SMNTCS Disable REST API User Endpoints

Description

With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.

Installation

  1. Upload smntcs-disable-rest-api-user-endpoints to the /wp-content/plugins/ directory
  2. Activate the plugin through the Plugins menu in WordPress

Reviews

2017年4月6日
Does what is says, and you really shoud use this on all your sites. I just can't imagine your woocommerce customers login names being exposed via the REST API. Though the REST API is an amazing feature Kudos on this !!!
阅读所有的1评价

Contributors & Developers

“SMNTCS Disable REST API User Endpoints” 是开源软件。 以下人员对此插件做出了贡献。

Contributors

“SMNTCS Disable REST API User Endpoints” 已翻译成3 语言环境。 感谢译者的贡献。

将“SMNTCS Disable REST API User Endpoints”翻译成您的语言。

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

更新日志

1.5

1.4

1.3

1.2

  • Refactor based on PHPCS and WPCS

1.1

  • Test up to 5.1

1.0

  • Initial release