public-medium`	80 rpm / 4 rps	80 rpm / 4 rps	1000 rpm / 35 rps
`/oauth2/register (POST)` `/oauth2/register/{id} (DELETE, PUT)`	`hydra-public-high`	40 rpm / 3 rps	40 rpm / 3 rps	160 rpm / 7 rps

Keto

Endpoint	Bucket	Development	Staging	Production
`/opl/syntax/check (POST)` `/relation-tuples (GET)` `/relation-tuples/expand (GET)`	`keto-admin-medium`	200 rpm / 10 rps	200 rpm / 10 rps	1000 rpm / 35 rps
`/admin/relation-tuples (DELETE, PATCH, PUT)` `/namespaces (GET)` `/ory.keto.relation_tuples.v1alpha2.WriteService/TransactRelationTuples (POST)`	`keto-admin-high`	120 rpm / 7 rps	120 rpm / 7 rps	250 rpm / 10 rps
`/ory.keto.relation_tuples.v1alpha2.CheckService/BatchCheck (POST)` `/ory.keto.relation_tuples.v1alpha2.CheckService/Check (POST)` `/relation-tuples/batch/check (POST)` `/relation-tuples/check (GET, POST)` `/relation-tuples/check/openapi (GET, POST)`	`keto-public-low`	240 rpm / 10 rps	240 rpm / 10 rps	9000 rpm / 300 rps

Enterprise Tier

Kratos

Endpoint	Bucket	Development	Staging	Production
`/admin/identities/{id} (GET)` `/admin/sessions/{id} (GET)`	`kratos-admin-low`	200 rpm / 10 rps	200 rpm / 10 rps	2400 rpm / 80 rps
`/admin/courier/messages/{id} (GET)` `/admin/identities (GET)` `/admin/identities/by/external/{externalID} (GET)` `/admin/identities/{id}/sessions (GET)` `/admin/sessions (GET)` `/schemas (GET)` `/schemas/{id} (GET)` `/scim/{client}/v2/Groups (GET)` `/scim/{client}/v2/Groups/{id} (GET)` `/scim/{client}/v2/Schemas (GET)` `/scim/{client}/v2/Schemas/{id} (GET)` `/scim/{client}/v2/ServiceProviderConfig (GET)` `/scim/{client}/v2/Users (GET)` `/scim/{client}/v2/Users/{id} (GET)`	`kratos-admin-medium`	100 rpm / 5 rps	100 rpm / 5 rps	800 rpm / 30 rps
`/admin/courier/messages (GET)` `/admin/identities (PATCH, POST)` `/admin/identities/{id} (DELETE, PATCH, PUT)` `/admin/identities/{id}/credentials/{type} (DELETE)` `/admin/identities/{id}/sessions (DELETE)` `/admin/recovery/code (POST)` `/admin/recovery/link (POST)` `/admin/sessions/{id} (DELETE)` `/admin/sessions/{id}/extend (PATCH)` `/scim/{client}/v2/Groups (POST)` `/scim/{client}/v2/Groups/{id} (DELETE, PATCH, PUT)` `/scim/{client}/v2/Users (POST)` `/scim/{client}/v2/Users/{id} (DELETE, PATCH, PUT)`	`kratos-admin-high`	200 rpm / 10 rps	200 rpm / 10 rps	2400 rpm / 80 rps
`/self-service/errors (GET)` `/self-service/fed-cm/parameters (GET)` `/self-service/login (GET)` `/self-service/login/flows (GET)` `/self-service/logout (GET)` `/self-service/methods/oidc/callback (GET)` `/self-service/recovery (GET)` `/self-service/recovery/flows (GET)` `/self-service/registration (GET)` `/self-service/registration/flows (GET)` `/self-service/settings (GET)` `/self-service/settings/flows (GET)` `/self-service/verification (GET)` `/self-service/verification/flows (GET)` `/sessions/whoami (GET)`	`kratos-public-low`	400 rpm / 15 rps	400 rpm / 15 rps	21600 rpm / 700 rps
`/self-service/login/api (GET)` `/self-service/login/browser (GET, POST)` `/self-service/logout/api (DELETE)` `/self-service/logout/browser (GET)` `/self-service/methods/oidc/callback/{provider_id} (GET)` `/self-service/methods/oidc/organizations/{organization_id} (GET)` `/self-service/methods/saml/callback/{provider_id} (GET)` `/self-service/methods/saml/organizations/{organization_id} (GET)` `/self-service/recovery/api (GET)` `/self-service/recovery/browser (GET)` `/self-service/registration/api (GET)` `/self-service/registration/browser (GET)` `/self-service/settings/api (GET)` `/self-service/settings/browser (GET)` `/self-service/verification/api (GET)` `/self-service/verification/browser (GET)` `/sessions (GET)` `/sessions/token-exchange (GET)`	`kratos-public-medium`	200 rpm / 10 rps	200 rpm / 10 rps	1600 rpm / 55 rps
`/self-service/fed-cm/token (POST)` `/self-service/login (POST)` `/self-service/recovery (POST)` `/self-service/registration (POST)` `/self-service/settings (POST)` `/self-service/verification (POST)` `/sessions (DELETE)` `/sessions/{id} (DELETE)`	`kratos-public-high`	100 rpm / 5 rps	100 rpm / 5 rps	1200 rpm / 45 rps

