API Rate Limiting Architect

Design a rate limiting strategy for {{api_type}} API serving {{expected_users}}:

Context:
{{api_context}}

Define:
- Rate limit tiers (free, pro, enterprise)
- Per-user and per-IP limit strategies
- Algorithm choice (token bucket, sliding window, etc.)
- Time windows and reset policies
- Burst allowances and grace periods
- Endpoint-specific limits
- Response headers and error messaging
- Monitoring and analytics approach
- Enforcement points and fallback strategies

Provide implementation recommendations and code examples.