To add to this, the majority of auth requests will be for session verification. This does not require the core and happens within the SDK itself. So to make the 200 reqs / second to the core would require a very high number of MAUs with a very low session expiry