Custom API plugin to execute 3rd party API to retrieve data

If you need to pass username and password for Basic Auth you need to send that in headers e.g.

$headers = array('Authorization' => 'Basic ' . base64_encode( YOUR_USERNAME . ':' . YOUR_PASSWORD );

$response = wp_remote_post( $url, array(
    'method'      => 'POST',
    'timeout'     => 45,
    'headers'     => $headers
    )
);

If you need to pass username and password as value you can send it in body e.g.

$response = wp_remote_post( $url, array(
    'method'      => 'POST', // Use 'GET' for GET request
    'timeout'     => 45,
    'headers'     => array(),
    'body'        => array(
        'username' => 'test',
        'password' => 'xxxx'
    ),
    )
);

//Get the response
if ( is_wp_error( $response ) ) {
    $error_message = $response->get_error_message();
    echo "Something went wrong: $error_message";
} else {
    echo 'Response:<pre>';
    print_r( $response ); // You will get the token in $response, the $response usually in JSON or XML.
    echo '</pre>';
}

Once you have the token you can send that in URL again to wp_remote_post function

For your other question you must encrypt any sensitive information and decrypt it when you need it.

Related Posts:

  1. REST-API: extend media-endpoint
  2. Multisite functions to communicate with individual site functions
  3. Advanced Integration – WordPress + YOURLS
  4. Keep user’s privileges on accessing contents in JSON response
  5. Preventing BFA in WordPress without using a plugin
  6. How can I capture Memberpress user info after signup [closed]
  7. How to modify WCMP Rest API response?
  8. wp_remote_get() returns 403 while file_get_contents() does not
  9. Limit post creation by role
  10. Why can’t I access my Intranet LDAPS with NADI?
  11. Set plugin-values when creating post via REST-API
  12. Getting a Page via its post-name using WP REST API v2 and Postman
  13. 404 errors when updating options in admin dashboard
  14. Escape commas in REST API
  15. Do i need to use a plugin for third party api integration?
  16. is it possible to fetch data from a remote api while admin is writing a new post?
  17. WordPress output data to another website and pull data
  18. How to get data from a private API and add it to wordpress pages
  19. wp rest api (v2) filter not working (404 error – rest_no_route)
  20. How can I send api calls from my plugin?
  21. Is it possible to create post in wordpress using postman?
  22. Block Root REST API Route using custom &/or iThemes
  23. is_plugin_active function doesn’t exist
  24. Proper Way to Modify Plugin
  25. Disabled plugins are they security holes – rumor or reality?
  26. How to edit a wordpress plugin without break its update process
  27. Get a list of all WordPress.org Plugins?
  28. Looking for a Table of Contents (TOC) plugin for WordPress
  29. Verify nonce in REST API?
  30. Where should I use get_option in a plugin
  31. GPL and plugins
  32. Disable Specific Widgets on Selected Pages of a WordPress Website?
  33. Create page when plugin is activated
  34. Should we use plugins that aren’t available from the official WordPress site?
  35. Why allow overriding crucial pluggable functions wp_verify_nonce and wp_create_nonce?
  36. How to show custom message once on plugin activation?
  37. Post source link plugin – small modification
  38. How to add users roles dropdown in registration in wordpress
  39. wp_schedule_event / cron_schedules – custom recurrence time not working in Plugin
  40. Send Data to WordPress from kiosk
  41. WordPress network: set themes and plugins for new blog
  42. How to edit plugin’s html? [closed]
  43. Prevent Brute Force Attack
  44. Can a plugin add to header/footer/body content?
  45. Get Plugin Information from Multiple Sites Externally
  46. force customers to add only single item to card per purchase EDD [closed]
  47. Output HTML only on individual post view
  48. Manually add order item with fixed product_id in WooCommerce
  49. ‘Customize’ button in admin bar for CSS
  50. Best way to hook a custom url?
  51. Auto delete WordPress users according to time
  52. How to stop xmlrpc attacks without disabling component to allow JetPack to work in WordPress?
  53. WordPress filter that hook after each action/filter hook
  54. How to show Recent Page instead of Post?
  55. WordPress JSON API remove posts from a specific category
  56. Overide plugin files from child theme (/inc/ ) folder
  57. External Domain on WordPress Multisite
  58. Stop Plugin Enumeration [closed]
  59. Add ALT attribute to Pin It Button image to pass HTML5 validation
  60. Customize The Events Calendar to Include an Option to Expand for More Events Listings
  61. changing posts layout in ultimate member profile plugin
  62. Security and Must Use Plugins
  63. Prevent plugin from intruding on wp-json posts api
  64. Is it safe to use admin-ajax.php in the frontend?
  65. How do i get file_get_contents to work in wordpress
  66. Plugin Development – Functions or Hooks?
  67. Add some fileds to the wp_posts table
  68. Add filter on html tags,attributes on specific function in wordpress
  69. How can ι create my own (custom) WordPress table/list?
  70. How to create plugin in wordpress [closed]
  71. I want to filter my products with attributes [closed]
  72. Action on WordPress Install
  73. Delete data from custom table when deleting a post
  74. If I use an alternative login (e.g. CAS or other SSO) plugin, is my site protected from the recent brute force login attempts?
  75. What is the best way to make a custom page from a plugin?
  76. WP Insert Post If user refreshes override new post
  77. Automatic recurring payment using YITH subscription and Dokan Stripe
  78. Hide fields in woocommerce settings
  79. implement custom roles in custom plugin
  80. How to send SMS notification to customer after click on submit?
  81. Content-Security-Policy implementation with WordPress W3Total Cache plugin installed
  82. Adding LOAD MORE on a page
  83. Custom Plugin: How to Include Install Buttons of other 3rd Party Plugins?
  84. One WooCommerce Store to multi distributor sites
  85. How to use third-party SendGrid Email Validation API in Gravity Forms?
  86. Custom REST API POST Endpoint Not Working, 404 Error
  87. Cron job shedules replace?
  88. “Fire Secure” menu item
  89. https rewrite not working for All in one security Brute force > rename login url
  90. Customize plugin templates
  91. Widget display in theme
  92. How to use custom footer template in a site-plugin?
  93. custom REST endpoint not passing body of POST request to callback
  94. Customize a widget position
  95. Pronamic Info Window
  96. From a legal perspective, is it okay to customize a plugin’s code?
  97. Child Plugin Admin Panel
  98. Does anyone have the Custom Post Permalinks plugin from John P. Bloch? [closed]
  99. Store large dataset in WordPress installation temporary
  100. how to update WordPress plugins from external website with nodejs?