How to build a plugin that supports authenticated POST requests to the REST API from external servers?

Answering my own question.

For plugin developers, the directive is to use current_user_can() in your code as usual in the REST endpoints, as Core does.

WordPress 5.4 does not support authenticated requests originated from outside WordPress to the REST API yet. But your clients can use plugins such as Basic Auth, OAuth2 or JWT to add that functionality.

The REST team in WordPress is working to add a built-in authentication method into Core, most likely, OAuth2. Now is May 01 2020. My blatant, probably wrong guess, is that this could be coming to Core in 12~ months or so.

2021 update

REST API authentication with Application Passwords was added in WordPress core on 5.6!

https://wordpress.org/support/wordpress-version/version-5-6/#rest-api-authentication-with-application-passwords

Related Posts:

  1. JWT on Woocommerce cannot work with “Customer” role user
  2. WooCommerce: Can’t use wc_get_products for custom REST API endpoints
  3. How do I use the WP REST API plugin and the OAuth Server plugin to allow for registration and login?
  4. How to authenticate custom API endpoint in WooCommerce [closed]
  5. Process checkout using WC REST API
  6. Extend Woocommerce rest api routes fails
  7. Rest API authentication issue when called from fetch request in bundle.js
  8. Can’t GET draft posts via REST API from headless frontend
  9. How to filter Post using Meta Data REST API
  10. How to stop a Gutenberg Block from firing multiple GET Requests?
  11. Output JSON object with woocommerce products
  12. Problem with cURL and rest API
  13. WP REST API GET Requests require authentication
  14. Woo API REST : product variation price is read-only?
  15. Category Tree In WooCommerce Product API
  16. How to save generated JWT token to cookies on login?
  17. How to upload Woocommerce product images via API? [closed]
  18. How to handle Woocommerce API credentials
  19. What will make Woocommerce REST API to issue 401 [closed]
  20. Woocommerce custom endpoints
  21. Woocommerce REST API – updating an order changes custom tax calculations
  22. Woocommerce Rest Api Categories problem [closed]
  23. API returns blank response after installing & uninstalling WP-rest-api plugin
  24. Delete cookie when changing url (when navigating away from specific page of website)
  25. woocommerce axios react
  26. Get specific values in Woocommerce Rest API
  27. wc_get_products() not return the images details
  28. WooCommerce – Add product with image via REST API
  29. Tax are not showing on order while placing order with REST API
  30. Woocommerce REST API – add filter to set maximum query per page for product brands [closed]
  31. WooCommerce – Create multiple product tags via rest api endpoint
  32. Using the WordPress and WooCommerce REST APIs in the same Node app
  33. Retrieve Data from Custom Endpoint
  34. Log in user using WordPress REST API
  35. How to verify which WordPress user requested the API in ASP .NET Core?
  36. How to run code when cookie is added?
  37. How to solve `Error getting remote image` in woocommerce rest api script?
  38. Getting in an exception for get product detail by id in woocommerce REST api
  39. Impossible to create a new WooCommerce customer using Rest API
  40. Woocommerce API security concerns
  41. How can I send information when a order is completed to my own POS?
  42. Woocommerce Rest API: woocommerce_product_invalid_image_id
  43. How to get cookie value?
  44. The same session information for peer users on two different WordPress servers
  45. WC Booking query bookings with date ranges
  46. “error_message”: “Sorry, you cannot list resources.” using WooCommerce API
  47. Woocommerce REST API: creating variations
  48. Woocommerce REST API not considering discounts and coupons
  49. Users credentials and syncing from third party with WooCommerce
  50. WooCommerce REST API endpoints don’t exist
  51. Fetch products with filter by similar categories at same time
  52. Rest Api WordPress
  53. Send data to external websites when there is an update or create a post
  54. Auto generating API keys using the Application Authentication Endpoint [closed]
  55. GET woocommerce order request is not showing meta data [closed]
  56. How to add fee_lines using woocommerce rest API v3?
  57. Update a server-side render Block when woocommerce cart block changed
  58. How to validate a user from ouside wordpress/php?
  59. why does WordPress need two cookies for auth/login
  60. wc_get_template_part( ‘content’, ‘product’ ) | Where is this file located?
  61. how to get woocommerce product attribute slug
  62. How to check WordPress website username and password is correct
  63. How to display product price of the product in loop
  64. Add a custom button with custom link after add to cart for every product
  65. Redirect woocommerce single-product page
  66. Remove action on product archive page [closed]
  67. New endpoint in my account gives 404 Error Woocommerce 3.6.5 and WP 5.2.2
  68. Add Custom CSS to Woocommerce Product Page in a specified category
  69. WooCommerce showing star rating review instead of text review string
  70. Username field is not shown in Woocommerce’s registration contact form
  71. Woocommerce Membership Expiry Date
  72. Get WooCommerce product attribute taxonomies in a SQL query on WordPress database
  73. WordPress REST API “rest_authentication_errors” doesn’t work external queries?
  74. Custom Redirect after registration in WooCommerce
  75. How to echo billing phone number under My Account in Woocommerce? [closed]
  76. Show all author products from specific category
  77. Unknow php file in wordpress core [closed]
  78. woocommerce_get_price filter hook not working for product variation price
  79. Woocommerce SKU on ALL products page [closed]
  80. Stop WooCommerce from updating user/user meta after checkout
  81. Displaying Custom Input Value to Customer Order Details (My Account) page in Woocommerce
  82. Sort orders by custom order meta – Woocommerce Orders admin page
  83. Redirect user to cart page when add to cart button is clicked
  84. Get rid of product images mobile swipe functionality from WooCommerce single product [closed]
  85. how i can add more required * fields in checkout page?
  86. Disable Local Attributes woo commerce
  87. Woocommerce set cookie after a sale [closed]
  88. How to upload images from wordpress front-end (the first image must be thumbnail and the rest without first must be in gallery woocommerce product)
  89. Problems with varibel price [closed]
  90. REST API: best place to set current user for JWT auth?
  91. Custom Admin Email Subject for Woocommerce (3.8.0) Orders
  92. Modifying custom order item meta from admin order view
  93. Tax Query for custom Taxonomy field
  94. WooCommerce – Exclude category from snippet
  95. Replacing products on Woocommerce Product Category with Search Results from SearchWP [closed]
  96. Creating custom permalink tags for WooCommerce
  97. Add Custom Slug Tags Per Page
  98. How to override Woocommerce functionality in Reports section?
  99. how can use woocommerce add to cart popup?
  100. Do I need a different product type for WooCommerce [closed]

Leave a Comment