Open kadamwhite opened 8 years ago
👍 +1 on this as well ... the documentation on the site lead me to believe that authentication would be required for API, and after reading through issues on GitHub it's clear that by default everything is public ... at least put something on the documentation page stating that if you want to use authentication, you have to set it up as it's not required by default ... especially when it comes to custom routes.
See also WP-API/WP-API#2497
This is a common issue (WP-API/WP-API#2432 WP-API/WP-API#2497), and the snippet here https://gist.github.com/danielbachhuber/8f92af4c6a8db784771c (copied below) should be provided within the documentation site itself.