We're a software company, currently converting our decades-old app (a full-office medical office management package; known today as an ERP [and CRM] package) (began development in the late 1980s..) to Java/CUBA platform. The new version of our app will need 2FA via SMS for user login, and as our phone service is RingCentral... it seems easy enough to implement this via the RC Java API.
I have it all working; it's very easy to work with (kudos to RC for that), except...the rate limits are exceedingly low! 40 texts per minute? Really?
We have clients in all 50 US states, and we will be self-hosting this new app via Docker containers with each client in their own Docker'ed world, for safety and HIPPA act compliance. Early in the morning, when people are getting into their offices, there's going to be dozens/hundreds of 2FA requests.
Surely mere hundreds of SMS sends wouldn't kill RC's infrastructure. Why are the limits so LOW?