Disable REST API for Real
Really prevents the REST API from handling requests (default) or require user to be logged in.
5(3 reviews)
·200 active installs·Updated 6 years agoAs of April 2026, Disable REST API for Real is a WordPress api plugin with 200 active installations and a 5/5 rating from 3 reviews. It has been downloaded 5.9K+ times in total. Requires WordPress 4.7+ and PHP false+. Available on WordPress.org since 2015. Last updated 6 years ago — may have compatibility concerns. Top alternative: WP Consent API.
5/53 reviews
200active installs
5.9K+total downloads
11 yearssince 2015
Overview
The WordPress REST API is a great resource, but if you don’t want to use it probably you will want to close this door to your WordPress.
Unlike other popular plugins that aims to disable the REST API but only return an error, processed by the REST API, when a request is received, by default, this plugin removes all filters and actions related to WordPress REST API, and returns a 404 error for requests sent to the REST API URL endpoints, effectively blocking any use of the REST API.
Optionally you can set the REST API setting in Settings -> General page to “Logged In Only” for a less drastical action, to keep REST API access enabled but require the user to be logged in to accept the requests.
If you’re happy with the plugin please don’t forget to give it a…
Screenshots
Ratings & Reviews
53 reviews
5 ★
3
4 ★
0
3 ★
0
2 ★
0
1 ★
0
Compatibility
| WordPress | 4.7+ requiredTested up to 5.3.21 |
| PHP | false+ required |
Top Alternatives to Disable REST API for Real
Frequently Asked Questions
Changelog
2.1.1
- Fixed typo. Thanks to Mike D for reporting it.
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.