• I need a way to get around cross-site scripting issues. I also want my login credentials for the 3rd party REST service provider to not be visible to my WordPress site users, so putting them in the javascript is not an option.

    Basically, what I need is a plugin that will proxy JSON-based RESTful API calls from a Javascript application hosted on a WordPress site to a 3rd party’s RESTful API. I need to be able to perform GET, POST, PUT, and DELETE requests, and I need to be able to pass a JSON payload through in both directions.

    It seems like this is probably a common scenario, so before I implement it, are there any solutions out there that I just haven’t found yet?

    If there are no solutions, any advice or suggestions before I get started? I’d like to make the plugin as generic as possible, so that it could be used for more than my specific 3rd-party. Ideally it would include a UI to configure things, and would support multiple 3rd-party services with a single plugin. I’d also like the administrator should be able to configure which API URLs are allowed to be proxied and which are not.

    Thanks in advance!
    Tauren

  • The topic ‘Plugin to proxy JSON-based REST api calls to avoid XSS issues’ is closed to new replies.