When it says "10000+ matched" that means that the search stopped after the first 10000 matched items. This means that the sorted results won't be an exact snapshot of all items.
If you want to see the most expensive items listed you should use the "Buyout Price" filter with some large value then sort.
Here's an example: https://www.pathofexile.com/trade/search/Heist/MdLLKyFJ
It should be:
devtrackers.gg
20% reduced Area of Effect
Final Burst Deals 40% more Damage
It's being fixed up now!
Should be better next patch (item level will filter monster level, seeds of each colour will have entries under category).
The trade site automatically updates as things are listed.
Read moreI captured any HTTPS requests that overlay was doing - it includes POESESSID. The one thing I don't understand is how did GGG determine that it's specifically overlay? My best guess is the User-Agent, since its specifically stating that its Chrome running on Linux under X11... but there's no direct thing that just states "hello GGG trade site, this is PoE Overlay". Maybe the millions of requests from those specific individuals is using the same exact User-Agent (to hide botting activity and scapegoat Overlay? oh boy, conspiracies!)
As for testing the tool responding to 429, a very brief and uncontrolled test made Overlay actually just sit there and indefinietely display the "Searching..." box without any other requests after the initial POST to the API. After trying to price check multiple items, Overlay just flat out doesn't make an attempt. Again, the test was just a brief one using Fiddler's AutoResponder and an auto-respond 429 with a Retry-After of 5.
edit/upda...
Thanks for bringing this to our attention. We really don't condone tools obfuscating their user agent... I'm glad to see that the author of this particular tool has removed this in their most recent update.
Why don't' you guys just implement a server-side limit of X searches a minute per acct? That'd fix the problem as well as the bans, no?
We already have this. 429 is the HTTP response code returned when you have been limited.
The handful of accounts that we have locked have been making requests regardless leading to a waste of resources on both ends.
I believe it was hitting our API a few million times a day. The tool's author will need to look into it. I don't have any more information.
As a follow up to this:
On the 28th we got 6.7 million requests from poe-overlay in total.
6.1 million of those returned 429 (rate-limited).
5.9 million of those rate-limited requests were from 3 unique accounts.
EDIT: It's been pointed out to me that some versions of poe-overlay obfuscates it's user agent which definitely would throw the total numbers off. Obfuscating your user agent is definitely not something we condone any third party doing.
Does this mean that using the rate limit of the trade website to the fullest extent is now a bannable/lockable offence /u/Novynn ?
No, we only consider failed requests (anything in the HTTP ~400 range) when scanning for bad actors. If you're not generating millions of 429's (which is what this tool is sometimes doing) then you're fine.