What method to use to call a REST API?

In general it is always better to get the information straight from the source…. but you have to think about security. Using the REST API client from a different domain will require disable CORS protections for that domain. The amount of risk related to that depends upon how tied are the domains (do they have same admins, same kind of private data and such). This should not be done lightly and requires thinking as it opens a new attack vector against the “main” site.

OTOH if the data can not be cached, it is just “stupid” to do two requests instead of one.

The right implementation is probably to “overload” the API end points on the “main” server with a different domain that do not share cookies, which will eliminate the need for CORS protection. (this obviously assumes that user authentication is not required for what you are trying to do with the API)

Related Posts:

  1. How to check WordPress website username and password is correct
  2. WordPress REST API call generates nonce twice on every call
  3. How to: Rest endpoint returning empty object
  4. Custom endpoint that returns an xml
  5. Plugin Sidebar is not Saving Meta Attribute to Post/Page after “Update”
  6. Rest Api How to get results of child categories with one api call
  7. WP rest api v2 posts filter by ‘search’ & ‘category_name’ not working
  8. WP REST API V2 – Add user data to response
  9. How can I pass get_the_author_meta(‘user_email’) through the REST API?
  10. How to get results of subcategories also?(WP Rest Api v2)
  11. Amending REST API function without deactivate/activate plugin every time changes is made
  12. Create a new post using rest api and save featured image using an external image url
  13. Adding custom end points, No error line
  14. Serve text/html from wp-json API via WPEngine, headers not being set properly
  15. Secure REST with nonce works only when not logged
  16. How to do POST request with WP REST API v2 to custom table?
  17. rest_no_route on custom API endpoint wordpress
  18. Custom Rest Endpoint: Post/Put/Patch not working
  19. Can’t retrieve body params from PUT endpoint using formdata
  20. Do I need to create an endpoint?
  21. WordPress Rest API with rest_do_request, possible race condition?
  22. How to use apiFetch to get author information in Gutenberg properly?
  23. Mock a dependency of a WP_REST_Controller class
  24. update_callback is not working in register_rest_field
  25. REST Endpoint API 404
  26. Allow REST API Endpoint to specific user and hide from public
  27. Custom Endpoint – Does it possible to use PUT method with WP API Rest?
  28. How to do admin ajax request in a plugin for rest api
  29. Attaching Image-file to userId
  30. Query String Filtering API
  31. Custom plugin & calling REST api of wordpress instance the plugins is running on
  32. GET request return value as error instead of success
  33. How to query a nested field in wordpress api using _fields param
  34. Get Custom taxonomy parent with wordpress REST API
  35. register_meta not showing custom post type metabox data in rest api
  36. why is apiFetch throwing Unhandled Promise Rejection: TypeError: Object is not a function
  37. Securing custom rest API endpoints with public access from PWA
  38. WP_Query not ordering correctly
  39. 403 error rest_’cookie_invalid_nonce’ on API Request
  40. Adding Amchart Interface to WordPress API
  41. WC REST API Error Handling
  42. Initializing rest endpoint issue
  43. Multisite and the JSON REST API: How to?
  44. React in plugins: REST endpoints vs. regular functions
  45. Query only title/field/featured media of posts [closed]
  46. WP API users per page
  47. Best place to keep files that are called by cron jobs?
  48. Is it safe to use PUT and DELETE requests
  49. Is it possible to make WordPress as a RESTful app?
  50. oneOf two possible objects in WP REST API?
  51. How to update WordPress Plugins in your own maintance application?
  52. Extend Plugin that creates an endpoint for GET request to also accepts POST requests
  53. How can create a custom plugin to call my webapi after any registration or membership plugin functionality
  54. Rest Api WordPress
  55. External api call using wordpress
  56. Does WP REST API cache internally executed (rest_do_request) requests?
  57. Run different permission_callback depending on HTTP method of custom REST API endpoint
  58. REST API error in block editor for custom templates
  59. How to get locale within WP REST Request?
  60. Execute callback after REST API request completes + Response is sent
  61. How to boost WP custom post REST API GET queries by custom taxonomies
  62. How do I return XML to an API post request
  63. How do I “replace a function via plugins” in WordPress?
  64. Does WP fire delete_post when trashed posts are automatically deleted?
  65. WordPress plugin how to run function when button is clicked
  66. What action is called when drafts are saved?
  67. How to: get main plugin/theme file?
  68. PHPUnit test plugin activation
  69. Use an empty page to build custom plugin output
  70. Dropdown list of pages to get page id to store in plugin options
  71. How to add custom content under plugin row in WordPress admin plugin list?
  72. How to get an image transferred via FTP or script to appear in Media Manager?
  73. REST-API: extend media-endpoint
  74. What is the best way to overwrite /wp-admin/ms-delete-site.php
  75. Create a new page in a plugin
  76. Where should I store global data for my multi-site WordPress plugin?
  77. Version upgrade: can my plugin filter the SQL statements issued during a database upgrade?
  78. WordPress admin deleted user details not removed in database. How to delete WordPress Users from Database
  79. How to show large image in checkout page using WP Ecommerce plugin [closed]
  80. Why do I need to check if wp_nonce_field() exists before using it
  81. Save Checkbox value in Plugin [duplicate]
  82. edit_{$taxonomy} | Hook
  83. Worpdress cannot create directory
  84. how to make custom bulk actions for a WP_List_Table (core class)
  85. Get name and email of current unregistered user, who has recently submitted name and email in comment form?
  86. How to associate an existing user to a site in a multisite setup programmatically
  87. Changing upload dir in a plugin regardless of post type
  88. Auto save permalink setting page with the plugin activation
  89. creating custom function to log actions in plugin
  90. Alter post object before display
  91. Howto: Use Custom Post Types as Submenu Items in Admin
  92. Show custom data instead of 404
  93. How to localize admin.php only once
  94. How can I get a list of CPT inside a plugin file?
  95. Creating a custom Gutenberg block with columns
  96. Problem with Owl Carousel, infinite loop [closed]
  97. Add an action only for a specific user in a plugin
  98. useBlockProps() nests wrapper with class name inside block wrapper in the editor
  99. How to run this plugin every time a post is saved?
  100. how to send csv file to other server using wp_remote_post?