Hydra

Endpoint	Bucket	Development	Staging	Production
`/admin/clients/{id} (GET)` `/admin/oauth2/auth/requests/consent (GET)` `/admin/oauth2/auth/requests/consent/accept (PUT)` `/admin/oauth2/auth/requests/consent/reject (PUT)` `/admin/oauth2/auth/requests/device/accept (PUT)` `/admin/oauth2/auth/requests/login (GET)` `/admin/oauth2/auth/requests/login/accept (PUT)` `/admin/oauth2/auth/requests/login/reject (PUT)` `/admin/oauth2/auth/requests/logout (GET)` `/admin/oauth2/auth/requests/logout/accept (PUT)` `/admin/oauth2/auth/requests/logout/reject (PUT)` `/admin/oauth2/auth/sessions/consent (GET)` `/admin/oauth2/introspect (POST)` `/oauth2/device/verify (GET)` `/oauth2/register/{id} (GET)`	`hydra-admin-low`	80 rpm / 4 rps	80 rpm / 4 rps	4800 rpm / 160 rps
`/admin/clients (GET)` `/admin/keys/{set} (GET)` `/admin/keys/{set}/{kid} (GET)` `/admin/trust/grants/jwt-bearer/issuers (GET)` `/admin/trust/grants/jwt-bearer/issuers/{id} (GET)` `/credentials (POST)`	`hydra-admin-medium`	40 rpm / 3 rps	40 rpm / 3 rps	320 rpm / 10 rps
`/admin/clients (POST)` `/admin/clients/{id} (DELETE, PATCH, PUT)` `/admin/clients/{id}/lifespans (PUT)` `/admin/keys/{set} (DELETE, POST, PUT)` `/admin/keys/{set}/{kid} (DELETE, PUT)` `/admin/oauth2/auth/sessions/consent (DELETE)` `/admin/oauth2/auth/sessions/login (DELETE)` `/admin/oauth2/tokens (DELETE)` `/admin/trust/grants/jwt-bearer/issuers (POST)` `/admin/trust/grants/jwt-bearer/issuers/{id} (DELETE)`	`hydra-admin-high`	40 rpm / 3 rps	40 rpm / 3 rps	320 rpm / 10 rps
`/.well-known/jwks.json (GET)` `/.well-known/openid-configuration (GET)` `/.well-known/ory/webauthn.js (GET)` `/oauth2/consent (GET)` `/oauth2/device/auth (POST)` `/oauth2/fallbacks/logout/callback (GET)`	`hydra-public-low`	120 rpm / 7 rps	120 rpm / 7 rps	1500 rpm / 55 rps
`/oauth2/auth (GET, POST)` `/oauth2/revoke (POST)` `/oauth2/sessions/logout (GET, POST)` `/oauth2/token (POST)` `/userinfo (GET)`	`hydra-public-medium`	80 rpm / 4 rps	80 rpm / 4 rps	3000 rpm / 100 rps
`/oauth2/register (POST)` `/oauth2/register/{id} (DELETE, PUT)`	`hydra-public-high`	40 rpm / 3 rps	40 rpm / 3 rps	320 rpm / 10 rps

Keto

Endpoint	Bucket	Development	Staging	Production
`/opl/syntax/check (POST)` `/relation-tuples (GET)` `/relation-tuples/expand (GET)`	`keto-admin-medium`	200 rpm / 10 rps	200 rpm / 10 rps	2000 rpm / 70 rps
`/admin/relation-tuples (DELETE, PATCH, PUT)` `/namespaces (GET)` `/ory.keto.relation_tuples.v1alpha2.WriteService/TransactRelationTuples (POST)`	`keto-admin-high`	120 rpm / 7 rps	120 rpm / 7 rps	1000 rpm / 35 rps
`/ory.keto.relation_tuples.v1alpha2.CheckService/BatchCheck (POST)` `/ory.keto.relation_tuples.v1alpha2.CheckService/Check (POST)` `/relation-tuples/batch/check (POST)` `/relation-tuples/check (GET, POST)` `/relation-tuples/check/openapi (GET, POST)`	`keto-public-low`	240 rpm / 10 rps	240 rpm / 10 rps	18000 rpm / 600 rps