What is rate limiting, and why is it important for REST APIs?

• Rate limiting restricts the number of API requests per user/IP in a given time.
• Prevents abuse (DDoS, brute force).
• Ensures fair usage and protects backend systems.
• Return 429 Too Many Requests with Retry-After header.

👉 Example: 100 requests/minute per API key.