With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.
- Activate the plugin through the
Pluginsmenu in WordPress
Contributors & Developers
“SMNTCS Disable REST API User Endpoints” is open source software. The following people have contributed to this plugin.Contributors
“SMNTCS Disable REST API User Endpoints” has been translated into 4 locales. Thank you to the translators for their contributions.
Interested in development?
- Test up to WordPress 6.0
- Test up to WordPress 5.8
- Test up to WordPress 5.6
- Update plugin header
- Test up to WordPress 5.4
- Refactor based on PHPCS and WPCS
- Test up to WordPress 5.1
- Initial release