WP API and Proxy

Using a proxy is important when you cannot store your authentication credentials securely. One encounters this problem when building single page applications with client-side JavaScript Frameworks like Angular or Ember. This blog entry by Alex Bilbie nicely summarises the issue.

As a side project, involving a Angular/Ionic/Cordova application and WordPress, I’m building a proxy plugin for the WP REST API in order to communicate securely with the API. The code is available on GitHub, should you wish to check it out. It’s a personal project (currently running inside a Vagrant box) geared towards understanding the API and polishing my Angular/Ionic skillset and based on my limited understanding of the OAuth spec, so there’s bound to be a lot of bugs and other issues.

But to answer your three questions:

  • The REST API works behind a proxy;
  • I’m using both plugins (REST API and API proxy) as a primary datasource;
  • I’m not aware of any proxy services that work with the WP REST API, but a quick Google search lists some generic tutorials by Apigee and Amazon.

EDIT: I started working on my proxy attempt when version 1 of WP API was still in development and there are now several other authentication options, apart from Basic Auth and OAuth1. JWT based authentication seems to be a more streamlined option as opposed to a proxy. I’m currently experimenting with this JWT plugin developed for the API. Still uncertain about the security implications, though, as is this user. This provides an interesting, but rather bleak general overview.

Related Posts:

  1. How do I access the body of a WP API request in a custom route?
  2. wp rest api v2 return json_no_route
  3. WP-REST API not returning all its endpoints, 404 on documented endpoints
  4. WP REST API V2 – Modifying responses
  5. OAuth signature does not match
  6. How to upload image to wordpress from external page
  7. WP API to fetch all records for /posts, /media, /categories
  8. WP Rest API get page from path
  9. backbone fetch() not working
  10. WP-API user email change confirmation
  11. No featured media in API request
  12. Syntax for REST API to have bold formatted and multiple lines in product description [closed]
  13. WP Rest get all by post within that category, by category name not by cat ID
  14. Add Data to Response of WP-JSON Root
  15. OAuth1 empty “authentication” in /wp-json
  16. WP – API – OAuth 1.0a Server, How to implement with AngularJS?
  17. Are there events pub/sub for external application to subscribe to file/pdf uploads by wordpress admin
  18. Get single item from cURL plugin API call inside bash [closed]
  19. why woocommerce api only do not upload images from local computer? [closed]
  20. ng-repeat is not returning a list of posts
  21. What request is WordPress sending on theme update?
  22. Is WP API going to be around in the long term?
  23. How to Create a Post from localfiles?
  24. Get a complete list of all categories using node-wpapi
  25. upload image to wp-api
  26. WP-API call function
  27. wordpress api make 2 custom post type with single request
  28. Update Custom Post Type Metadata Wp Rest API
  29. WP-API Content showing null
  30. How to retreive/set wordpress page html?
  31. How can I use React packages with the clasic editor?
  32. performing HTTP requests with cURL (using PROXY)
  33. HTTPS connections over proxy servers
  34. Axios having CORS issue
  35. How to set proxy for wget?
  36. How to get pip to work behind a proxy server
  37. How do I pull from a Git repository through an HTTP proxy?
  38. How do I set the proxy to be used by the JVM
  39. git returns http error 407 from proxy after CONNECT
  40. Proxy Error 502 : The proxy server received an invalid response from an upstream server
  41. First run of Android Studio. Unable to access Android SDK add-on list
  42. How to use NGINX as forward proxy for any requested location?
  43. PIP Could not find any downloads that satisfy the requirement SQLAlchemy
  44. Forwarding port 80 to 8080 using NGINX
  45. Atom using System Proxy
  46. bower proxy configuration
  47. Hiding WordPress REST API v2 endpoints from public viewing
  48. Get WP Navigation Menu from REST API V2
  49. Get post count in wp rest API v2 and get all categories
  50. How can I speed up my WP admin section?
  51. Query WP REST API v2 by multiple meta keys
  52. Show popular post in another php website via WP REST JSON API
  53. Uploading media with the REST API
  54. Possible to fix admin URL behind proxy issue without hacking core?
  55. WP-API v2 Custom Endpoint Response Formatting
  56. How to use the HTTP API with a Proxy?
  57. How do I cache (core) API requests?
  58. Implementing Isomorphic JavaScript (React JS) in WordPress?
  59. WP REST API only returning partial list of users
  60. Is there a way to get protected meta fields through any of the available built-in WordPress APIs? (xmlrpc, wp-json)
  61. WP API returning SQL results as strings, rather than numbers
  62. Are there server performance benefits to fetching only specific fields when querying the REST API?
  63. WordPress Rest API
  64. Retrieving pages with multiple tags using REST API
  65. Insert variations via woocommerce api [closed]
  66. Fetching private posts or custom post types via WP-API with basic authentication
  67. Custom endpoint and X-WP-TotalPages (headers)
  68. WP Rest API v2 filter and display latest post with specific tag
  69. WordPress Rest API: How do we validate with our custom API key?
  70. How to update/insert custom field(post meta) data with wordpress REST API?
  71. How do I use the WP REST API plugin and the OAuth Server plugin to allow for registration and login?
  72. How to save new transients if query changes?
  73. How to loop through JSON data in wordpress WP REST API
  74. WP API V2 returning Invalid User ID
  75. Unset data in custom post type WordPress API (wp-json)
  76. Can I list all installed plugins/versions and wp version from API
  77. How do I retrieve a list of popular plugins using the WordPress.org Plugin API?
  78. WP API : date_query parameter
  79. WordPress behind Proxy – Mixed Content
  80. How to filter or search the posts using postmeta tables custom meta fields with wordpress REST API
  81. WP-API: how do I allow authenticated clients only?
  82. Hiding API routes list
  83. WordPress wp-json API – Custom Post Type returns 403
  84. Get the Category Name instead of ID from WP-API
  85. Get more than 10 posts in a specific category with the wordpress api
  86. WP API to fetch all the media/posts records if count is more than 100
  87. Add Products to Woocommerce through WP API
  88. WP REST API – Retrieve content from page
  89. Updata Metadata WP Rest API
  90. Authentication for a mobile app connected via wp-rest api?
  91. Add media with WP-Rest-API v2 II
  92. How can I change permalinks to use a different domain and path from where the blog is hosted?
  93. wordpress custom endpoint multiple params
  94. Can we access the REST request parameters from within the permission_callback to enforce a 401 by returning false?
  95. WP-CLI alias: connect with ssh proxy
  96. Create post with REST API in php with file_get_contents
  97. Mixed Content with SSL, wordpress behind a reverse proxy
  98. WordPress REST API “rest_authentication_errors” doesn’t work external queries?
  99. 302 redirect to signup with nginx reverse proxy
  100. Keep getting 401 error from WordPress on AWS Lightsail
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)