Reputation: 1124
Remove specific endpoints from wordpress json api
I'd like to try to use wordpress as backend only solution. I'd like to use wordpress json api. So I looked at what it offers. It's quite complete, but I want to remove some functionality. For example There's this route :
"\/wp\/v2\/posts\/(?P<id>[\\d]+)"
I'd like to limit it to GET. I'd like to completely remove some endpoints (like users/* or settings) and remove some methods inside endpoints.
I stumbled upon this https://github.com/WP-API/WP-API/issues/2338. I understand how it works, but I don't get where I can use this code, do I have to make a plugin of my own for that ? Also they don't talk about limiting methods, only endpoints, everything or just the post api.
well, I want it to become more of a public json api. How can I do that ?
Upvotes: 1
Views: 2336
Answers (1)
Reputation: 1124
I didnt think about using .htaccess, it was then trivial.
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteRule ^wp-json/wp/v2/users.*$ - [R=404]
RewriteRule ^wp-json/wp/v2/settings.*$ - [R=404]
RewriteRule ^wp-json/wp/v2/statuses.*$ - [R=404]
RewriteRule ^wp-json/wp/v2/comments.*$ - [R=404]
RewriteCond %{REQUEST_METHOD} !GET
RewriteRule ^wp-json/.*$ - [R=404]
</IfModule>
Allows me to prevent from getting users, settings, statuses and comments at all, the two last lines prevents from using anything but GET.
Upvotes: 2
Related Questions
- Disable default routes of WP REST API
- Hide certain API endpoints from swagger LoopBack4
- Remove Value from JSON PHP
- Unset data from WordPress API (wp-json)
- Wp Rest Api Custom End point
- remove _links object from wp rest api response by filter or hook
- Rest API plugin wordpress disable default routes
- Hide WordPress Rest API endpoints definition
- Wordpress disable out-of-the-box rest-api, use library instead
- Wordpress - rewrite or hide wp-json in url