Limits and quotas protect the Google infrastructure from an automated process that uses the G Suite Admin Settings API in an inappropriate way. Excessive requests from an API might result from a harmless typo, or may result from an inefficiently designed system that makes needless API calls. Regardless of the cause, blocking traffic from a specific source once it reaches a certain level is necessary for the overall health of the G Suite system. It ensures that one developer's actions cannot negatively impact the larger community.
In the unlikely event that your API request fails, you'll receive an HTTP status code response. A status code of 403 has error information about incorrect input, and an HTTP status code of 503 has error information indicating which API quotas have been exceeded. These responses allow your custom application to detect these errors and take appropriate action.
If your requests need to be completed in a fixed period of time, send your requests in parallel or use multiple threads in your Java or C# application. For example, break your requests by month or another time period. In the case of threads, try starting with 10 threads, one thread per request. Note, the thread recommendation has tradeoffs and is not useful for all API situations. If the number of requests gets too high, quota errors will occur.
For all errors that are time based (maximum of N things for X seconds per thread), especially the 503 status code errors, we recommend your code catch the exception and, using an exponential backoff algorithm, wait for a small delay before retrying the failed call. A Email Settings API example for one thread is to wait 5 seconds and retry the failed call. If the request is successful, repeat this pattern for the other threads. If the second request is not successful, your application should scale back on the frequency of the request until a call is successful. For example, increase the initial 5 second delay to 10 seconds and retry your failed call again. Also, decide on a retry limit. For example retry a request 5 to 7 times with different delay times before your application returns an error to the user.
|API Quota Categories||Quotas|
|ClientLogin authentication tokens||Valid for 24 hours. The error is '401 token expired'.|
|Generating public and private keys||With your identity provider, generate a set of public and private keys using either the DSA or RSA algorithms. The public key is in X.509 formatted certificate. For more information about SAML-based Single Sign-On signing keys, see Generating Keys and Certificates for G Suite Single Sign-On Service.|
|Logo||An account's logo image file can be in JPEG, PNG, or GIF format. The recommended size is 143 x 59 pixels and the file should be smaller than 20Kb. When using custom logos, remember to stay within the Google Terms of Service. And refrain from using the Google logo, Gmail logo, or any other Google logos. For more information, see Logo and landing page policies.|
|ssoWhitelist||A ssoWhitelist is a network mask IP address in Classless Inter-Domain Routing (CIDR) format.|
|Other Types of Limits||Limitations and Guidelines|
|MX record verification status||
The default MX record verification status is `false` which means either the Google system has not recently checked your MX record configuration or your MX records have not been configured to point to the Google systems. If you have updated your records and the verification status remains false, it can mean your MX record updates have not been propagated, or there is a typo in the record. For propagation, we recommend you wait the amount of time defined by the MX record's Time To Live value (TTL) and try again.
|Country codes||If the organization name has not been customized, the default is your primary domain name. For information about organization name characters, see Character usage.|
||See the ISO 8601, Numeric representation of Dates and Time.|
|Language encoding tags||See the RFC 3066 language tags accepted by Google Mail.|
|Organization name||If the organization name has not been customized, the default is your primary domain name. For information about organization name characters, see Character usage.|