SMNTCS Disable REST API User Endpoints

October 15, 2023

SMNTCS Disable REST API User Endpoints Plugin

Disable the REST API user endpoints due to obscure user slugs.

With WordPress 4.7 the REST API is part of the core. At the moment everyone has read access to the REST API. As a result of that a potential intruder can retrieve a list of all user slugs via /wp-json/wp/v2/users. This plugin disables the REST API user endpoints to obscure the user slugs.

Contribute

Contributions are more than welcome. Simply head over to Github and open an issue or a pull request.

Installation

  1. Upload smntcs-disable-rest-api-user-endpoints to the /wp-content/plugins/ directory.
  2. Activate the plugin through the Plugins menu in WordPress.

Changelog

2.2 (2023.10.15)

  • Test up to WP 6.4
  • Convert code to OOP

2.1 (2023.03.11)

  • Test up to WP 6.2

2.0 (2022.12.03)

  • Test up to WP 6.1

1.9 (2022.06.09)

  • Test up to WP 6.0

1.8 (2021.12.31)

  • Test up to WP 5.8

1.7 (2021.05.01)

1.6 (2021.01.08)

  • Test up to WP 5.6

1.5 (2020.05.10)

1.4 (2020.05.10)

1.3 (2019.12.26)

1.2 (2019.04.05)

  • Refactor based on PHPCS and WPCS

1.1 (2019.02.20)

  • Test up to WP 5.1

1.0 (2018.03.27)

  • Initial release

Details

  • Version: 2.2
  • Active installations: 4,000
  • WordPress Version: 5.5
  • Tested up to: 6.4.5
  • PHP Version: 5.6

Ratings


5 Stars
4 Stars
3 Stars
2 Stars
1 Stars