With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via
/wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.
- Activate the plugin through the
Pluginsmenu in WordPress.
Contributors & Developers
“SMNTCS Disable REST API User Endpoints” is open source software. The following people have contributed to this plugin.Contributors
“SMNTCS Disable REST API User Endpoints” has been translated into 4 locales. Thank you to the translators for their contributions.
Interested in development?
- Test up to WP 6.2
- Test up to WP 6.1
- Test up to WP 6.0
- Test up to WP 5.8
- Test up to WP 5.6
- Update plugin header
- Test up to WP 5.4
- Refactor based on PHPCS and WPCS
- Test up to WP 5.1
- Initial release