• Hi,

    I would like a develop a dedicated web application that will fetch my wp data.
    This application will use the authenticated wordpress user.
    How can I authenticate the WP api request using the user without using the user login and password ?

    I read that authentication can be done using
    – Cookie, but its only works inside the WP as plugin or theme.
    – Basic auth, but it needs user password
    – Oauth, but I would like the users access seamless to the app without asking permissions (because the both applications are from the same organization)

    Any tips or solutions ?

    Thanks

    • This topic was modified 4 months, 4 weeks ago by florentwp.
Viewing 1 replies (of 1 total)
  • Moderator bcworkz

    (@bcworkz)

    You could use an application password. As the term implies, it’s meant for apps to gain privileged access to the API. The app will have all the capabilities of the user whose password it’s using. Could be any user, but it’s typically a user created for the purpose. This can potentially grant the app tremendous power, so who can use the app and what it’s capable of needs to be carefully considered.

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.