Nonce retrieved from the REST API is invalid and different from nonce generated in wp_localize_script

Take a closer look at the function rest_cookie_check_errors().

When you get the nonce via /wp-json/nonce/v1/get, you’re not sending a nonce in the first place. So this function nullifies your authentication, with this code:

if ( null === $nonce ) {
    // No nonce at all, so act as if it's an unauthenticated request.
    wp_set_current_user( 0 );
    return true;
}

That’s why you’re getting a different nonce from your REST call vs getting it from the theme. The REST call is intentionally not recognizing your login credentials (in this case via cookie auth) because you didn’t send a valid nonce in the get request.

Now, the reason your wp_loaded code worked was because you got the nonce and saved it to a global before this rest code nullified your login. The verify fails because the rest code nullifies your login before the verify takes place.

Related Posts:

  1. Headless WordPress: How to authenticate front end requests?
  2. Rest API invalid nonce with Backbone Client
  3. REST API: Backbone and custom endpoint
  4. Gutenberg custom block plugin with custom image sizes
  5. Get loading state of wp data selector
  6. WP REST – video and audio players
  7. Post to WordPress using REST API from external site
  8. How to handle malformed response from WP REST API?
  9. Rest API authentication issue when called from fetch request in bundle.js
  10. Get HTTP response code on non-2xx apiFetch request
  11. WP REST API Post Status Using JavaScript
  12. How to transform a legacy widget into a block
  13. Authentication with the Rest API when using an External Application
  14. Get Block Attributes in JSON REST API
  15. Setting/unsetting terms using the Backbone JavaScript client
  16. Checks when fetching data from multiple REST API endpoints in Gutenberg
  17. Search for a keyword across post types in a Gutenberg component
  18. Using apiFetch for retrieving post data in Gutenberg
  19. Get terms of a taxonomy using useSelect
  20. Return ‘X-WP-Total’ from headers in response
  21. How to render WP Rest-API Endpoints in a React.js Theme with Woocommerce
  22. Retrieving data about comments and likes
  23. how to use nimble-API and Display data?
  24. Check if user can in javascript
  25. wp-api Backbone JS Client fetch options
  26. Why does my array sort order changes when I pass it to JS using WP_REST_Response?
  27. Rest API and how to deal with it in server side
  28. Access checks with custom REST endpoints and backbone
  29. [Vue warn]: Error in render: “TypeError: Cannot read property ‘wp:featuredmedia’ of undefined – REST API
  30. Update block once an API request returns with a value
  31. Get user in rest API endpoint
  32. How to improve WP-Rest atrocious response time?
  33. I would like to retrive JSON value and display it in wordpress page or widget
  34. Connecting a wordpress site to an AngularJS APP
  35. WordPress REST API response is empty in browser and script, but not in Postman
  36. WP REST API – “rest_user_cannot_view” ONLY on specific users
  37. Get Comment Text via REST API
  38. How to use Redirect in the new react-router-dom of Reactjs
  39. How to fix “Cannot read property ‘addEventListener’ of null” error [duplicate]
  40. What does [object Object] mean?
  41. Remove class using jQuery
  42. How do I check whether a checkbox is checked in jQuery?
  43. Babel 7 – ReferenceError: regeneratorRuntime is not defined
  44. How do I completely uninstall Node.js, and reinstall from beginning (Mac OS X)
  45. How can I check for “undefined” in JavaScript?
  46. Does JavaScript pass by reference?
  47. How to add jQuery code into HTML Page
  48. TypeError: Router.use() requires middleware function but got a Object
  49. How can I determine if a variable is ‘undefined’ or ‘null’?
  50. Cannot find module ‘@angular-devkit/core’
  51. iFrame onload JavaScript event
  52. What is the difference between state and props in React?
  53. Is there an arraylist in Javascript?
  54. How to convert JSON object to JavaScript array?
  55. How can I display a JavaScript object?
  56. JSLint says “missing radix parameter”
  57. How to print HTML content on click of a button, but not the page?
  58. explode string in jquery
  59. How do I create and read a value from cookie?
  60. Check if a variable is of function type
  61. How to uncheck a radio button?
  62. How can I extract a number from a string in JavaScript?
  63. Angularjs: Error: [ng:areq] Argument ‘HomeController’ is not a function, got undefined
  64. Truncate a string straight JavaScript
  65. Phone mask with jQuery and Masked Input Plugin
  66. Is there a way to get element by XPath using JavaScript in Selenium WebDriver?
  67. Get class list for element with jQuery
  68. Object Dump JavaScript
  69. Convert array to JSON
  70. Is there a way to read standard input with JavaScript?
  71. How can JavaScript save to a local file?
  72. Generating PDF files with JavaScript
  73. How to disable auto-start of “Node.js: Server-side JavaScript” when using Adobe Dreamweaver?
  74. How to disable button in React.js
  75. What’s the effect of adding ‘return false’ to a click event listener?
  76. New line in JavaScript alert box
  77. Glidejs with WordPress
  78. Gutenberg – remove / add blocks with custom script
  79. How do I add custom attributes to javascript tags in WordPress?
  80. Min And Max Date With Date Format In Elementor Form Not Working
  81. Strange gibberish JavaScript in Editor – site hacked?
  82. Building a slide down search box in wordpress
  83. Resolving Javascript errors likely related to Gantry framework
  84. javascript conflict
  85. WordPress customizer get control
  86. How to load JS for specific screen size using wp_enqueue_script?
  87. I am trying to add current logged in user to my zoho chat
  88. Video script issue, JavaScript attribute remains ‘undefined’
  89. Conditional save return on Gutenberg Block
  90. Headless wp with react. How to handle routes?
  91. Where to paste Google Map Snippet / JavaScript / CSS for WordPress integration
  92. Issues trying to get an element by id
  93. Setting Variable Path to Template Directory inside Script
  94. Dynamically add Js
  95. Contact Form 7 Conditional redirect
  96. Can’t change javascript files
  97. Remove WordPress default registration client side validation?
  98. Live Time on WP showing weirdly [closed]
  99. Google Map JavaScript error after migrating
  100. Table block variation with header section activated

Leave a Comment