Im working on an api and using azure AD as auth method. My question is if the public endpoint for the keys "https://login.microsoftonline.com//discovery/keys?appid=" has a call limit? So if i have around 3000 calls an hour to our api that would mean 3000 calls an hour to the endpoint. the implementation that we have right now is having the keys in our instance, the problem with this is that lately these keys have been changing without me noticing and that results in some requests having troubles.
My go to idea was to have a cron job to check these keys every a few hours and update them in s3 and from the api get the file of the keys from s3 on every request (i guess this will slow us a little so any other ideas apreciated), but i want to know if its possible to just call the public key endpoints without microsoft banning or limiting us.
By the way, im working with Python/fastAPI.
Thanks for reading, hope everyone has a great day!