Phorest · Rate Limits

Phorest Rate Limits

Phorest's public API reference documents a flat, uniform rate limit across the entire third-party API: 100 requests per second, returned as a 429 response when exceeded. This limit is stated identically on every documented endpoint (clients, appointments, staff, services, products, purchases, vouchers, and reporting) rather than varying per resource. Phorest does not publish webhooks; the getting-started guide explicitly recommends polling instead, so integrators are expected to design polling intervals against this same 100 rps ceiling. The Staff Work Time Tables endpoint is called out as an exception to pagination (not rate limiting) - it always returns the full result set for a date range with no size/page support.

Phorest Rate Limits is the machine-readable rate-limit profile for Phorest on the APIs.io network, conforming to the API Commons Rate Limits specification.

It captures 5 rate-limit definitions, measuring requests, days, records, and characters.

The profile also includes 3 backoff/retry policies defined and response codes documented for throttled.

Tagged areas include Salon Software, Spa Software, Rate Limiting, and Quotas.

5 Limits Throttle: 429
Salon SoftwareSpa SoftwareRate LimitingQuotas

Limits

Global API Requests account
requests
100 per second
Stated as "Request rate limit exceeded. Current limit set to 100 rps" identically across all documented endpoints.
Appointments List Range endpoint
days
1 month per request
The appointments list endpoint accepts at most a one-month from_date/to_date window per call.
Pagination Size endpoint
records
100 per page (default 20)
Most list endpoints support size (max 100) and page (zero-indexed) query parameters.
Staff Work Time Tables endpoint
records
unbounded (no pagination)
This endpoint does not support pagination and always returns all records for the given date range.
Booking Note Length field
characters
50000
The booking/appointment note field is capped at 50,000 characters.

Policies

Polling Over Webhooks
Phorest does not support webhooks; the getting-started guide directs integrators to poll list endpoints (e.g. by updatedAfter/updatedFrom timestamps) instead.
Basic Auth Per Request
Every request carries HTTP Basic credentials; there is no OAuth token bucket or per-token limit distinct from the flat 100 rps account ceiling.
Regional Gateway Isolation
EU and US/AUS traffic is served from separate regional gateways (api-gateway-eu vs api-gateway-us); the 100 rps limit is documented per gateway/business, not globally pooled across regions.

Sources