Provider Network Documentation

Comprehensive technical guide for API providers using SaltingIO's enterprise gateway infrastructure

System Overview

The SaltingIO Provider Network is a comprehensive API protection and management platform designed for enterprise-scale operations. It acts as a secure intermediary between your APIs and end users, providing advanced security, rate limiting, and white-label capabilities.

Security Layer

DDoS protection, key masking, and traffic filtering

Rate Limiting

Intelligent traffic management and usage controls

Global Network

100M+ IPs worldwide for optimal performance

Getting Started

Quick Setup Guide

Register Provider

Create your provider account and verify your company

Configure API

Set up your API endpoints and security settings

Set Rate Limits

Configure traffic management and usage policies

Deploy & Monitor

Launch your protected API and track performance

API Integration

Endpoint Configuration

Configure your API endpoints to work with the SaltingIO Provider Network. The system supports REST APIs, GraphQL, and custom protocols.

Base Configuration

# Your protected API endpoint

https://api.salting.io/v1/providers/provider_id/proxy

# Original API (hidden from clients)

https://your-api.com/v1/endpoint

Request Flow

Client sends request to SaltingIO

Rate limiting and security checks

Request forwarded to your API

Response returned to client

Security Features

API key masking

Request validation

Traffic monitoring

DDoS protection

Authentication & Security

SaltingIO provides multiple authentication methods to secure your API access while maintaining ease of use for your customers.

API Key Management

Client Request Headers:

Authorization: Bearer salting_public_key

X-Provider-ID: your_provider_id

Public keys for client authentication

Private keys for API access

Automatic key rotation support

Security Policies

IP Whitelisting

Restrict access to specific IP addresses or ranges

Time-based Access

Set access windows and expiration times

User-based Limits

Per-user rate limiting and access control

Rate Limiting & Traffic Management

Advanced Rate Limiting

Implement sophisticated rate limiting strategies to protect your infrastructure and ensure fair usage across all clients.

Rate Limit Types

Per-Second Limits

Immediate request throttling (e.g., 25 req/s)

Burst Protection

Allow temporary spikes while maintaining averages

Daily Quotas

Long-term usage limits (e.g., 1M requests/day)

Configuration Example

Rate Limit Configuration:

{
"default_rate_limit": 25,
"burst_limit": 100,
"daily_quota": 1000000,
"per_user_limits": {
"premium": 100,
"standard": 25,
"free": 5
}
}

Rate Limit Headers

Response Headers:

X-RateLimit-Limit: 25

X-RateLimit-Remaining: 20

X-RateLimit-Reset: 1640995200

X-RateLimit-Retry-After: 1

Security Features

DDoS Protection

Advanced DDoS mitigation with automatic traffic filtering and global distribution.

Automatic attack detection

Traffic pattern analysis

Zero-downtime protection

Global IP distribution

API Key Security

Secure key management with automatic rotation and client-safe access patterns.

Key masking and obfuscation

Automatic key rotation

Client-side security

Usage tracking and monitoring

White-Label Solutions

Custom Domains & Branding

Provide a fully branded experience to your customers with custom subdomains, SSL certificates, and complete control over the user experience.

Custom Subdomain Setup

Your branded endpoint:

https://your-company.salting.io

Automatic SSL certificate

Custom rate limits

Branded error pages

Configuration Example

Domain Configuration:

{
"subdomain": "your-company",
"ssl_enabled": true,
"custom_headers": {
"X-Powered-By": "Your Company"
},
"error_pages": {
"404": "https://your-company.com/404"
}
}

Monitoring & Analytics

Real-time Analytics

Comprehensive monitoring and analytics dashboard for tracking API usage, performance, and security metrics.

Request volume tracking

Performance metrics

Security incident alerts

User behavior analysis

Alert Configuration

Set up automated alerts for critical events and performance thresholds.

Rate Limit Exceeded

Alert when usage exceeds 90% of limits

DDoS Attack Detected

Immediate notification of security threats

Performance Degradation

Alert when response times exceed thresholds

Troubleshooting

Common Issues

Rate Limit Errors

HTTP 429 - Too Many Requests

Client has exceeded rate limits

Retry-After: 60

Solution

Implement exponential backoff or increase rate limits

Authentication Issues

HTTP 401 - Unauthorized

Invalid or expired API key

Authorization: Bearer invalid_key

Solution

Verify API key and check expiration date

Debug Tools

Request Logging

Enable debug mode:

curl -H "X-Debug: true" \
 -H "Authorization: Bearer your_key" \ 
https://api.salting.io/v1/endpoint

Health Check

Check system status:

GET /v1/health
Response:
{
"status": "healthy",
"uptime": "99.9%",
"version": "1.2.3"
}

Best Practices

Implementation Guidelines

Security First

Always use HTTPS, implement proper authentication, and monitor for suspicious activity

Rate Limiting

Set appropriate limits based on your infrastructure capacity and user needs

Monitoring

Implement comprehensive monitoring and alerting systems

Performance Optimization

Global Distribution

Leverage SaltingIO's global network for optimal performance

Caching Strategy

Implement appropriate caching to reduce backend load

Configuration

Regularly review and optimize your rate limits and security settings

Ready to Get Started?

Join the SaltingIO Provider Network and start protecting your APIs with enterprise-grade security and performance.