Credential Quota Policy

A credential quota limits the total number of times that an API can be called by a credential in a specified period to protect backend services. You can create a credential quota policy to limit the number of API calls made by credentials bound to the policy.

A credential quota policy and a credential are independent of each other. The policy takes effect on the credential only after the credential is bound to the policy.

Procedure

Go to the APIG console.
Select a gateway at the top of the navigation pane.

In the navigation pane, choose API Management > Credentials.
Click the name of the target credential.
In the Credential Quota Policies area, click Bind.

Specify the policy type.

Existing policy: Select a policy.
New policy: Configure a policy by referring to Table 1.

**Table 1** Credential quota policy configuration
Parameter	Description
Name	Enter a credential quota policy name that conforms to specific rules to facilitate search. It can contain 3 to 255 characters and must start with a letter. Only letters, digits, and underscores (_) are allowed.
Effective On	Time when the quota policy takes effect. For example, if Effective On is set to Aug 8, 2020 05:05:00 and Period is set to 1 hour, the quota policy takes effect on Aug 8, 2020 05:05:00. The period from the fifth minute of an hour to the fifth minute of the next hour is a cycle, for example, 05:05:00-06:05:00.
Period	Period in which the quota policy is applied. The unit can be second, minute, hour, or day. This parameter must be used along with Max. API Requests to limit the total number of times an API can be called by a client within the specified period.
Max. API Requests	The maximum number of times that an API can be called by a client. This parameter must be used along with Period.
Description	Description about the credential quota policy. Enter 1 to 255 characters.