# Development guidelines
When developing web apps using LINE Login, follow these development guidelines.
The basic rules for LINE Login development are based on the content described in Terms and Policies.
# Prohibiting mass requests to the LINE Platform
Don't send a large number of authorization requests or LINE Login API requests to the LINE platform for load testing purposes. For load testing web apps, prepare a test environment that doesn't generate a large number of requests to the LINE Platform.
If the rate limit is exceeded, 429 Too Many Requests will be returned and an error will occur.
# Saving logs
We recommend saving logs for Authorization requests and LINE Login API requests for a certain period of time so that developers themselves can smoothly investigate the cause and scope of a problem when it occurs.
# Authorization request logs
We recommend saving the following information as a log when making an Authorization request.
- Time when authorization request was made
- Parameter of the authorization request
More specifically, save it in a log file using the following format.
| Time when authorization request was made | Parameter of the authorization request |
|---|---|
| Mon, 16 Jul 2021 10:20:10 GMT | https://access.line.me/oauth2/v2.1/authorize?response_type=code&client_id=xxxxxxxxxx... |
# Authorization code or error response
We recommend saving the following information as a log when you receive an Authorization code or an Error response through an Authorization request.
- Time when the authorization code or error response was received
- Request method
- Log of authorization codes or error responses
More specifically, save it in a log file using the following format.
| Time when response was received | Request Method | Log of authorization codes or error responses |
|---|---|---|
| Mon, 16 Jul 2021 10:20:20 GMT | GET | /callback?code=Zfl2WjsWcn2XBBWApcty&state=n5B9b9FR2BWjloDzEskZMmGysITRTYpjLkM6oD5qfmA |
# Time logs for LINE Login API request
We recommend saving the following information as a log when making a LINE Login API request.
- Request ID (
x-line-request-id) of the Response headers - Time when API request was made
- Request method
- API endpoint
- Status codes returned by the LINE Platform
More specifically, save it in a log file using the following format.
Request ID (x-line-request-id) | Time when API request was made | Request method | API endpoint | Status code |
|---|---|---|---|---|
| 8d48c8577e739b9c | Mon, 16 Jul 2021 10:20:22 GMT | POST | https://api.line.me/oauth2/v2.1/token | 200 |
Depending on the requirements of the web app you're running, the following information, in addition to the above, can be stored for investigation when problems occur.
- LINE Login API request body
- Response body returned by the LINE Platform after the API request
We don't provide logs of authorization requests or logs of LINE Login API requests, etc. despite inquiries. Logs should be saved by the developers who are developing web apps using LINE Login.