How to build a plugin that supports authenticated POST requests to the REST API from external servers?

Answering my own question.

For plugin developers, the directive is to use current_user_can() in your code as usual in the REST endpoints, as Core does.

WordPress 5.4 does not support authenticated requests originated from outside WordPress to the REST API yet. But your clients can use plugins such as Basic Auth, OAuth2 or JWT to add that functionality.

The REST team in WordPress is working to add a built-in authentication method into Core, most likely, OAuth2. Now is May 01 2020. My blatant, probably wrong guess, is that this could be coming to Core in 12~ months or so.

2021 update

REST API authentication with Application Passwords was added in WordPress core on 5.6!

https://wordpress.org/support/wordpress-version/version-5-6/#rest-api-authentication-with-application-passwords

Related Posts:

  1. JWT on Woocommerce cannot work with “Customer” role user
  2. WooCommerce: Can’t use wc_get_products for custom REST API endpoints
  3. How do I use the WP REST API plugin and the OAuth Server plugin to allow for registration and login?
  4. How to authenticate custom API endpoint in WooCommerce [closed]
  5. Process checkout using WC REST API
  6. Extend Woocommerce rest api routes fails
  7. Rest API authentication issue when called from fetch request in bundle.js
  8. Can’t GET draft posts via REST API from headless frontend
  9. How to filter Post using Meta Data REST API
  10. How to stop a Gutenberg Block from firing multiple GET Requests?
  11. Output JSON object with woocommerce products
  12. Problem with cURL and rest API
  13. WP REST API GET Requests require authentication
  14. Woo API REST : product variation price is read-only?
  15. Category Tree In WooCommerce Product API
  16. How to save generated JWT token to cookies on login?
  17. How to upload Woocommerce product images via API? [closed]
  18. How to handle Woocommerce API credentials
  19. What will make Woocommerce REST API to issue 401 [closed]
  20. Woocommerce custom endpoints
  21. Woocommerce REST API – updating an order changes custom tax calculations
  22. Woocommerce Rest Api Categories problem [closed]
  23. API returns blank response after installing & uninstalling WP-rest-api plugin
  24. Delete cookie when changing url (when navigating away from specific page of website)
  25. woocommerce axios react
  26. Get specific values in Woocommerce Rest API
  27. wc_get_products() not return the images details
  28. WooCommerce – Add product with image via REST API
  29. Tax are not showing on order while placing order with REST API
  30. Woocommerce REST API – add filter to set maximum query per page for product brands [closed]
  31. WooCommerce – Create multiple product tags via rest api endpoint
  32. Using the WordPress and WooCommerce REST APIs in the same Node app
  33. Retrieve Data from Custom Endpoint
  34. Log in user using WordPress REST API
  35. How to verify which WordPress user requested the API in ASP .NET Core?
  36. How to run code when cookie is added?
  37. How to solve `Error getting remote image` in woocommerce rest api script?
  38. Getting in an exception for get product detail by id in woocommerce REST api
  39. Impossible to create a new WooCommerce customer using Rest API
  40. Woocommerce API security concerns
  41. How can I send information when a order is completed to my own POS?
  42. Woocommerce Rest API: woocommerce_product_invalid_image_id
  43. How to get cookie value?
  44. The same session information for peer users on two different WordPress servers
  45. WC Booking query bookings with date ranges
  46. “error_message”: “Sorry, you cannot list resources.” using WooCommerce API
  47. Woocommerce REST API: creating variations
  48. Woocommerce REST API not considering discounts and coupons
  49. Users credentials and syncing from third party with WooCommerce
  50. WooCommerce REST API endpoints don’t exist
  51. Fetch products with filter by similar categories at same time
  52. Rest Api WordPress
  53. Send data to external websites when there is an update or create a post
  54. Auto generating API keys using the Application Authentication Endpoint [closed]
  55. GET woocommerce order request is not showing meta data [closed]
  56. Where is the “default attribute” values located in the phpMyAdmin in Woocommerce?
  57. WordPress query through Products variation stock [closed]
  58. How can I override these WooCommerce widget cart button functions
  59. Programatically update Custom Attributes WooCommerce
  60. Editing Header Titles of each details in woocommerce Order Email [closed]
  61. Following migration from DEV to LIVE, woocommerce can’t checkout
  62. Woocommerce api: create product with images – bad request
  63. Woocommerce Shipping label just hangs
  64. adding a script with type=”module” to woocommerce admin area
  65. Woo Related Products How to override the plugin script?
  66. Woocommerce how to alter shipping tax before checkout
  67. Line break on Product details [closed]
  68. WooCommerce add class name in the list [closed]
  69. How to display Woocommerce variations prices and descriptions
  70. How to rewrite product permalinks in Woocommerce to use category slugs
  71. Woocommerce – Problem sorting and filtering products with different tax rates by price [closed]
  72. Why does my loop breaks the css below?
  73. How to add order status class to the body tag?
  74. WP/WooCommerce multisite with polylang, product duplication between websites [closed]
  75. Woocommerce Register Error
  76. Where is this text in a wordpress email coming from? Want to change/remove
  77. Add starts rating in woocommerce product comment from backend
  78. Need to check if user has completed a woo commerce payment
  79. How to reduce checkout loading time of `?wc-ajax=checkout`
  80. unable to customize query to get filtered products by meta_key
  81. Woocommerce + Google Analytics (Conversion Rate Not Working)
  82. send order detail to swiftpos
  83. WordPress Woocommerce REST API JSON Error
  84. data-value for custom woocommerce field showing in code but not visable on page load
  85. Update user meta when customer update their first name
  86. Woocommerce posts and products links works only once and then get 404 error
  87. How can we find a WooCommerce shop bottleneck? (only when cart is full)
  88. Using admin email in billing address
  89. Overriding Plugin function in your child theme
  90. How do you reactive related products on WooCommerce when it has been disabled?
  91. Extend Cookie with auth_cookie_expiration not working
  92. Display product variations in shop page
  93. How can I locate where the actions are defined? [duplicate]
  94. Shortcodes in billing fields doesn’t work
  95. Update a user meta key based on WooCommerce product purchase
  96. How to fix spacing in address tab in my account page
  97. show multiple product photos on WooCommerce single page
  98. How do I put woocommerce cart page to my checkout page? [closed]
  99. CSS url rules not relative to css path in account endpoint areas. IE. subscriptions
  100. I want to update shipping charge $0 for all Woocommeerce Subscription auto-renewal orders

Leave a Comment