I’m having issues accessing https://api.trakt.tv across multiple IP addresses (to rule out my IP address being blocked). I’m trying to integrate OAuth inside my iOS app but I just get a HTTP code 429 from Cloudflare, trying to access the api from a normal web browser also results in the same code OR a blatant 403 code saying “The action you just performed triggered the security solution” referring to SQL injection???
Ray ID: 9e55fdcf3d67bb07
I have the exactly same issue with a iOS app. Cloudflare WAF ban (Error 1015). 429 on first POST. across all users that try to login with trakt
I’ve seen quite a bit of this intermittently as well. It seems like Trakt has incredibly aggressive Cloudflare rules setup. The OAuth sign-in flow can very easily hit rate limits which is irritating. For general API requests, you need to make sure you include a user agent as well in my experience.
It’s making using Trakt as an integration to my app impossible and might just scrap all together. Making it look like my app is the one not working properly. Why the hell do they have such harsh rules to a point where Cloudflare thinks I’m doing an SQL injection attack (or alike) when hitting the default API endpoint???
You cannot access the API like a website in the browser. If you send bad requests then you get rate limited faster.