{"id":51314,"date":"2016-10-06T19:11:46","date_gmt":"2016-10-06T19:11:46","guid":{"rendered":"https:\/\/wordpress.org\/plugins-wp\/rest-api-oauth1\/"},"modified":"2024-08-05T10:18:08","modified_gmt":"2024-08-05T10:18:08","slug":"rest-api-oauth1","status":"publish","type":"plugin","link":"https:\/\/sa.wordpress.org\/plugins\/rest-api-oauth1\/","author":100663,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_crdt_document":"","version":"0.4.4","stable_tag":"0.4.4","tested":"6.6.5","requires":"4.4","requires_php":"5.4","requires_plugins":null,"header_name":"WP REST API - OAuth 1.0a Server","header_author":"WP REST API Team","header_description":"","assets_banners_color":"2d383f","last_updated":"2024-08-05 10:18:08","external_support_url":"","external_repository_url":"","donate_link":"","header_plugin_uri":"https:\/\/oauth1.wp-api.org\/","header_author_uri":"http:\/\/wp-api.org\/","rating":3.5,"author_block_rating":0,"active_installs":8000,"downloads":160795,"num_ratings":6,"support_threads":0,"support_threads_resolved":0,"author_block_count":0,"sections":["description"],"tags":{"0.3.0":{"tag":"0.3.0","author":"joehoyle","date":"2016-10-06 19:11:56"},"0.4.0":{"tag":"0.4.0","author":"spacedmonkey","date":"2023-12-01 19:35:28"},"0.4.1":{"tag":"0.4.1","author":"spacedmonkey","date":"2023-12-01 19:35:28"},"0.4.2":{"tag":"0.4.2","author":"spacedmonkey","date":"2023-12-01 20:10:11"},"0.4.3":{"tag":"0.4.3","author":"spacedmonkey","date":"2023-12-16 19:17:22"},"0.4.4":{"tag":"0.4.4","author":"spacedmonkey","date":"2024-08-05 10:18:08"},"0.4.5":{"tag":"0.4.5","author":"spacedmonkey","date":"2024-08-05 10:22:49"}},"upgrade_notice":[],"ratings":{"1":"2","2":0,"3":0,"4":"1","5":"3"},"assets_icons":{"icon-128x128.png":{"filename":"icon-128x128.png","revision":3004388,"resolution":"128x128","location":"assets","locale":""},"icon-256x256.png":{"filename":"icon-256x256.png","revision":3004388,"resolution":"256x256","location":"assets","locale":""}},"assets_banners":{"banner-1544x500.png":{"filename":"banner-1544x500.png","revision":3004388,"resolution":"1544x500","location":"assets","locale":""},"banner-772x250.png":{"filename":"banner-772x250.png","revision":3004388,"resolution":"772x250","location":"assets","locale":""}},"assets_blueprints":{},"all_blocks":[],"tagged_versions":["0.3.0","0.4.0","0.4.1","0.4.2","0.4.3","0.4.4","0.4.5"],"block_files":[],"assets_screenshots":[],"screenshots":[],"jetpack_post_was_ever_published":false},"plugin_section":[],"plugin_tags":[1556,1118,2299,23853],"plugin_category":[],"plugin_contributors":[77514,77790,78435,78078,81978],"plugin_business_model":[],"class_list":["post-51314","plugin","type-plugin","status-publish","hentry","plugin_tags-api","plugin_tags-json","plugin_tags-rest","plugin_tags-rest-api","plugin_contributors-danielbachhuber","plugin_contributors-joehoyle","plugin_contributors-rachelbaker","plugin_contributors-rmccue","plugin_contributors-spacedmonkey","plugin_committers-joehoyle","plugin_committers-rachelbaker","plugin_committers-rmccue","plugin_committers-spacedmonkey"],"banners":{"banner":"https:\/\/ps.w.org\/rest-api-oauth1\/assets\/banner-772x250.png?rev=3004388","banner_2x":"https:\/\/ps.w.org\/rest-api-oauth1\/assets\/banner-1544x500.png?rev=3004388","banner_rtl":false,"banner_2x_rtl":false},"icons":{"svg":false,"icon":"https:\/\/ps.w.org\/rest-api-oauth1\/assets\/icon-128x128.png?rev=3004388","icon_2x":"https:\/\/ps.w.org\/rest-api-oauth1\/assets\/icon-256x256.png?rev=3004388","generated":false},"screenshots":[],"raw_content":"<!