...
Analytics; e.g., how many times a redirection happened?
Our service should also be accessible through REST APIs by other services.
How do we detect and prevent abuse ?
A malicious user can put us out of business by consuming all URL keys in the current design. To prevent abuse, we can limit users via their api_dev_key. Each api_dev_key can be limited to a certain number of URL creations and redirections per some time period.