scripting
commented
2 years ago Good use of RFC site. And for not being a programmer you’ve figured a bunch of stuff out. Thanks. 😀
Open frankmeeuwsen opened 2 years ago
scripting
commented
2 years ago Good use of RFC site. And for not being a programmer you’ve figured a bunch of stuff out. Thanks. 😀
frankmeeuwsen
commented
2 years ago First thing I realized after publication is how I expose the REST API endpoint on my WordPress site. After closing it with a WordPress plugin, the script isn't working properly. Need to debug and figure out what is going on. I expect it has something to do with the authentication/authorization part. Any help and thoughts on this is welcome!
troutcolor
commented
2 years ago About the Rest API and endpoints. When I tried the script at first it failed. I added the Basic Auth plugin and I can now post to my blog.
The plugin has a note:
Note that this plugin requires sending your username and password with every request, and should only be used over SSL-secured connections or for local development and testing. Without SSL we strongly recommend using the OAuth 1.0a authentication handler in production environments.
So I am wondering about any security issues?
scotthansonde
commented
2 years ago @troutcolor If the endpoint is running on HTTPS it should be fine. I don't know much about the WordPress API, but if you can set up a user that can only post via the API (and has no other rights) that would be good, too.
troutcolor
commented
2 years ago @papascott thanks fo the reassurance. A non-admin account sounds like a sensible idea.
Cheers John
I've been working on my own script to publish a Drummer post to a WordPress blog. A short explanation of the script and video can be found here. I'd love to discuss ideas on how to expand on this and see what is possible.