With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.
- Activate the plugin through the
Pluginsmenu in WordPress
Contributors and Developers
“SMNTCS Disable REST API User Endpoints” is open source software. The following people have contributed to this plugin.Contributors
“SMNTCS Disable REST API User Endpoints” has been translated into 4 locales. Thank you to the translators for their contributions.
Interested in development?
- Test up to WordPress 6.0
- Test up to WordPress 5.8
- Test up to WordPress 5.6
- Update plugin header
- Test up to WordPress 5.4
- Refactor based on PHPCS and WPCS
- Test up to WordPress 5.1
- Initial release