Register rest field authentication with REST API

It is a bad API design to return different structure based on “external data” not passed in the request itself.

Either construct different API for logged in users and use a different end point for it, or return a “filler” when the user do not have permission to access the data.

(and it is always a bad idea to make modifications to the official rest API as you might create incompatibilities with other users of it, so at least be careful use prefixes etc)

Related Posts:

  1. WP REST API: check if user is logged in
  2. Can’t GET draft posts via REST API from headless frontend
  3. WP REST API – Nonce passes wp_verify_nonce even after logout
  4. Rest API: wp_verify_nonce() fails despite receiving correct nonce value
  5. Log in user using WordPress REST API
  6. wp_nonce vs jwt
  7. How to: Make JWT-authenticated requests to the WordPress API
  8. WordPress Rest API: How do we validate with our custom API key?
  9. WordPress REST API call generates nonce twice on every call
  10. How to Authenticate WP REST API with JWT Authentication using Fetch API
  11. authentication issue with rest api – rest_cannot_create
  12. Can I authenticate with both WooCommerce consumer key and JWT?
  13. How to login to WordPress site using basic authentication HTTP headers?
  14. Can we access the REST request parameters from within the permission_callback to enforce a 401 by returning false?
  15. WordPress REST API “rest_authentication_errors” doesn’t work external queries?
  16. Create Session with JWT
  17. Full page NGINX (or Cloudflare) caching and WordPress nonces
  18. WordPress REST API, Expired Nonce from Cache results in 403 forbidden
  19. Passing a borrowed nonce through Postman fails
  20. how to send Ajax request in wordpress backend
  21. permission_callback has no effect
  22. WP REST API GET Requests require authentication
  23. current_user_can(‘administrator’) returns false when I’m logged in
  24. Authenticating with REST API
  25. Make authorization mandatory on custom routes
  26. How to force JWT auth for default GET endpoints of WordPress rest api?
  27. REST API: best place to set current user for JWT auth?
  28. WordPress + REST API v2 and private pages Load by slug
  29. REST API authentication for a plugin
  30. PHP: authenticate for a REST request?
  31. Rest API basic auth not working
  32. Authenticate current user to REST API
  33. Getting 401 from ajax using an application password
  34. How to connect android app with WordPress website?
  35. WordPress REST API calls that depend on the WordPress User
  36. Backbone with custom rest endpoints
  37. WordPress HTTP API NTLM Authentication
  38. Advanced Access Manager: RESTful endpoint to refresh token
  39. Best Authetication between REST API and Mobile App
  40. How to verify which WordPress user requested the API in ASP .NET Core?
  41. Secure WordPress API, how?
  42. register/login api
  43. How can I secure my custom rest api endpoint or add under a already existing rest group
  44. REST API Integration without user account?
  45. WP REST API with Basic Auth at target website
  46. Cant POST with REST API on WordPress
  47. REST API – Authentication/Logon security
  48. Rest API nonce is being cached
  49. custom REST endpoints and application passwords
  50. wordpress rest api authentication failed
  51. Is the WordPress REST API installed and enabled in a vanilla WordPress 4.7 installation?
  52. check the requesting url
  53. WP REST API V2 – Retrieve sub page by full slug (URL/Path)
  54. How to check WordPress website username and password is correct
  55. Adding post fields in wp-json/wp/v2/search
  56. Unable to get the info of the user which doesn’t have created any post via REST API
  57. WordPress Gutenberg get page template value when post updated?
  58. How to update custom meta fields with rest api?
  59. Rest API invalid nonce with Backbone Client
  60. Rest API and Custom Fields
  61. WP Rest API: Get User by Email
  62. Gutenberg Custom Block Getting All Posts
  63. Can we assume that /wp-json/ will always be /wp-json/ under any circumstances when creating custom REST routes?
  64. How to hook into “register_rest_field” to modify the behavior of a custom field?
  65. How to add / embed an author into REST data from a custom post type?
  66. How to enable the view of revisions of post in WordPress Api for custom post type?
  67. Problem on creating custom endpoints for REST
  68. Rest API code to get ID of current user not working: get_current_user_id() gives 0
  69. New user signup via REST API
  70. Ho to style post content for WordPress API?
  71. WP REST API can’t set post tags
  72. WP API post__not_in is not working
  73. Sidebar endpoint using WordPress API
  74. Get custom posts in gutenberg block
  75. Getting 401 (access denied) when trying to use the REST API
  76. WordPress REST API not working on localhost
  77. User following system via REST API
  78. REST API – Allow /users endpoint depending on a custom capability
  79. Can I overwrite default WordPress Json API For no more pages text
  80. Create User with Profile and Cover Images using REST API
  81. Media gallery images url instead of ID on WP API
  82. What’s the right way to validate JSON data coming from an AJAX POST request?
  83. Remove unwanted fields from WP API response
  84. WordPress API “code”:”rest_no_route” with Custom Route
  85. WordPress Update Role using API Cross site
  86. Rest API. Post content
  87. Error rest_post_invalid_page_number trying to call Rest API
  88. Is it possible to combine two rest endpoints in the url?
  89. WordPress api returns distinct data
  90. Redefine REST API variables
  91. Where is the HTML content for my post in the API
  92. WordPress Rest API Escapes Returned URLs Forward Slash
  93. Update post / page using API + python
  94. Social login authentication via wordpress rest api
  95. Calling a Rest API with parameters on button Click
  96. WordPress json – How to use the content rendered from json
  97. Subscriber role cann’t add comment meta using REST API
  98. WordPress REST API function not calling from external site
  99. Issue with API after 6.2 update
  100. Verify user login and password over api