search

nicumicle / simple-jwt-login

This plugin allows you to log in, register, authenticate, delete and change the user password to a WordPress website using a JWT.
http://wordpress.org/plugins/simple-jwt-login/
GNU General Public License v3.0
73 stars 22 forks source link

bug: Plugin blocks /wp-json rest api discovery endpoint. #105

Open jsikkes opened 3 months ago

jsikkes commented 3 months ago

Bug Report

Plugin Version

3.5.3

PHP Version

8.2

WordPress Version

6.4.3

Bug description

Current behavior:

When the option "protect endpoints" is enabled and "apply only on specific endpoints" is selected; all unauthenticated requests to the /wp-json/ rest api discovery endpoint are blocked by the plugin.

Expected behavior:

The /wp-json endpoint is publicly readable for Wordpress Rest API discovery and not protected/blocked (unless explicitly specified in the simple-jwt-plugin configuration)

nicumicle commented 3 months ago

Thank you for reporting this bug. I will look into this.