--section=description-->\n<p>This plugin uses the OAuth 1.0a protocol to allow delegated authorization; that is, to allow applications to access a site using a set of secondary credentials. This allows server administrators to control which applications can access the site, as well as allowing users to control which applications have access to their data.<\/p>\n\n<p>This plugin only supports WordPress &gt;= 4.4.<\/p>\n\n<p>The latest stable version is also available from the <a href=\"https:\/\/wordpress.org\/plugins\/rest-api-oauth1\/\">WordPress Plugin Directory<\/a>.<\/p>\n\n<h3>New to OAuth<\/h3>\n\n<p>We strongly recommend you use an existing OAuth library. You'll be best off if you understand the authorization process, but leave the actual implementation to well-tested libraries, as there are a lot of edge cases.<\/p>\n\n<p>Start reading from <a href=\"docs\/introduction\/README.md\">the Introduction<\/a> to get started!<\/p>\n\n<h3>For OAuth Veterans<\/h3>\n\n<p>If you already know how to use OAuth, here's the lowdown:<\/p>\n\n<ul>\n<li>The plugin uses <strong>OAuth 1.0a<\/strong> in<\/li>\n<li>We use the <strong>three-legged flow<\/strong><\/li>\n<li>To find the REST API index, apply the <a href=\"http:\/\/v2.wp-api.org\/guide\/discovery\/\">API autodiscovery process<\/a><\/li>\n<li>The endpoints for the OAuth process are available in the REST API index: check for <code>$.authentication.oauth1<\/code> in the index data.\n\n<ul>\n<li>The <strong>temporary credentials<\/strong> (request token) endpoint is <code>$.authentication.oauth1.request<\/code> (typically <code>\/oauth1\/request<\/code>)<\/li>\n<li>The <strong>authorization<\/strong> endpoint is <code>$.authentication.oauth1.authorize<\/code> (typically <code>\/oauth1\/authorize<\/code>)<\/li>\n<li>The <strong>token exchange<\/strong> (access token) endpoint is <code>$.authentication.oauth1.access<\/code> (typically <code>\/oauth1\/access<\/code>)<\/li>\n<\/ul><\/li>\n<li>Your callback URL must match the registered callback URL for the application in the scheme, authority (user\/password) host, port, and path sections. (<strong>Subpaths are not allowed.<\/strong>)<\/li>\n<li>The only signature method supported is <strong>HMAC-SHA1<\/strong>.<\/li>\n<li>OAuth parameters are supported in the Authorization header, query (GET) parameters, or request body (POST) parameters (if encoded as <code>application\/x-www-form-urlencoded<\/code>). <strong>OAuth parameters are not supported in JSON data.<\/strong><\/li>\n<\/ul>","raw_excerpt":"Connect applications to your WordPress site without ever giving away your password.","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin\/51314","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin"}],"about":[{"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/types\/plugin"}],"replies":[{"embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/comments?post=51314"}],"author":[{"embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wporg\/v1\/users\/joehoyle"}],"wp:attachment":[{"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/media?parent=51314"}],"wp:term":[{"taxonomy":"plugin_section","embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_section?post=51314"},{"taxonomy":"plugin_tags","embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_tags?post=51314"},{"taxonomy":"plugin_category","embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_category?post=51314"},{"taxonomy":"plugin_contributors","embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_contributors?post=51314"},{"taxonomy":"plugin_business_model","embeddable":true,"href":"https:\/\/sa.wordpress.org\/plugins\/wp-json\/wp\/v2\/plugin_business_model?post=51314"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}