WordPress Rest APIs can be used for various integrations however they are not secured by default, which can lead to security issues and data leaks.
Adding an authentication layer is a simple method to make sure that your APIs are protected from any unauthorized access. Adding a basic authentication layer is the first step towards making your site secure.
You can use this authentication for various third-party integrations like Android/IOS app integrations, REST API integrations for your headless WordPress setup, data sync solutions, etc.
You can choose from various authentication methods like JWT authentication, API key authentication, OAuth authentication, etc to have a secure API.
This plugin makes sure that you have secure API and that your data stays where it should and is never compromised.
The WordPress REST API authentication and WordPress REST API Security plugin will make sure that users are only able to access your site resources after successful authentication with the method of your choice such as JWT authentication, OAuth authentication, API key authentication, basic authentication, etc.
Basic Authentication: This method allows you to use a WordPress user’s username and password to securely authenticate REST API requests and protect your WordPress REST API.
JWT Authentication: With this method, you can use JWT (JSON Web Token) to authenticate and secure your REST API. The JWT token is verified by the plugin to check the user’s authorization before they can access the API. The WordPress REST API authentication plugin issues a JWT token to a user by passing valid user credentials, this JWT token can then be used to authenticate further REST API calls.
Note: We are constantly adding support for new authentication methods, if you are looking for a method and can’t find it in the plugin please reach out to us at support@rainforestsecurity.com
FREE PLUGIN
* Protect all or select WordPress REST API.
* Basic authentication with WordPress username and password, this can also be converted into a token by base64 encoding the credentials to have a secure API.
* Allow or deny public access to your Rest API and make the critical REST APIs secure.
* Authentication for standard WordPress REST API.
* [Coming Soon] JWT token based authentication, the plugin can issue a JWT token to the user which can then be used for WordPress rest API authentication.
* [Coming Soon] An REST API that can issue JWT (JASON web tokens) to users. You can use this to access all the WordPress Rest APIs.