SMNTCS Disable REST API User Endpoints

Omschrijving

With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.

Installatie

  1. Upload ‘smntcs-disable-rest-api-user-endpoints’ to the ‘/wp-content/plugins/’ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress

FAQ

Installation Instructions
  1. Upload ‘smntcs-disable-rest-api-user-endpoints’ to the ‘/wp-content/plugins/’ directory
  2. Activate the plugin through the ‘Plugins’ menu in WordPress

Beoordelingen

Perfect

Does what is says, and you really shoud use this on all your sites.

I just can’t imagine your woocommerce customers login names being exposed via the REST API. Though the REST API is an amazing feature

Kudos on this !!!

Lees 1 beoordeling

Bijdragers & ontwikkelaars

“SMNTCS Disable REST API User Endpoints” is open source software. De volgende personen hebben bijgedragen aan deze plugin.

Bijdragers

Changelog

1.0

  • Initial release