On this page

Budget and spend limits

Control LLM spending by enforcing token budget limits per API key or user.

Advanced patterns for enforcing token budget limits per API key or user.

About

Budget limits (also known as spend limits or quota management) help you control LLM costs by restricting how many tokens each user or API key can consume within a time window. This prevents runaway spending and ensures fair resource allocation across teams and applications.

This guide focuses on advanced patterns that are not covered in the virtual keys guide, such as per-route budgets, local rate limiting, and cost calculations.

How budget limits work

Budget limits enforce token consumption quotas using token bucket rate limiting. Each user or API key gets a virtual “budget” measured in tokens rather than requests.

Key concepts:

Token bucket: A virtual bucket that holds a certain number of tokens (your budget)
Token consumption: Each LLM request consumes tokens based on the input + output token count
Refill interval: How often the bucket refills (e.g., daily, hourly)
Keying: How to identify users (by header, JWT claim, or remote address)

When a request arrives:

flowchart TD
  A[Request arrives] --> B[Validate API key]
  B --> C[Count against token budget]
  C --> D{Budget available?}
  subgraph refill["Budget refills periodically"]
    D
  end
  D -->|Yes| E[Request proceeds]
  D -->|No| F[Reject with 429]

Agentgateway validates the API key (if required)
The request is counted against the user’s token budget
If the budget has tokens available, the request proceeds
If the budget is exhausted, the request is rejected with a 429 status code
The bucket refills at the configured interval

More considerations

Evaluation order: Rate limiting is evaluated before prompt guards (content safety checks). This means that requests rejected by guardrails (403 Forbidden) still consume quota from the user’s token budget. In contrast, authentication (JWT/OPA) is evaluated before rate limiting, so unauthenticated requests do not consume quota.

Multiple policies: When multiple EnterpriseAgentgatewayPolicy resources target the same Gateway or HTTPRoute with overlapping backend.ai fields, one policy silently overwrites the other based on creation order. Both policies will show ACCEPTED/ATTACHED status. To avoid conflicts, use separate policies for different configuration areas (such as one for authentication, one for rate limiting, one for prompt guards).

Before you begin

Complete the Virtual key management guide to:

Create API keys for users
Configure API key authentication
Set up token-based rate limiting
Configure the rate limit server

Per-route budget limits

Apply different budgets to different routes, such as higher limits for production and lower limits for development.

Create separate EnterpriseAgentgatewayPolicy resources for each HTTPRoute instead of targeting the Gateway.

  apiVersion: enterpriseagentgateway.solo.io/v1alpha1
kind: EnterpriseAgentgatewayPolicy
metadata:
  name: prod-token-budget
  namespace: agentgateway-system
spec:
  targetRefs:
    - group: gateway.networking.k8s.io
      kind: HTTPRoute
      name: openai-prod
  traffic:
    rateLimit:
      global:
        domain: token-budgets
        backendRef:
          kind: Service
          name: rate-limit-server
          namespace: agentgateway-system
          port: 8081
        descriptors:
          - entries:
              - name: route
                expression: '"prod"'
              - name: user_id
                expression: 'request.headers["x-user-id"]'
            unit: Tokens

Configure the rate limit server with nested descriptors for route-specific budgets.

  domain: token-budgets
descriptors:
  - key: route
    value: "prod"
    descriptors:
      - key: user_id
        rate_limit:
          unit: day
          requests_per_unit: 200000  # Higher limit for prod
  - key: route
    value: "dev"
    descriptors:
      - key: user_id
        rate_limit:
          unit: day
          requests_per_unit: 50000  # Lower limit for dev

Local token budget limits

Use local rate limiting instead of global for simpler setups that don’t require shared state across agentgateway instances.

warning

Limitations of local rate limiting:

The tokens field is request count, not LLM token count. With tokens: 10000, you get ~10,000 requests, regardless of how many LLM tokens each request consumes. For actual LLM-token-based budgets (e.g., limit users to 100K LLM tokens/day), use global rate limiting with unit: Tokens descriptors instead.
Limits apply per agentgateway instance. If you have 3 instances and set a 100,000 token limit, each instance enforces 100,000 tokens, for a total of 300,000 tokens across all instances.
Local rate limiting only supports Seconds, Minutes, and Hours units. For daily budgets, use global rate limiting instead, which supports day-based limits.

  apiVersion: enterpriseagentgateway.solo.io/v1alpha1
kind: EnterpriseAgentgatewayPolicy
metadata:
  name: local-token-budget
  namespace: agentgateway-system
spec:
  targetRefs:
    - group: gateway.networking.k8s.io
      kind: Gateway
      name: agentgateway-proxy
  traffic:
    rateLimit:
      local:
        - tokens: 10000
          unit: Hours

Monitor budget usage

Track how much of each user’s budget has been consumed using Prometheus metrics.

Port-forward the agentgateway proxy metrics endpoint.

  kubectl port-forward deployment/agentgateway-proxy -n agentgateway-system 15020

Query the token usage metric filtered by user.

  # Total tokens consumed by user over the last 24 hours
sum by (user_id) (
  increase(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="input"}[24h]) +
  increase(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="output"}[24h])
)

# Percentage of daily budget used
(sum by (user_id) (
  increase(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="input"}[24h]) +
  increase(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="output"}[24h])
) / 100000) * 100

Set up alerts when users approach their budget limits.

  groups:
- name: budget_alerts
  rules:
  - alert: BudgetNearlyExhausted
    expr: |
      (sum by (user_id) (
        rate(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="input"}[24h]) * 86400 +
        rate(agentgateway_gen_ai_client_token_usage_sum{gen_ai_token_type="output"}[24h]) * 86400
      ) / 100000) > 0.8
    for: 5m
    labels:
      severity: warning
    annotations:
      summary: "User {{ $labels.user_id }} has used over 80% of their daily token budget"

Convert budget to cost

To convert token budgets to dollar amounts, multiply by your provider’s pricing.

For example, with OpenAI GPT-4:

Input tokens: $30 per 1M tokens
Output tokens: $60 per 1M tokens

A 100,000 token budget (assuming 50/50 input/output mix):

  cost = (50,000 / 1,000,000 × $30) + (50,000 / 1,000,000 × $60)
     = $1.50 + $3.00
     = $4.50 per day

For more information on cost calculation, see the cost tracking guide.

Cleanup

For cleanup instructions, see the Virtual key management guide.

What’s next

Virtual key management for complete API key and rate limiting setup
Track costs per request to monitor actual spending
Set up observability to view token usage metrics
Configure rate limiting for advanced rate limit patterns

Solo Enterprise for agentgateway

Budget and spend limits

About link

How budget limits work link

More considerations link

Before you begin link

Per-route budget limits link

Local token budget limits link

Monitor budget usage link

Convert budget to cost link

Cleanup link

What’s next link

link