To the best of my knowledge Jira does not have a native way to manage this specific aspect right now.  I am not sure this will apply to all Jira Server installations, however you might want to take a look at Traffic distribution with Atlassian Data Center

This guide is geared towards data center deployments which can have multiple nodes for Jira.  Whereas with a Jira Server license, you only have a single node.  But this guide describes a method where you can setup traffic shaping rules on the load balancer or proxy in order to make sure that web traffic users are directed to specific nodes, while REST API requests can be directed to separate nodes.  

You probably can't follow this guide exactly without a data center setup.  However perhaps there are other firewall/proxy/load balancer rules that you could implement outside of Jira directly in order to rate limit individual users.   The approach that I would take for this kind of setup would be to look towards a proxy to manage this kind of limiting.