A truly global rate limit would present a probably undesirable attack vector - a single nefarious actor, or even just a user making a mistake, could take down your service for ALL of your users.
What prevents you from using per-consumer, per-credential, or per-IP rate limiting to protect your backend service and help ensure reliable service for all your users?