You have made more than 100 successful login requests in a minute. In the event of a breach of the login limit, the account will be prevented from creating a new login session for a 20-minute period. The error TEMPORARY_BAN_TOO_MANY_REQUESTS will be returned in these circumstances. All existing sessions will continue to be valid.
To avoid this issue, please adhere to the best practice guidance below.
Login & Session Management Best Practice
Please be aware that:
- Logins sessions last up to 12 hours by default and you can use Keep Alive to extend the session beyond the stated session expiry time.
- A single session can be used across multiple API calls/threads simultaneously. Please note: you don't need to make a new login request for every API call.
- You should ensure that you handle the INVALID_SESSION_TOKEN error within your code by creating a new session token via the API login method.
- If login limits are exceeded, you'll be automatically prevented from making further login requests for a period of 20 minutes. During this time all existing sessions will remain valid