WP REST API – OAuth 1.0a Server

Beschreibung

Dieses Plugin verwendet das OAuth 1.0a Protokoll, um delegierte Authorisierung zu erlauben; d.h. Applikationen wird, mit einem Set sekundärer Legitimationen, der Zugang zu einer Website erlaubt. Dies ermöglicht Server-Adminstratoren zu kontrollieren, welche Applikationen Zugang zur Website haben; genauso wie Nutzern zu kontrollieren, welche Applikationen Zugang zu ihren Daten haben.

Diese Plugin unterstützt nur WordPress >= 4.4.

The latest stable version is also available from the WordPress Plugin Directory.

New to OAuth

We strongly recommend you use an existing OAuth library. You’ll be best off if you understand the authorization process, but leave the actual implementation to well-tested libraries, as there are a lot of edge cases.

Start reading from the Introduction to get started!

For OAuth Veterans

If you already know how to use OAuth, here’s the lowdown:

  • The plugin uses OAuth 1.0a in
  • We use the three-legged flow
  • To find the REST API index, apply the API autodiscovery process
  • The endpoints for the OAuth process are available in the REST API index: check for $.authentication.oauth1 in the index data.
    • The temporary credentials (request token) endpoint is $.authentication.oauth1.request (typically /oauth1/request)
    • The authorization endpoint is $.authentication.oauth1.authorize (typically /oauth1/authorize)
    • The token exchange (access token) endpoint is $.authentication.oauth1.access (typically /oauth1/access)
  • Your callback URL must match the registered callback URL for the application in the scheme, authority (user/password) host, port, and path sections. (Subpaths are not allowed.)
  • The only signature method supported is HMAC-SHA1.
  • OAuth parameters are supported in the Authorization header, query (GET) parameters, or request body (POST) parameters (if encoded as application/x-www-form-urlencoded). OAuth parameters are not supported in JSON data.

Rezensionen

22. Februar 2021
Really Useful And Good Plugin But Please 1- Reply on The Support Forum 2- Update it To Work Good With Last WordPress Verison 3 – No Clear Docs 4 – not work with localhost
8. Oktober 2017
Got this working after some good amount of work! Thanks for bringing this and making API calls secure.
3. August 2017
Just google { "code": "rest_cannot_create", "message": "Sorry, you are not allowed to create posts as this user.", "data": { "status": 401 } } and you’ll find anyone using this plugin having issues authenticating to perform and protected operations. Dev team is not even responding to github issues or forum posts.
Alle 6 Rezensionen lesen

Mitwirkende & Entwickler

„WP REST API – OAuth 1.0a Server“ ist Open-Source-Software. Folgende Menschen haben an diesem Plugin mitgewirkt:

Mitwirkende