WP API and Proxy

Using a proxy is important when you cannot store your authentication credentials securely. One encounters this problem when building single page applications with client-side JavaScript Frameworks like Angular or Ember. This blog entry by Alex Bilbie nicely summarises the issue.

As a side project, involving a Angular/Ionic/Cordova application and WordPress, I’m building a proxy plugin for the WP REST API in order to communicate securely with the API. The code is available on GitHub, should you wish to check it out. It’s a personal project (currently running inside a Vagrant box) geared towards understanding the API and polishing my Angular/Ionic skillset and based on my limited understanding of the OAuth spec, so there’s bound to be a lot of bugs and other issues.

But to answer your three questions:

  • The REST API works behind a proxy;
  • I’m using both plugins (REST API and API proxy) as a primary datasource;
  • I’m not aware of any proxy services that work with the WP REST API, but a quick Google search lists some generic tutorials by Apigee and Amazon.

EDIT: I started working on my proxy attempt when version 1 of WP API was still in development and there are now several other authentication options, apart from Basic Auth and OAuth1. JWT based authentication seems to be a more streamlined option as opposed to a proxy. I’m currently experimenting with this JWT plugin developed for the API. Still uncertain about the security implications, though, as is this user. This provides an interesting, but rather bleak general overview.

Related Posts:

  1. How do I access the body of a WP API request in a custom route?
  2. wp rest api v2 return json_no_route
  3. WP-REST API not returning all its endpoints, 404 on documented endpoints
  4. WP REST API V2 – Modifying responses
  5. OAuth signature does not match
  6. How to upload image to wordpress from external page
  7. WP API to fetch all records for /posts, /media, /categories
  8. WP Rest API get page from path
  9. backbone fetch() not working
  10. WP-API user email change confirmation
  11. No featured media in API request
  12. Syntax for REST API to have bold formatted and multiple lines in product description [closed]
  13. WP Rest get all by post within that category, by category name not by cat ID
  14. Add Data to Response of WP-JSON Root
  15. OAuth1 empty “authentication” in /wp-json
  16. WP – API – OAuth 1.0a Server, How to implement with AngularJS?
  17. Are there events pub/sub for external application to subscribe to file/pdf uploads by wordpress admin
  18. Get single item from cURL plugin API call inside bash [closed]
  19. why woocommerce api only do not upload images from local computer? [closed]
  20. ng-repeat is not returning a list of posts
  21. What request is WordPress sending on theme update?
  22. Is WP API going to be around in the long term?
  23. How to Create a Post from localfiles?
  24. Get a complete list of all categories using node-wpapi
  25. upload image to wp-api
  26. WP-API call function
  27. wordpress api make 2 custom post type with single request
  28. Update Custom Post Type Metadata Wp Rest API
  29. WP-API Content showing null
  30. How to retreive/set wordpress page html?
  31. How can I use React packages with the clasic editor?
  32. PIP Could not find any downloads that satisfy the requirement SQLAlchemy
  33. Forwarding port 80 to 8080 using NGINX
  34. Get post count in wp rest API v2 and get all categories
  35. Query WP REST API v2 by multiple meta keys
  36. How to use the HTTP API with a Proxy?
  37. WP REST API only returning partial list of users
  38. Is there a way to get protected meta fields through any of the available built-in WordPress APIs? (xmlrpc, wp-json)
  39. Fetching private posts or custom post types via WP-API with basic authentication
  40. Unset data in custom post type WordPress API (wp-json)
  41. How do I retrieve a list of popular plugins using the WordPress.org Plugin API?
  42. WP API : date_query parameter
  43. Get the Category Name instead of ID from WP-API
  44. WP API to fetch all the media/posts records if count is more than 100
  45. Add Products to Woocommerce through WP API
  46. WP REST API – Retrieve content from page
  47. Updata Metadata WP Rest API
  48. Authentication for a mobile app connected via wp-rest api?
  49. Proxy not working with Requests::request_multiple()?
  50. Hook before posting via JSON REST API
  51. Display post title from WordPress excluding a string via API
  52. WP_REMOTE_POST Requests are being blocked by API provider [closed]
  53. Cache WP remote_get HTTP Response using Transients
  54. I am getting error message on accessing menu-endpoint
  55. Update Line Item Meta Data – WooCommerce API
  56. wp-login behind nginx reverse-proxy inaccessible — bad redirect?
  57. Woocommerce api: create product with images – bad request
  58. Posting page on all subdomains
  59. WP-API select custom taxonomy when creating a post
  60. WordPress updates being blocked by proxy
  61. Get a remote post ID via API given URL
  62. Core function to check if a rest namespace exists
  63. How to change the date and time in REST API for comments?
  64. Is there a way to download only the Rest API part of WordPress?
  65. Custom Endpoint API based on attribute gutenberg block
  66. How to see posts in taxonomy endpoint
  67. Uploading a media item with the wp-json API to a specific path
  68. post values to custom post type which has advanced custom fields
  69. How to add a rest field to post tags?
  70. Why are tags from the header showing up on my WordPress site? [closed]
  71. oAuth2 Authentication in WordPress using WP OAuth Server and WP API plugins
  72. Refresh individual comment text via API
  73. Can’t login to WordPress admin panel after changing domain to use WordPress pages as a fallback from React
  74. How to display relations via wordpress Rest API
  75. Allow REST API Endpoint to specific user and hide from public
  76. How can I create new CustomPostType record using wp.api.collections?
  77. cannot get global $menu value in form request
  78. do_action in API call
  79. register/login api
  80. How do i post data to url with fields?
  81. 403 error rest_’cookie_invalid_nonce’ on API Request
  82. How to use following API with WordPress?
  83. wp_insert_user if user exists
  84. Return raw image proxy for wordpress plugin
  85. WooCommerce API Returns 401
  86. How to get custom or filtered endpoints in WordPress API?
  87. Installation problem with wordpress xampp
  88. WP API users per page
  89. Combining results from WP-API using AngularJS
  90. Remove a field from json in wp rest api v1
  91. WP REST API v2. filters doesn’t work
  92. WP REST API Access-Control-Allow-Origin response is cached
  93. ouput buffering confusing me!
  94. how to server over http and https with one installation
  95. Integrating WordPress for blog and other content pages in a web app
  96. XMLRPC: How to retrieve possible custom fields for a new post?
  97. How can I create a custom plugin to call webapi after user registration?
  98. Nginx Redirect via Proxy, Rewrite and Preserve URL
  99. Cannot find redirect – WordPress behind HTTPS proxy (Cloudfront)
  100. How can I enforce user to use Application password to generate JWT token? [closed]