search

WP-API / OAuth2

Connect applications to your WordPress site without ever giving away your password.
GNU General Public License v2.0
172 stars 42 forks source link

Docs are still for OAuth1 #56

Open kosso opened 5 years ago

kosso commented 5 years ago

The documentation needs updating for OAuth2

https://github.com/WP-API/OAuth2/blob/master/docs/basics/Signing.md

kosso commented 5 years ago

Never mind. I found these : https://developer.wordpress.com/docs/oauth2/

kosso commented 5 years ago

Reopening this, since the documentation linked above is only for wordpress.com

runofthemill commented 4 years ago

Updated docs would be great!

Outside of the existing docs, it would be good to have info on the use of wp_safe_redirect() and how to filter the list of external hosts; the change from wp_redirect() to wp_safe_redirect() in https://github.com/WP-API/OAuth2/commit/02d47e566731e23524ee027c051606b5480c1028#diff-e60a82a0cee7b25ba6509ae636d516db broke functionality, and it took quite a bit of work to figure out I needed to hook into allowed_redirect_hosts to fix things. If you'd like, I can submit a PR to add info about this, but I'm not sure where it should live.