Disable REST API and Require JWT / OAuth Authentication
Disables all REST API endpoints and requires JWT or OAuth Authentication.
00
·60 active installs·Updated 8 years agoAs of April 2026, Disable REST API and Require JWT / OAuth Authentication is a WordPress api plugin with 60 active installations and a 0/5 rating0. It has been downloaded 10.0K+ times in total. Requires WordPress 4.4+ and PHP 5.2+. Available on WordPress.org since 2017. Last updated 8 years ago — may have compatibility concerns. Top alternative: WP Consent API.
0/5Rating
60active installs
10.0K+total downloads
9 yearssince 2017
Overview
When you activate this plugin, all REST API endpoints will be disabled for non-authorized requests.
Best used with any of these plugins:
Blocks ALL REST API endpoints except for:
- /jwt-auth/v1/token/validate
- /jwt-auth/v1/token
- /oauth/authorize
- /oauth/token
- /oauth/me
Allows all REST API endpoints if they come with a valid Bearer Token Authentication (authentication via GET URL variables are still blocked)
When used alone in your site, your REST API will essentially be disabled.
Note that this plugin itself doesn’t provide JWT or OAuth authentication, it only whitelists them.
Features
- No settings page
- You can whitelist other REST API endpoint via a filter hook (see FAQs below)
- Blocks all REST API endpoints.. but
- Allows requests…
Screenshots
Ratings & Reviews
00 reviews
5 ★
0
4 ★
0
3 ★
0
2 ★
0
1 ★
0
Compatibility
| WordPress | 4.4+ requiredTested up to 4.8.28 |
| PHP | 5.2+ required |
Top Alternatives to Disable REST API and Require JWT /…
Frequently Asked Questions
Changelog
v1.0
- Initial release
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.