SMNTCS Disable REST API User Endpoints

Descrição

With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.

Contribute

Contributions are more than welcome. Simply head over to Github and open an issue or a pull request.

Instalação

  1. Upload smntcs-disable-rest-api-user-endpoints to the /wp-content/plugins/ directory.
  2. Activate the plugin through the Plugins menu in WordPress.

Avaliações

10 Maio, 2021 1 reply
Great plugin, works as it should, a must for any Wordpress site.
6 Abril, 2017
Does what is says, and you really shoud use this on all your sites. I just can't imagine your woocommerce customers login names being exposed via the REST API. Though the REST API is an amazing feature Kudos on this !!!
Ler todas as 2 avaliações

Contribuidores e programadores

“SMNTCS Disable REST API User Endpoints” é software de código aberto. As seguintes pessoas contribuíram para este plugin:

Contribuidores

“SMNTCS Disable REST API User Endpoints” foi traduzido para 4 locales. Obrigado aos tradutores pelas suas contribuições.

Traduza o “SMNTCS Disable REST API User Endpoints” para o seu idioma.

Interessado no desenvolvimento?

Consulte o código, consulte o repositório SVN, ou subscreva o registo de alterações por RSS.

Registo de alterações

2.2 (2023.10.15)

  • Test up to WP 6.4
  • Convert code to OOP

2.1 (2023.03.11)

  • Test up to WP 6.2

2.0 (2022.12.03)

  • Test up to WP 6.1

1.9 (2022.06.09)

  • Test up to WP 6.0

1.8 (2021.12.31)

  • Test up to WP 5.8

1.7 (2021.05.01)

1.6 (2021.01.08)

  • Test up to WP 5.6

1.5 (2020.05.10)

1.4 (2020.05.10)

1.3 (2019.12.26)

1.2 (2019.04.05)

  • Refactor based on PHPCS and WPCS

1.1 (2019.02.20)

  • Test up to WP 5.1

1.0 (2018.03.27)

  • Initial release